How to remove dtUser.exe
dtUser.exe
The module dtUser.exe has been detected as PUP.Visicom
File Details
| Company Name: | Visicom Media Inc. |
| MD5: | b1227836ffc1e1fd47cc993be81d6903 |
| Size: | 499 KB |
| First Published: | 2017-06-09 17:02:11 (8 years ago) |
| Latest Published: | 2023-01-02 23:59:23 (2 years ago) |
| Status: | PUP.Visicom (on last analysis) | |
| Analysis Date: | 2023-01-02 23:59:23 (2 years ago) |
Overview
| Signed By: | Visicom Media Inc. |
| Status: | Valid |
Common Places:
| %programfiles%\dlsecuretb |
| %ffprofile%\extensions\{d0bc04f1-2a66-420b-9131-69bba6dc379e} |
| %profile%\ita\application data\mozilla\firefox\profiles\b0k9gkyg.default\extensions\{d0bc04f1-2a66-420b-9131-69bba6dc379e} |
| %sysdrive%\system volume information\_restore{2e19001c-265e-4341-b3e2-2bc9a02ec5c6}\rp439 |
| %sysdrive%\admin-пк\backup set 2015-07-06 105643\backup files 2015-07-06 105643\backup files 1.zip\c\users\администратор\appdata\roaming\mozilla\firefox\profiles\yfar1sgd.default\extensions |
| %sysdrive%\adwcleaner\quarantine\files |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %ffprofile%\extensions |
File Names:
| dtuser.exe |
| dtUser.exe |
| A0055068.exe |
Geography:
| 34.8% | ||
| 21.7% | ||
| 13.0% | ||
| 8.7% | ||
| 8.7% | ||
| 8.7% | ||
| 4.3% |
OS Version:
| Windows 7 | 82.6% | |
| Windows XP | 8.7% | |
| Windows 10 | 8.7% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0001d4ad |
PE Sections:
| Name | Size of data | MD5 |
| .text | 313856 | e6799afcdf3e3ae2433b3926651417f7 |
| .orpc | 512 | 3d520ffeebf67138a1d27718ef8e5443 |
| .rdata | 84992 | 64123d0a4f3d1af70a08b60072cd6d4c |
| .data | 8192 | 6eaf012467a9b3f5dc6016a8bc6c17db |
| .rsrc | 77312 | 72c1b035b60cd459d822693d6d975a7e |
| .reloc | 19456 | ba59e052de90eea46f255a1d66358d61 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for dtUser.exe
