How to remove yacnvd.exe.85971.gzquar

» File
File Details
Overview
Analysis

yacnvd.exe.85971.gzquar

The module yacnvd.exe.85971.gzquar has been detected as Adware.ELEX

yacnvd.exe.85971.gzquar

Remove yacnvd.exe.85971.gzq

File Details

Main Info:

MD5:	4118afbb3e312ee0cdbf7796684d9bc4
Size:	257 KB
First Published:	2017-05-28 07:02:56 (7 years ago)
Latest Published:	2019-03-19 15:21:26 (6 years ago)

Analysis:

Status:	Adware.ELEX (on last analysis)
Analysis Date:	2019-03-19 15:21:26 (6 years ago)

Overview

Digital Signature

Signed By:	Beijing Xingyunwang Technology Co., Ltd
Status:	Valid

Common Places:

%commonappdata%\fibfi

%windir%\temp\nsi740c.tmp

%commonappdata%\hadha

%commonappdata%\cgjcf

%windir%\temp\nsibb47.tmp

%windir%\temp\nsicb97.tmp

%windir%\temp\nsid845.tmp

%commonappdata%\ehaeh

%windir%\temp\nsi6a82.tmp

%commonappdata%\adgad

File Names:

yacnvd.exe

yacnvd.exe.85971.gzquar

Geography:

	14.3%
	14.3%
	8.6%
	8.6%
	5.7%
	5.7%
	5.7%
	5.7%
	5.7%
	5.7%
	5.7%
	2.9%
	2.9%
	2.9%
	2.9%
	2.9%

OS Version:

Windows 7	50.0%
Windows 8.1	22.2%
Windows 10	16.7%
Windows 8	11.1%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0000f663

PE Sections:

Name	Size of data	MD5
.text	160768	fdd1830072be4f076ba6c677bd9e4bb1
.rdata	39936	de8a2e897284ddfeee6b220a3a97da99
.data	8192	e84a241464f8b882042e56b011991748
.rsrc	12288	7fada84160370a3b247aacf0c485d78b
.reloc	35328	48b59c7f2d11f34e2e0a6f544ef51978

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for yacnvd.exe.85971.gzquar

copyright for information about yacnvd.exe.85971.gzquar