How to remove AA_v3.exe

AA_v3.exe

The module AA_v3.exe has been detected as Risk.RemoteAdmin

AA_v3.exe
Remove AA_v3.exe

File Details

Product Name:

Ammyy Admin
Company Name:

Ammyy LLC
MD5: 11bc606269a161555431bacf37f7c1e4
Size: 755 KB
First Published: 2017-05-22 09:02:51 (8 years ago)
Latest Published: 2024-12-07 23:02:49 (11 months ago)
Status: Risk.RemoteAdmin (on last analysis)
Analysis Date: 2024-12-07 23:02:49 (11 months ago)

Overview

Signed By: Ammyy LLC
Status: Valid

Common Places:

%profile%\desktop
%profile%\downloads
%programfiles%\ammyy admin
%mydoc%\downloads\aa_v3.5.rar
%mydoc%\downloads\aa_v3.5
%desktop%\all program\ช่วยเหลือ online
%profile%\downloads\programs
%appdata%\skype\my skype received files
%profile%\ag\рабочий стол
%localappdata%\microsoft\windows\inetcache\ie\38kczqy8

File Names:

AA_v3.5.exe
AA_v3.exe
aa_v3.exe
Ammyy.exe
UZAKTAN YARDIM.exe
AA_v3(1).exe
AA_v3 (1).exe
AA_V3.EXE
ammy_admin.exe
ammyy.exe
Dc4.exe
Aammy.exe
AmmyAadmin_v3.exe
ammyy-admin [1].exe
AA_v3 Remote PC Control.exe
AA_v3_2.exe
AA_v3(2).exe
Otdalechen dostap.exe
Ammyy.Admin.exe
AmmyAdmin_v3.5.exe
Ammyy.Admin.3.5.Final_Soft98.iR.exe
Ammyy Admin.exe
AmmyAdmin_3.5.exe
AA_v3n.exe
Ammyy.Admin.3.5.Final.exe
A_v3.exe
NBYS_Remote.exe
AA3.exe
Ammy Admin.exe
$R3Q64LW.quarantined
A0219832.exe
ammyyadmin-tamindir.exe
AA.exe
uzak.exe
$R31R6IU.exe
Arby.exe
mscorsvw.exe
AA_v3 (2).exe
AA_35.exe
AA_v3[1].exe
Acesso Remoto.exe
aa_v35.exe
ammyfullversion.exe
Ammyy Admin v3.5.exe
Teknik Destek.exe
ammyyadmin.exe
AMMYY.exe
Ammyy_v3.5.exe
Ammy.exe
ff.exe
AmmyyRemote.exe
MegaRemoto.exe
conexao.exe
AA_v32.exe
ammy.exe
Pontec Remoto.exe
AMMYY_v3.exe
AA_v3_5.exe
Ammyy v3.5.exe
Suporte sysfar.exe
ammyy_admin.exe.EXE
ERP12 DESTEKK.exe
AA_v3.5 (2).exe
Remote AA_v3.5.exe
_ammyy_admin.exe
Acesso Remoto FCR Computadores 3117 5859.exe
Ammyy-Admin.exe
aa-v3.exe
Ammyy Acesso RemotoSTI.exe
TM.exe
AMMYY_v3.5.exe
aa_v3.5(1).exe
svchost.exe
AA_v3.5_1743554095.exe
AMMYY Admin v3.5.exe
$R4YUDRB.exe
AA_v35.exe
Acesso Remoto Ammy.exe
aa_v3.5.exe
AmmyAdmin.exe
AMMYY_351.exe
ammyy_351.exe
5b419a96c4294efe8c3eaa86c0944dd2.exe
Ammy_v3.5.exe
ammyyadmin .exe
AA_v3.jtx
ammyadmin_v3.5.exe
Soporte Marco.exe
Ammyy (1).exe
AA_v3 (2) - Copy.exe
AA_v3 (3).exe
AA_v3 (4).exe
AA_v3 (1) - Copy.exe
AA_v3 (4) - Copy.exe
AA_v3 (3) - Copy.exe
AA_v3 - Copy.exe
AAv3.exe
Tele Assistenza STARSYS.exe
AMMYY Admin v3.5 [Saisaswat].exe
AA_v3(1).exe.quarantined
AA_v3_03-03-2016.exe
Ammy_v3.exe
AA_V3_5.EXE
$R1ZFLFZ.exe
$R49WWFL.exe
AA_v3h.exe
123.exe
UzakYardim.exe

Geography:

21.2%
20.9%
13.5%
12.8%
5.1%
3.2%
2.8%
1.7%
1.5%
1.3%
1.0%
0.9%
0.9%
0.9%
0.9%
0.9%
0.8%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.4%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 7 46.4%
Windows 10 38.5%
Windows 8.1 6.6%
Windows XP 2.4%
Windows Server 2008 R2 2.0%
Windows Server 2012 1.5%
Windows Server 2012 R2 1.5%
Windows 8 0.4%
Windows Vista 0.3%
Windows Server 2003 0.3%
Windows Server 2016 0.2%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x0007c3ce

PE Sections:

Name Size of data MD5
.text 532480 18f21f4bf8c8043c6d676796d512243f
.rdata 102400 6bbf88e0cd6467daec2d2b231584f8da
.data 81920 eddb86cbb4b45a1e2c497057bcaf21a4
.rsrc 45056 d5bdf46d0655070c33aa072689764704

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for AA_v3.exe
copyright for information about AA_v3.exe