How to remove helper.exe

helper.exe

The module helper.exe has been detected as Trojan.Agent

helper.exe
Remove helper.exe

File Details

Product Name:

Office Install Helper
Company Name:

KpoJIuK
MD5: 88bd94cbb9a0ea6f803480391bdecb58
Size: 117 KB
First Published: 2019-04-21 01:26:32 (6 years ago)
Latest Published: 2025-04-25 23:00:24 (2 weeks ago)
Status: Trojan.Agent (on last analysis)
Analysis Date: 2025-04-25 23:00:24 (2 weeks ago)

Common Places:

%sysdrive%\microsoft office 2019 professional plus - standard + visio + project 16.0.10827.20138 (2018.10) repack by kpojiuk\microsoft.office.2019x64.v2018.10
%profile%\downloads\microsoft office 2019 professional plus - standard + visio + project 16.0.10827.20138 (2018.10) repack by kpojiuk
%profile%\downlo~1\micros~1.10)\micros~1.10)\microsoft.office.2019x64.v2018.10
%profile%\downloads\microsoft office 2019 professional plus - standard + visio + project 16.0.10827.20138 (2018.10)\microsoft office 2019 professional plus - standard + visio + project 16.0.10827.20138 (2018.10) repack by kpojiuk\microsoft.office.2019x86.v2018.10
%profile%\downloads\microsoft office 2019 professional plus - standard + visio + project 16.0.10827.20138 (2018.10)\microsoft office 2019 professional plus - standard + visio + project 16.0.10827.20138 (2018.10) repack by kpojiuk\microsoft.office.2019x64.v2018.10
%sysdrive%\microsoft.office.2019x64.v2018.10
%profile%\downloads\microsoft office 2019 professional plus - standard + visio + project 16.0.10827.20138 (2018.10)\microsoft office 2019 professional plus - standard + visio + project 16.0.10827.20138 (2018.10) repack by kpojiuk
%profile%\downloads\microsoft office 2019 professional plus full + visio + activator (may 2020)\microsoft office 2019 professional plus full + visio + activator (may 2020)\microsoft.office.2019x64.v2018.10
%profile%\downloads\microsoft office 2019 professional plus full + visio + activator (may 2020)\microsoft office 2019 professional plus full + visio + activator (may 2020)\microsoft.office.2019x64.v2018.10
%sysdrive%\my newest installer\mso2019\office 2019

Geography:

Russia 24.1%
United States 10.3%
Israel 10.3%
Ukraine 10.3%
Maldives 6.9%
Turkey 6.9%
Pakistan 6.9%
Belarus 3.4%
Italy 3.4%
Indonesia 3.4%
Philippines 3.4%
Argentina 3.4%
Brazil 3.4%
Spain 3.4%

OS Version:

Windows 10 83.9%
Windows 8.1 9.7%
Windows 7 6.5%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000039e3

PE Sections:

Name Size of data MD5
.text 28672 7aa2e64c00b45e1668bef67bf13f58b9
.rdata 11264 91eee43954e068e650f7b73a8b0e6915
.data 512 db9f7acbf1c3ddfe255077b699955dfa
.ndata 0 00000000000000000000000000000000
.rsrc 63488 48d2adaf712e2f5ee28c11b2daf6a0e1
.reloc 4096 f3f5bdd89003a1891d914bb3ae243789

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for helper.exe
copyright for information about helper.exe
­