How to remove AA_v3.exe
AA_v3.exe
The module AA_v3.exe has been detected as Risk.RemoteAdmin
File Details
| Product Name: | Ammyy Admin |
| Company Name: | Ammyy LLC |
| MD5: | 2c0d78dce96e06ce6fb7a210e12cee09 |
| Size: | 774 KB |
| First Published: | 2018-09-19 16:22:31 (5 years ago) |
| Latest Published: | 2023-02-10 23:44:48 (a year ago) |
| Status: | Risk.RemoteAdmin (on last analysis) | |
| Analysis Date: | 2023-02-10 23:44:48 (a year ago) |
Overview
| Signed By: | Ammyy LLC |
| Status: | Valid |
Common Places:
| %localappdata%\packages\microsoft.microsoftedge_8wekyb3d8bbwe\tempstate |
| %localappdata%\microsoft\windows\inetcache\low\ie |
| %desktop% |
| %profile% |
| %localappdata%\packages\microsoft.microsoftedge_8wekyb3d8bbwe\ac\#!001\microsoftedge\cache |
| %profile%\downloads |
| %sysdrive%\work |
| %programfiles% |
| %localappdata%\microsoft\windows\temporary internet files\content.ie5 |
| %localappdata%\microsoft\windows\inetcache\ie |
File Names:
| AA_v3 (1).exe |
| AA_v3[1].exe |
| AA_v3.exe |
| svchost.exe |
| AA_v3.7.exe |
| AA_v3.5.exe |
| tmv.exe |
| AA_v3[2].exe |
| AA_v3[3].exe |
| AA_v3[4].exe |
| AA.exe |
| AA_v3 (2).exe |
| AA_v3.exe.quarantined |
| Ammyy.Admin.Corporate.3.5.Final_Soft98.iR.exe |
| Ammyy Admin 3.5.exe |
| wuauclt.exe |
| Ammyy Admin_v3.exe |
| remoto.exe |
| Ammyy Admin 3.5 Corporate.exe |
| AA_v3 (1).exe.n0iq1i3.partial |
| AAdmin.exe |
| aa_v3.exe |
Geography:
| 34.8% | ||
| 10.7% | ||
| 10.0% | ||
| 8.4% | ||
| 5.0% | ||
| 3.3% | ||
| 3.3% | ||
| 3.0% | ||
| 2.3% | ||
| 2.0% | ||
| 2.0% | ||
| 1.3% | ||
| 1.3% | ||
| 1.0% | ||
| 1.0% | ||
| 1.0% | ||
| 1.0% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% |
OS Version:
| Windows 7 | 42.9% | |
| Windows 10 | 38.9% | |
| Windows 8.1 | 10.6% | |
| Windows Server 2008 R2 | 3.6% | |
| Windows Server 2012 R2 | 1.7% | |
| Windows XP | 1.7% | |
| Windows 8 | 0.7% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0007f818 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 548864 | a02a5c2c0a878b57221c34b79ca12ba3 |
| .rdata | 106496 | 7083d51b26fd661934815806829c9f2e |
| .data | 81920 | 558a6d7d7e9603687e46f5759ab49b87 |
| .rsrc | 45056 | 192458fe170a1c343e9d75e40d798e9d |
More information:
Download GridinSoft
Anti-Malware - Removal tool for AA_v3.exe
