How to remove A0428063.exe

A0428063.exe

The module A0428063.exe has been detected as Adware.Eszjuxuan

A0428063.exe
Remove A0428063.exe

File Details

Product Name:

UC浏览器
Company Name:

UCWeb Inc.
MD5: b47834aa24a378fd868230a695984774
Size: 1 MB
First Published: 2017-05-21 03:02:01 (6 years ago)
Latest Published: 2019-12-13 14:28:32 (4 years ago)
Status: Adware.Eszjuxuan (on last analysis)
Analysis Date: 2019-12-13 14:28:32 (4 years ago)

Overview

Signed By: TAOBAO (CHINA) SOFTWARE CO.,LTD.
Status: Valid

Common Places:

%appdata%\ucchannel\package\chrome-bin\6.1.2107.204\backup
%programfiles%\ucbrowser\application\6.1.2107.204\backup
%sysdrive%\adwcleaner\quarantine\files\mntitkbfiadmnocirbrxqyabirvogjqf\package\chrome-bin\6.1.2107.204\backup
%sysdrive%\adwcleaner\quarantine\files\boyxuimimdijubjdszkpssdnnuvycppo\package\chrome-bin\6.1.2107.204\backup
%programfiles%\ucbrowser\temp\source11100_27050\chrome-bin\6.1.2107.204\backup
%programfiles%\ucbrowser\application
%profile%\dministrator\application data\ucchannel\package\chrome-bin\6.1.2107.204\backup
%sysdrive%\system volume information\_restore{f14a1c2c-a641-43f9-a293-b0cb265a4677}\rp1244
%sysdrive%\system volume information\_restore{f14a1c2c-a641-43f9-a293-b0cb265a4677}\rp1252
%programfiles%\ucbrowser\temp\source5676_15053\chrome-bin\6.1.2107.204\backup

File Names:

UCBrowser.exe
A0428063.exe
A0428020.exe
A0432393.exe
A0432608.exe
A0428909.exe
ucbrowser.exe
$REKP6N4.exe
UCBrowser.exe.del
$RM950EF.exe

Geography:

22.9%
16.6%
15.4%
6.6%
5.1%
4.9%
4.3%
1.7%
1.6%
1.3%
1.2%
1.2%
1.1%
0.9%
0.7%
0.6%
0.6%
0.6%
0.6%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.4%
0.4%
0.4%
0.4%
0.3%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 7 49.0%
Windows 10 42.8%
Windows 8.1 6.5%
Windows 8 1.0%
Windows XP 0.5%
Windows Vista 0.2%
Windows Embedded Standard 0.1%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x0006fd1f

PE Sections:

Name Size of data MD5
.text 608256 f0a507b72e1f77b75fcc22d49aa3c89d
.rdata 219136 67166cd26514c4b078a6dff437c6b9e8
.data 5632 4a6861a582a9733edd7ce7a546b08bc1
.gfids 1024 145de3f64395b97d65fad6a40873e249
.tls 512 bf619eac0cdf3f68d496ea9344137e8b
_RDATA 512 6a4d701a80c9128ba46180eb8218a58f
.rsrc 298496 322c7c208357b5297acdd238984e908b
.reloc 26624 26c46519701e88d4440ae0f174326d1e

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for A0428063.exe
copyright for information about A0428063.exe