How to remove A0046419.exe
- File Details
- Overview
- Analysis
A0046419.exe
The module A0046419.exe has been detected as Hijack.IE
File Details
| MD5: |
d9f7ef1e66b6cb790b4e0905d3e8474b |
| Size: |
1 MB |
| First Published: |
2017-05-29 08:01:51 (8 years ago) |
| Latest Published: |
2021-02-09 04:55:10 (4 years ago) |
| Status: |
Hijack.IE (on last analysis) |
|
| Analysis Date: |
2021-02-09 04:55:10 (4 years ago) |
Overview
| %localappdata%\mail.ru |
| %profile%\аксим\local settings\application data\mail.ru |
| %sysdrive%\adwcleaner\quarantine\files\tyxlomwxrrsvhgapamcfgpxtustjipeg |
| %sysdrive%\adwcleaner\quarantine\bbsqwy6yhk |
| %profile%\arina\local settings\application data\mail.ru |
| %localappdata% |
| %profile%\оля\local settings\application data |
| %sysdrive%\system volume information\_restore{3a5904a2-e5c4-4472-9131-863980350de4} |
| %profile%\dmin\local settings\application data |
| %sysdrive%\windows.old.000\users\ольга\appdata\local |
| mrkeeper.exe |
| A0046419.exe |
| A0098293.exe |
| A0066601.exe |
|
54.1% |
|
|
24.6% |
|
|
7.4% |
|
|
4.1% |
|
|
3.3% |
|
|
1.6% |
|
|
1.6% |
|
|
1.6% |
|
|
0.8% |
|
|
0.8% |
|
| Windows 7 |
59.8% |
|
| Windows XP |
18.9% |
|
| Windows 10 |
11.5% |
|
| Windows 8.1 |
6.6% |
|
| Windows Vista |
1.6% |
|
| Windows 8 |
1.6% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0005894b |
| Name |
Size of data |
MD5 |
| .text |
898048 |
6dcf9850d72d2712d56280cce9bd8d24 |
| .rdata |
172032 |
903b4abd2805b7089332963671281317 |
| .data |
41472 |
2552c178c2dc692f83884a23d47295f9 |
| .tls |
512 |
bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc |
512 |
da9e8769aa702da1ca0713d6a0336d18 |
| .reloc |
55808 |
0b1a53f1d15c14d236c944a29b01096f |
