How to remove du.exe

du.exe

The module du.exe has been detected as Adware.OpenCandy

du.exe
Remove du.exe

File Details

Product Name:

Install helper
Company Name:

OpenCandy
MD5: e8cb9ec8f7c8b4146e55b33d1428b2b1
Size: 158 KB
First Published: 2017-07-05 03:11:04 (7 years ago)
Latest Published: 2022-02-17 23:37:50 (2 years ago)
Status: Adware.OpenCandy (on last analysis)
Analysis Date: 2022-02-17 23:37:50 (2 years ago)

Overview

Signed By: OpenCandy
Status: Valid

Common Places:

%appdata%\opencandy\9639e16ae4f8467a9c849e5d5f09f0fa
%appdata%\opencandy\opencandy_90d0355148194817989de05581390a9c
%appdata%\opencandy\opencandy_337d8ce89a8a4f98974f41e39b2c20a8
%appdata%\opencandy\27b2d70e77d94e9fa90e9e33e2a94a90
%appdata%\opencandy
%sysdrive%\user-pc\backup set 2017-12-17 190002\backup files 2017-12-17 190002\backup files 19.zip\c\users\user\appdata\roaming\opencandy
%sysdrive%\user-pc\backup set 2017-05-14 190001\backup files 2017-05-14 190001\backup files 18.zip\c\users\user\appdata\roaming\opencandy
%sysdrive%\user-pc\backup set 2017-07-02 190002\backup files 2017-07-02 190002\backup files 18.zip\c\users\user\appdata\roaming\opencandy
%sysdrive%\user-pc\backup set 2017-08-20 190002\backup files 2017-08-20 190002\backup files 18.zip\c\users\user\appdata\roaming\opencandy
%sysdrive%\user-pc\backup set 2017-09-24 190003\backup files 2017-09-24 190003\backup files 18.zip\c\users\user\appdata\roaming\opencandy

Geography:

50.0%
11.1%
11.1%
5.6%
5.6%
5.6%
5.6%
5.6%

OS Version:

Windows 10 77.8%
Windows 7 16.7%
Windows 8.1 5.6%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00066a90

PE Sections:

Name Size of data MD5
UPX0 0 00000000000000000000000000000000
UPX1 146944 619358de3be70d59907139e871502fcc
.rsrc 6656 3bc9174195eda95c5fb119cf6ae51b52

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for du.exe
copyright for information about du.exe