How to remove winws.exe
winws.exe
The module winws.exe has been detected as Trojan.Agent
File Details
| MD5: | 444fe359ca183016b93d8bfe398d5103 |
| Size: | 246 KB |
| First Published: | 2024-10-27 23:01:13 (8 months ago) |
| Latest Published: | 2025-06-26 23:01:20 (13 hours ago) |
| Status: | Trojan.Agent (on last analysis) | |
| Analysis Date: | 2025-06-26 23:01:20 (13 hours ago) |
Common Places:
| %desktop%\дс\zapret-discord-youtube-1.5.1 (1) |
| %sysdrive%\zapret-discord-youtube-1.5.1.rar |
| %sysdrive%\zapret new |
| %desktop%\zapret-discord-youtube_1.6.1 |
| %profile%\downloads\zapret-discord-youtube-1.6.1 |
| %mydoc%\das |
| %profile%\downloads\zapret-discord-youtube-1.6.1.rar |
| %desktop%\zapret-discord-youtube_1.6.0 |
| %desktop%\zapret-discord-youtube-main |
| %desktop%\zapret-discord-youtube-main |
Geography:
| 97.1% | ||
| 1.9% | ||
| 1.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000100400000 |
| Entry Address: | 0x00001000 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 138752 | 6d633f5eac3774be54b2c5dabc16e6be |
| .data | 2560 | aad6faf4750173bd98bf34db9456b4ae |
| .rdata | 88064 | a879f245ea766c7f5b679d69a6fe04e3 |
| .buildid | 512 | 9fb168c90dfd9c18dfd5d3e14f66e145 |
| .pdata | 4608 | 7d63232e4377d31d208b13fb462f551c |
| .xdata | 4608 | 955e64a1d7a8bf746254d9faf528f3c3 |
| .bss | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .idata | 4608 | 4aa9422fc3f0f4f5a8e7b1da1d68ef38 |
| .rsrc | 6992 | 2524e67271b7034b2b4bc7e68d1e1033 |
| .reloc | 512 | 70a4957b81e25a2000d78b4f9e667e80 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for winws.exe
