How to remove nircmd.exe

nircmd.exe

The module nircmd.exe has been detected as Risk.Presenoker

nircmd.exe
Remove nircmd.exe

File Details

Product Name:

NirCmd
Company Name:

NirSoft
MD5: db5b7d8edc5ad192cc0a8729669bfc06
Size: 84 KB
First Published: 2017-10-10 00:07:00 (7 years ago)
Latest Published: 2022-06-10 23:30:26 (2 years ago)
Status: Risk.Presenoker (on last analysis)
Analysis Date: 2022-06-10 23:30:26 (2 years ago)

Common Places:

%programfiles%\steam\steamapps\common\vampire the masquerade - bloodlines\patch_extras\developer tools\bloodlines sdk\sdkbinaries\service
%sysdrive%\gog games\vtmb\patch_extras\developer tools\bloodlines sdk\sdkbinaries\service
%desktop%\sdkbinaries\service
%programfiles%\steam\steamapps\common\vampire the masquerade - bloodlines\patch_extras\developer tools\bloodlines sdk\sdkbinaries
%sysdrive%\steamlibrary\steamapps\common\vampire the masquerade - bloodlines\patch_extras\developer tools\bloodlines sdk\sdkbinaries

Geography:

33.3%
16.7%
16.7%
16.7%
16.7%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00010418

PE Sections:

Name Size of data MD5
.text 63488 bf23ad29967b15eba989a30399439c9b
.rdata 17920 c7d203338397e1d8628b94dd78880bd2
.data 512 28cdd1b488cdc7f299f7a6fed95e063c
.rsrc 3072 03c75fa067aa3fc09eaa977cb1d50a5e

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for nircmd.exe
copyright for information about nircmd.exe