How to remove tcrecover.exe

» File
File Details
Overview
Analysis

tcrecover.exe

The module tcrecover.exe has been detected as Trojan.Heur!

tcrecover.exe

Remove tcrecover.exe

File Details

Main Info:

Product Name:	Wondershare Recoverit
MD5:	e16c69d7701d3af594d9f660d9a32943
Size:	19 MB
First Published:	2023-05-01 23:21:30 (2 years ago)
Latest Published:	2025-09-28 23:01:23 (3 months ago)

Analysis:

Status:	Trojan.Heur! (on last analysis)
Analysis Date:	2025-09-28 23:01:23 (3 months ago)

Common Places:

%programfiles%\wondershare

%profile%\downloads\wondershare recoverit pro 11.0.0.13\wondershare recoverit pro 11.0.0.13

%programfiles%\wondershare

%profile%\downloads\recuperação de dados\recuperação de dados apagados\wondershare recoverit 11.0.0.13 (x64) multilingual

%programfiles%\wondershare

%sysdrive%\wondershare recoverit ultimate11.0.0.13-pvp\11.0.0.13-pvp

%profile%\downloads\wondershare recoverit

%sysdrive%\downloads\recoverit\wondershare_recoverit_11.0.0.13_x64_multilingual\wondershare recoverit 11.0.0.13 x64 multilingual

Geography:

	25.0%
	12.5%
	12.5%
	12.5%
	12.5%
	12.5%
	12.5%

OS Version:

Windows 10	75.0%
Windows 7	25.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x0204f058

PE Sections:

Name	Size of data	MD5
	3550646	cd69e8ddd8f8ea19b63bcaa1d78eced1
	10897900	f56f01a4a60bb122510408b2f9a473f9
	31986	a9e406ee7a850617714979dd425120a3
	459420	4620811dc3e52a368623c40008f4517a
	25802	e338258935d0d6fa1ed8d1ff07584f34
	11117	bd02dba204912737287df40e7b709e6a
.imports	3584	4b2a5bfbd5b277d50fbe0f2238f9d076
.tls	512	d9fb9a29a01dca20040e3e1e99231eb7
.rsrc	197632	95aea51798f5ddbe486d5b3204f5bd6a
.themida	0	d41d8cd98f00b204e9800998ecf8427e
.boot	5235200	be014779fa5709afd54fa796116a5282
.reloc	16	e1490214a90e82679f425d2401f87330

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for tcrecover.exe

copyright for information about tcrecover.exe