Should I remove Colour Separation Point Of Sale?
What percent of users and experts removed it?
80% remove it20% keep it
What do people think about it?
(click star to rate)
How common is it?
Reach 0.0008%
Versions
Version | Distribution |
1.0.0.0 |
100.00% |
|
Colour Separation Point Of Sale
What is Colour Separation Point Of Sale?
This is a WinCheck/CMI (variant) adware/browser hijacker variant that injects code into the user's web browser (IE, Chrome and Firefox). It is known as an ad-injector, a malicious process that once inside the web browser will hijack existing advertisements of underlying web sites (not associated with the website itself). It will also inject new ads in white space on the site or images that have standard banner sizes. These ads are typically for promoting shopping discount coupons, ads for PC optimizers or bundled PUP offers, or malvertising since it runs on sketchy ad networks.This runs as a startup process called WinCheck in the user's startup registry (Run key) and will execute each time the computer is restarted and the user logs in.
How do you know if you are infected? First, if you have this program installed then this adware is most likely still running. Next, you see ads in the browser that say something like "Ads by WinCheck".
Overview
The main program executable is ansu2435.exe. Typically most users end up uninstalling this just after a few days. The software installer includes 6 files and is usually about 1.99 MB (2,086,577 bytes).
- Possible malware installed by this program
- Displays unwanted advertisements
- The experts agree, you should remove it!
Warning, multiple anti-virus scanners have detected possible malware in Colour Separation Point Of Sale.
ansu2435.exe (d32abc01d8ff97f9716386f580072837) has been flagged by the following 13 scanners: |
Anti-Virus software | Version | Detection |
Lavasoft Ad-Aware |
663 |
Application.Generic.1234358 |
Baidu-International |
4.0.3.15413 |
PUA.Win32.Agent.81 |
Bitdefender |
1.0.20.515 |
Application.Generic.1234358 |
ByteHero BDV |
4.13.2015.10 |
Trojan.Exception.gen.101 |
Dr.Web |
9.0.0.0103 |
Adware.ClickMeIn.551 |
ESET-NOD32 |
9.11447 |
a variant of Win32/Adware.ConvertAd.DV |
F-Secure |
11.2015-13-04_2 |
Application.Generic.1234358 |
G Data |
15.4.25 |
Application.Generic.1234358 |
MicroWorld-eScan |
16.0.0.309 |
Application.Generic.1234358 |
NANO AntiVirus |
0.30.10.952 |
Riskware.Win32.ClickMeIn.dqciuy |
Symantec |
4/13/2015 rev. 2 |
WS.Reputation |
Tencent |
1.0.0.1 |
Trojan.Win32.Qudamah.Gen.2 |
TrendMicro-HouseCall |
7.2.103 |
Suspicious_GEN.F47V0323 |
pnspC93E.exe (b606e46bb3993212ddba7a09a4e4da0e) has been flagged by the following 7 scanners: |
Anti-Virus software | Software version | Detection |
avast! |
8.0.1489.320 |
Win32:Dropper-gen [Drp] |
Avira |
3.6.1.96 |
ADWARE/ClickMeIn.97963 |
Dr.Web |
7.0.12.3050 |
Adware.ClickMeIn.553 |
ESET-NOD32 |
11464 |
Win32/Adware.ConvertAd.FC |
SUPERAntiSpyware |
5.6.0.1032 |
Trojan.Agent/Gen-VBInject |
Symantec |
20141.2.0.56 |
WS.Reputation.1 |
TrendMicro-HouseCall |
9.700.0.1001 |
Suspicious_GEN.F47V0324 |
View all 20 all detections
Program details
Installation folder: C:\users\user\appdata\local\03d40274-1427128272-05e3-8706-7e0700080009
Uninstaller: "C:\users\user\appdata\Local\03D40274-1427128272-05E3-8706-7E0700080009\uninstall.exe"
Estimated size: 1.99 MB
Files installed by Colour Separation Point Of Sale
Program executable: | ansu2435.exe (Malware detected) |
Path: | C:\users\user\appdata\local\03d40274-1427128272-05e3-8706-7e0700080009\ansu2435.exe |
MD5: | d32abc01d8ff97f9716386f580072837 |
Additional files:
-
rnsp2772.exe
-
Uninstall.exe
-
(Malware detected) pnspC93E.exe
-
rnsxF412.exe
-
rnsy7D6F.exe
How do I remove Colour Separation Point Of Sale?
You can uninstall Colour Separation Point Of Sale from your computer by using the Add/Remove Program feature in the Window's Control Panel.
- On the Start menu (for Windows 8, right-click the screen's bottom-left corner), click Control Panel, and then, under Programs, do one of the following:
- Windows Vista/7/8/10: Click Uninstall a Program.
- Windows XP: Click Add or Remove Programs.
- When you find the program Colour Separation Point Of Sale, click it, and then do one of the following:
- Windows Vista/7/8/10: Click Uninstall.
- Windows XP: Click the Remove or Change/Remove tab (to the right of the program).
- Follow the prompts. A progress bar shows you how long it will take to remove Colour Separation Point Of Sale.
- If for some reason uninstallation fails, please install Microsoft's uninstall fixer utility which will help fix problems with programs that can't be uninstalled at support.microsoft.com.
OS VERSIONS
Win 7 (SP1) 44%
Win Vista (SP2) 6%
|
|
USER ACTIONS
|
Uninstall it 80%
Keep it 20%
|
|
|
AVERAGE INSTALL LIFESPAN
14.71
Days
|
Windows
Which Windows OS versions does it run on?
Windows 7 |
43.75% |
|
Windows 10 |
43.75% |
|
Windows XP |
6.25% |
|
Windows Vista |
6.25% |
|
Which OS releases does it run on? |
Windows 7 Home Premium |
31.25% |
|
Windows 8.1 |
25.00% |
|
Windows 7 Professional |
12.50% |
|
Microsoft Windows XP |
6.25% |
|
Windows 8 |
6.25% |
|
Windows 8.1 Pro |
6.25% |
|
Geography
59.26% of installs come from the United States
Which countries install it?
United States |
59.26% |
Germany |
14.81% |
Brazil |
7.41% |
Canada |
3.70% |
DK |
3.70% |
France |
3.70% |
Mexico |
3.70% |
Saudi Arabia |
3.70% |
PC manufacturers
What PC manufacturers (OEMs) have it installed?
Dell |
26.67% |
|
Hewlett-Packard |
26.67% |
|
Acer |
13.33% |
|
Samsung |
13.33% |
|
Lenovo |
13.33% |
|
Packard Bell |
6.67% |
|
Common models |
Samsung R540/R580/R780/SA... |
6.25% |
|
Positivo Positivo MOBI... |
6.25% |
|
PositivoEIH61CE |
6.25% |
|
PACKARD BELL BV IMEDIA D9... |
6.25% |
|
Packard Bell EasyNote TS1... |
6.25% |
|
LENOVO 20251 |
6.25% |
|