How to remove A0015005.exe
- File Details
- Overview
- Analysis
A0015005.exe
The module A0015005.exe has been detected as PUP.Toolbar
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
1e492ad71c49734e419b8b84211ceeb3 |
| Size: |
1 MB |
| First Published: |
2017-06-20 14:06:07 (8 years ago) |
| Latest Published: |
2024-11-15 23:01:04 (a year ago) |
| Status: |
PUP.Toolbar (on last analysis) |
|
| Analysis Date: |
2024-11-15 23:01:04 (a year ago) |
Overview
| Signed By: |
Crawler Group, LLC |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %programfiles%\spyware terminator |
| %sysdrive%\windows.old.000\program files (x86)\spyware terminator |
| %sysdrive%\system volume information\_restore{115a6895-6e26-46ed-ab4e-4cfd2c2141b8}\rp36 |
| %programfiles% |
| %sysdrive%\archivos de programa |
| %sysdrive%\system volume information\_restore{586871f4-d9cc-4f9f-9fa0-5fea4b89a97f} |
| %sysdrive%\system volume information\_restore{83e9558c-6427-438e-8170-58877fd8ff61} |
| %sysdrive%\w.system |
| %sysdrive%\system volume information\_restore{34e962d2-6650-43fb-b380-a60b0f443bed} |
| %programfiles% |
| STInternetGuard.exe |
| A0015005.exe |
| A0138188.exe |
| A0005719.exe |
| A0117165.exe |
|
19.6% |
|
|
15.1% |
|
|
11.5% |
|
|
9.3% |
|
|
3.5% |
|
|
3.5% |
|
|
3.2% |
|
|
3.2% |
|
|
2.9% |
|
|
2.6% |
|
|
2.6% |
|
|
1.9% |
|
|
1.9% |
|
|
1.6% |
|
|
1.6% |
|
|
1.6% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.0% |
|
|
1.0% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
| Windows 10 |
52.2% |
|
| Windows 7 |
32.2% |
|
| Windows 8.1 |
10.5% |
|
| Windows XP |
3.2% |
|
| Windows 8 |
0.6% |
|
| Windows Vista |
0.6% |
|
| Windows Server 2003 |
0.6% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000f3d04 |
| Name |
Size of data |
MD5 |
| .text |
991232 |
6d1542b1077645a6946eb75941913472 |
| .itext |
3584 |
c02feaad276c72214805c88b4f322e47 |
| .data |
84992 |
4748a8dddca239a758450e132708c79e |
| .bss |
0 |
00000000000000000000000000000000 |
| .idata |
8704 |
407e9b9188269ce3cbd81ce1a4a3f181 |
| .didata |
1024 |
6e8f5035f9f517b5e0ca1d94d446c7e3 |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
5fcc1c2cb08c4387f34de4f67b231dd2 |
| .reloc |
94720 |
3b294b72e4f9ec464efa82a7977df401 |
| .rsrc |
58368 |
ea182e59e27008e9369e461b73ec9374 |
