How to remove winlogonview.exe

» File
File Details
Overview
Analysis

winlogonview.exe

The module winlogonview.exe has been detected as Trojan.Kryptik

Remove winlogonview.exe

File Details

Main Info:

Product Name:	WinLogOnView
Company Name:	NirSoft
MD5:	285c83a377450ddb355aa63956132da8
Size:	99 KB
First Published:	2021-11-17 21:28:37 (4 years ago)
Latest Published:	2024-12-03 23:00:47 (a year ago)

Analysis:

Status:	Trojan.Kryptik (on last analysis)
Analysis Date:	2024-12-03 23:00:47 (a year ago)

Overview

Digital Signature

Signed By:	Nir Sofer
Status:	Valid

Common Places:

%profile%\downloads\windows_repair_toolbox\downloads\nirlauncher

%desktop%\new folder\windows_repair_toolbox\downloads\nirlauncher

%sysdrive%\$recycle.bin\s-1-5-21-651535338-3236650556-2538725344-1001

%mydoc%\psi aprilie 2023 var\psi si ssm\documente psi si ssm\su si ssm\folder fp

%sysdrive%\$recycle.bin\s-1-5-21-651535338-3236650556-2538725344-1001

%profile%\downloads\morphs_installs_april_2024-teamos\morphs_installs_april_2024-teamos\installs\ntlite\nirlauncherpackageportable.exe\nirlauncher package 1.30.11 portable

%profile%\downloads\wscc\apps

%appdata%\wscc7\apps

%sysdrive%\downloads\windows_repair_toolbox\downloads\nirlauncher

Geography:

	50.0%
	10.0%
	10.0%
	10.0%
	10.0%
	10.0%

OS Version:

Windows 10	90.0%
Windows 7	10.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0000e3de

PE Sections:

Name	Size of data	MD5
.text	55808	be518acc1c695e766e36e9286e51886f
.rdata	13312	8988bb43fad0dc985828551004bcb5e9
.data	1024	c10a5ce974bde4ee969da04b34c08b67
.rsrc	22016	9956c1dba70f50237c52df443bfce072

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for winlogonview.exe

copyright for information about winlogonview.exe