How to remove f1ad2b32c129e0c1

» File
File Details
Overview
Analysis

f1ad2b32c129e0c1

The module f1ad2b32c129e0c1 has been detected as General Threat

Remove f1ad2b32c129e0c1

File Details

Main Info:

Product Name:	YY浏览器下载器
Company Name:	YY Inc.
MD5:	f8c468c0c86813077daa898cfebc7cde
Size:	490 KB
First Published:	2017-08-22 22:10:25 (7 years ago)
Latest Published:	2018-02-03 14:07:47 (6 years ago)

Analysis:

Status:	General Threat (on last analysis)
Analysis Date:	2018-02-03 14:07:47 (6 years ago)

Common Places:

%appdata%\duowan\yy\business\gameproxy\setup

%appdata%\duowan\yy\business\gameproxy\setup\{950f9a8b-34d8-476d-8b01-4f8049e438e6}

%appdata%\duowan\yy\business\gameproxy\setup\{37709032-9982-43f5-afe7-e400335ca70d}

%sysdrive%\無糖-pc\backup set 2017-06-19 010252\backup files 2017-06-19 010252\backup files 1.zip\c\users\無糖\appdata\roaming\duowan\yy\business\gameproxy

%sysdrive%\無糖-pc\backup set 2017-09-24 190001\backup files 2017-09-24 190001\backup files 1.zip\c\users\無糖\appdata\roaming\duowan\yy\business\gameproxy

%sysdrive%\無糖-pc\backup set 2017-09-10 190001\backup files 2017-09-10 190001\backup files 1.zip\c\users\無糖\appdata\roaming\duowan\yy\business\gameproxy

%sysdrive%\無糖-pc\backup set 2017-05-29 101825\backup files 2017-05-29 101825\backup files 1.zip\c\users\無糖\appdata\roaming\duowan\yy\business\gameproxy

%sysdrive%\無糖-pc\backup set 2015-07-30 183739\backup files 2015-07-30 183739\backup files 1.zip\c\users\無糖\appdata\roaming\duowan\yy\business\gameproxy

%sysdrive%\無糖-pc\backup set 2015-05-10 190000\backup files 2015-05-10 190000\backup files 1.zip\c\users\無糖\appdata\roaming\duowan\yy\business\gameproxy

%sysdrive%\無糖-pc\backup set 2017-08-20 190001\backup files 2017-08-20 190001\backup files 1.zip\c\users\無糖\appdata\roaming\duowan\yy\business\gameproxy

File Names:

instlauncher.exe

f1ad2b32c129e0c1

86a37e4731

Geography:

	95.8%
	4.2%

OS Version:

Windows 7	95.8%
Windows 10	4.2%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000373db

PE Sections:

Name	Size of data	MD5
.text	332800	d46e879019c3615bcc5a0b575a34e2b5
.rdata	101376	d426f42ceb9daf960e4ef8f0d60cc717
.data	6656	6b744ff600d723afb868f513a6d032a3
.tls	512	bf619eac0cdf3f68d496ea9344137e8b
.rsrc	30208	7398cf2c1af14106b9cb4c1e3a419bc3
.reloc	29184	86bce708aff00628aeadcc119535ad4f

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for f1ad2b32c129e0c1

copyright for information about f1ad2b32c129e0c1

How to remove f1ad2b32c129e0c1

f1ad2b32c129e0c1

The module f1ad2b32c129e0c1 has been detected as General Threat

File Details

Main Info:

YY浏览器下载器

YY Inc.

Analysis:

Common Places:

Geography:

OS Version:

Analysis

PE Info:

PE Sections:

More information: