How to remove skoohcnv-d
skoohcnv-d
The module skoohcnv-d has been detected as Risk.RemoteAdmin
File Details
| Product Name: | UltraVNC - VNCHooks |
| Company Name: | UltraVNC |
| MD5: | 49d6e2074501c6a6ff5a126d0423ab40 |
| Size: | 52 KB |
| First Published: | 2017-07-10 13:02:08 (7 years ago) |
| Latest Published: | 2020-06-10 16:32:38 (4 years ago) |
| Status: | Risk.RemoteAdmin (on last analysis) | |
| Analysis Date: | 2020-06-10 16:32:38 (4 years ago) |
Common Places:
| %temp%\7zs1278.tmp |
| %temp%\7zsa6d.tmp |
| %temp%\7zs936a.tmp |
| %sysdrive%\tools |
| %temp%\7zsf49e.tmp |
| %temp%\7zs9d07.tmp |
| %temp%\7zs1a50.tmp |
| %temp%\7zsd694.tmp |
| %temp%\7zsa034.tmp |
| %temp%\7zsaa94.tmp |
File Names:
| vnchooks.dll |
| skoohcnv-d |
Geography:
| 52.1% | ||
| 18.3% | ||
| 12.7% | ||
| 4.2% | ||
| 4.2% | ||
| 4.2% | ||
| 1.4% | ||
| 1.4% | ||
| 1.4% |
OS Version:
| Windows Server 2012 R2 | 36.6% | |
| Windows 7 | 31.0% | |
| Windows 10 | 29.6% | |
| Windows Server 2016 | 1.4% | |
| Windows Server 2003 | 1.4% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x10000000 |
| Entry Address: | 0x00002203 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 20480 | 6ceb2d8874a62d65a51060df6579b2b5 |
| .rdata | 4096 | b06ee337801b112776f3b69d4e077406 |
| .data | 12288 | 3c8ae5b0d6671b01460a21f906c58f24 |
| .SharedD | 4096 | 620f0b67a91f7f74151bc5be745b7110 |
| .rsrc | 4096 | 77e43f25553be85d7a4edf66b159ee21 |
| .reloc | 4096 | 115353b881d9c4d2bc1a5883cf84b180 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for skoohcnv-d
