How to remove winlog.exe
winlog.exe
The module winlog.exe has been detected as Risk.CoinMiner
File Details
| Company Name: | www.microsoft.com |
| MD5: | 73a90dbfc363e6632a3294a6e17d63f4 |
| Size: | 1 MB |
| First Published: | 2017-11-27 08:02:58 (6 years ago) |
| Latest Published: | 2018-06-10 21:06:27 (6 years ago) |
| Status: | Risk.CoinMiner (on last analysis) | |
| Analysis Date: | 2018-06-10 21:06:27 (6 years ago) |
Common Places:
| %appdata%\systemcare |
| %appdata% |
Geography:
| 50.0% | ||
| 50.0% |
OS Version:
| Windows 7 | 50.0% | |
| Windows 8.1 | 50.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x00657664 |
PE Sections:
| Name | Size of data | MD5 |
| 150016 | 48c865d746cf3ee1b9858bf020f7c6a3 | |
| 40960 | 934a194ab296d3f91d193b465e3b68dc | |
| 2048 | 01277ec70f64cd010da78c0064006bf4 | |
| 9216 | c67dfcc376d2a51265136250a638b708 | |
| 0 | 00000000000000000000000000000000 | |
| 2048 | 22e7660bffbf7e7e0f0d854ca3868603 | |
| .rsrc | 1536 | 68c2bcfea773e5c09f5f17fe65a25846 |
| 245248 | b32608b5f72b2fa240588b4489797189 | |
| 1245184 | e1c7e5743c6239b43bf18b6850704d78 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for winlog.exe
