How to remove pokkiInstaller.exe.vir
- File Details
- Overview
- Analysis
pokkiInstaller.exe.vir
The module pokkiInstaller.exe.vir has been detected as PUP.Pokki
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
a99eaf097c27028dca6ea467b1e37ffa |
| Size: |
2 MB |
| First Published: |
2017-06-14 16:09:51 (7 years ago) |
| Latest Published: |
2020-06-22 20:29:45 (4 years ago) |
| Status: |
PUP.Pokki (on last analysis) |
|
| Analysis Date: |
2020-06-22 20:29:45 (4 years ago) |
Overview
| Signed By: |
Pokki |
| Status: |
Valid |
| %appdata%\opencandy\3ade0f5593f94d0c84cf6fcf6d4c91f7 |
| %sysdrive%\adwcleaner\quarantine\files\hhptlgzpcuekyjjwvfutzjirzfxawupr\844ee19d0bc04657b4a901ca52a432db |
| %appdata%\opencandy\01476913a91345a6a56661e66092b356 |
| %appdata%\opencandy\888152bf0cad4e7e9b624459620d50b8 |
| %appdata%\opencandy\0614e5d36cc9418c81bfc472ec690c0f |
| %appdata%\opencandy\f0075bd339074d96ba4e587c3fcccf33 |
| %appdata%\opencandy\a3b4fdcb3f3546dda89fd504b5f7ab09 |
| %appdata%\oemsoftwareengine\4e5bfb26643844e48a2f0a930c02658c |
| %appdata%\oemsoftwareengine |
| %appdata%\opencandy |
| pokkiInstaller.exe |
| pokkiInstaller.exe.vir |
|
16.0% |
|
|
16.0% |
|
|
12.0% |
|
|
8.0% |
|
|
8.0% |
|
|
8.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
| Windows 7 |
52.0% |
|
| Windows 10 |
28.0% |
|
| Windows 8.1 |
16.0% |
|
| Windows 8 |
4.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000bf828 |
| Name |
Size of data |
MD5 |
| .text |
1664000 |
ab2d29f33855de8d01b8b9abea81f442 |
| .rdata |
412160 |
1863f0bedebe9eedab946fc005f60577 |
| .data |
56832 |
c1e5380ac4ed839030c88fb6abb31225 |
| .rsrc |
713216 |
86f7154334029bbfee70402833ffbab7 |
| .reloc |
98304 |
0875a7be3b49b93f18381dcd7d6e72b5 |
