How to remove swscale.dll.vir

swscale.dll.vir

The module swscale.dll.vir has been detected as PUP.Qiyi

swscale.dll.vir
Remove swscale.dll.vir

File Details

Product Name:

Decoder Library
Company Name:

iQIYI
MD5: f1cd45e30bdc66b328be62f753e52291
Size: 397 KB
First Published: 2017-05-21 09:02:42 (7 years ago)
Latest Published: 2023-02-14 23:58:58 (2 years ago)
Status: PUP.Qiyi (on last analysis)
Analysis Date: 2023-02-14 23:58:58 (2 years ago)

Common Places:

%programfiles%\iqiyi video\geeplayer
%sysdrive%\iqiyi video\geeplayer
%sysdrive%\adwcleaner\quarantine\c\iqiyi video\geeplayer
%sysdrive%\adwcleaner\quarantine\xrpmcarcr4
%sysdrive%\iqiyi video
%sysdrive%\新增資料夾 (4)\綜合\iqiyi video
%programfiles%\iqiyi video
%sysdrive%\adwcleaner\quarantine\c\iqiyi video
%sysdrive%\adwcleaner\quarantine\yct4aj6pkn
%sysdrive%\adwcleaner\quarantine\gtxsl1c00g

File Names:

swscale.dll
swscale.dll.vir

Geography:

20.5%
17.9%
9.0%
6.4%
6.4%
5.1%
5.1%
2.6%
2.6%
2.6%
2.6%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%

OS Version:

Windows 10 55.7%
Windows 7 32.9%
Windows 8.1 6.3%
Windows XP 3.8%
Windows 8 1.3%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x62b80000
Entry Address: 0x00001060

PE Sections:

Name Size of data MD5
.text 342528 bc163a5c3cf7e3d891e7f6a33f2b2757
.data 512 984656b7986e7352ccd9dfc96d6f3b1d
.rdata 11264 4df815d39d2fccd97f83db85fabde2f9
.rodata 512 52b569b74c67eabc7cfdb39564f42c1c
/4 33280 a567ef12dd82c365689374095537cb66
.bss 0 00000000000000000000000000000000
.edata 1536 05175fee137fa44c7275aca2e39ee232
.idata 1536 ec16c676ae4e0e521f40d39c72702bd9
.CRT 512 fb89ff638a8e26c6bb3b9188fd8bd2ae
.tls 512 7d95cb6a6686a67c116b8cd9e394d5fb
.rsrc 1024 08a22e4de1b2a02cb3a5afbbea32d4af
.reloc 7168 980ade3008729ff65de73d79e2d29e2f

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for swscale.dll.vir
copyright for information about swscale.dll.vir