How to remove nircmd.exe
nircmd.exe
The module nircmd.exe has been detected as Risk.Gen
File Details
| Product Name: | NirCmd |
| Company Name: | NirSoft |
| MD5: | 78da6609bf68f7ed9d915e0e8f0625a7 |
| Size: | 114 KB |
| First Published: | 2017-10-12 02:07:53 (7 years ago) |
| Latest Published: | 2018-08-16 17:12:27 (6 years ago) |
| Status: | Risk.Gen (on last analysis) | |
| Analysis Date: | 2018-08-16 17:12:27 (6 years ago) |
Common Places:
| %programfiles%\graphic equalizer studio |
| %profile%\downloads\각종툴\nirsoft_package_1.19.85\nirsoft\x64 |
| %programfiles%\graphic equalizer studio 2016 |
| %programfiles%\jsound\jsound\modules\com-jsound.jar\com\jsound\nativelib |
Geography:
| 50.0% | ||
| 20.0% | ||
| 10.0% | ||
| 10.0% | ||
| 10.0% |
OS Version:
| Windows 7 | 70.0% | |
| Windows 10 | 30.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x000157b0 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 84992 | e0fb7007bb82df5380196050b51de5e1 |
| .rdata | 24064 | 10741a257ad45008bef995b60ca190d2 |
| .data | 1024 | 4d0cc2ffced8ae85e5f5ad6c7577bad4 |
| .pdata | 2560 | a3a46c531122c8c7876f972852904570 |
| .rsrc | 3072 | a439df1f1a21f96ef712a41a05d477f2 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for nircmd.exe
