How to remove A0116617.exe
- File Details
- Overview
- Analysis
A0116617.exe
The module A0116617.exe has been detected as PUP.Reimage
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
815ac63068bf7963659067e88f9091f9 |
| Size: |
6 MB |
| First Published: |
2017-05-22 09:06:24 (7 years ago) |
| Latest Published: |
2019-06-05 10:30:20 (5 years ago) |
| Status: |
PUP.Reimage (on last analysis) |
|
| Analysis Date: |
2019-06-05 10:30:20 (5 years ago) |
Overview
| %programfiles%\reimage\reimage protector |
| %sysdrive%\arquivos de programas\reimage\reimage protector |
| %sysdrive%\system volume information\_restore{568da93d-41df-4b53-8225-4272403991ed}\rp111 |
| %appdata%\zhp\quarantine |
| %sysdrive%\archivos de programa\reimage\reimage protector |
| %sysdrive%\adwcleaner\quarantine\files\lbowixgljdhlgrglxlatahyxhoyftdxj\reimage protector |
| %sysdrive%\adwcleaner\quarantine\files\xqrcqwkwnifsmthfmoqcjpgaaebwibrb\reimage protector |
| %sysdrive%\adwcleaner\quarantine\files\upbhpeqnisjxgumcjcdpqnjmvzytvhlz\reimage protector |
| %sysdrive%\programas\reimage\reimage protector |
| %sysdrive%\$recycle.bin\s-1-5-21-522942490-2773252117-2359074556-500 |
| ReiGuard.exe |
| A0116617.exe |
| $RZC6H4H.exe |
| A0056158.exe |
| A0055829.exe |
|
14.2% |
|
|
10.1% |
|
|
7.0% |
|
|
6.1% |
|
|
5.0% |
|
|
4.8% |
|
|
4.6% |
|
|
4.2% |
|
|
3.7% |
|
|
3.5% |
|
|
3.1% |
|
|
2.8% |
|
|
2.4% |
|
|
2.4% |
|
|
2.0% |
|
|
1.8% |
|
|
1.5% |
|
|
1.5% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.1% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
| Windows 7 |
69.4% |
|
| Windows XP |
10.9% |
|
| Windows 10 |
9.4% |
|
| Windows Vista |
5.9% |
|
| Windows 8.1 |
3.1% |
|
| Windows 8 |
1.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0038b736 |
| Name |
Size of data |
MD5 |
| .text |
4301824 |
4c440243275cc05353c6d6254432f865 |
| .rdata |
1674752 |
0e851d1a9cfdea1b191926eb489181e8 |
| .data |
355840 |
95fe8fcecdaa706144f6dbdc023c0961 |
| .rsrc |
2048 |
e819da4ec00c9eaa261fe5351cf333b4 |
| .reloc |
546304 |
cf42c94378c495e61360fd093643aecc |
