How to remove AA_v3.exe

AA_v3.exe

The module AA_v3.exe has been detected as Risk.RemoteAdmin

AA_v3.exe
Remove AA_v3.exe

File Details

Product Name:

Ammyy Admin
Company Name:

Ammyy LLC
MD5: 79910ca3e3418acca4fa2f2e16bac1a3
Size: 774 KB
First Published: 2018-08-21 12:05:01 (6 years ago)
Latest Published: 2024-11-22 23:03:05 (2 months ago)
Status: Risk.RemoteAdmin (on last analysis)
Analysis Date: 2024-11-22 23:03:05 (2 months ago)

Overview

Signed By: Ammyy LLC
Status: Valid

Common Places:

%localappdata%\microsoft\windows\temporary internet files\content.ie5
%localappdata%\microsoft\windows\temporary internet files\low\content.ie5
%desktop%
%sysdrive%\maga\תיקיות אישיות
%temp%
%sysdrive%\desktop
%profile%
%sysdrive%\winapp
%profile%\downloads
%programfiles%

File Names:

AA_v3[1].exe
AA_v3.exe
AA_v3.7.exe
AA_v3_7.exe
AA_v3 .exe
A0189670.exe
aa_v3.exe
AA_v37.exe
AA.exe
AA_v3- 25=08-2018.exe
AA_v3[3].exe
AA_v3[2].exe
AA_v3[4].exe
AA_v3[5].exe
AA_v3 (2).exe
AA_v3_NOVO.exe
Ammyy Admin Free 3.7 Portable.exe
AAA_v3.exe
AA_v3 (1).exe
ammy-admin.exe
aa3.exe

Geography:

36.4%
16.8%
9.8%
7.6%
5.4%
4.3%
2.7%
2.2%
2.2%
1.6%
1.6%
1.6%
1.6%
1.6%
1.1%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%

OS Version:

Windows 10 45.7%
Windows 7 39.2%
Windows 8.1 7.5%
Windows Server 2008 R2 3.8%
Windows XP 3.2%
Windows Server 2012 R2 0.5%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x0007f7f8

PE Sections:

Name Size of data MD5
.text 548864 348be86e757f25c42fae6e8f8b901a99
.rdata 106496 2d5330802f889579d1476fa04c41cb6f
.data 81920 f48f66eabe4ce2dd6c10b1ae8f532594
.rsrc 45056 192458fe170a1c343e9d75e40d798e9d

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for AA_v3.exe
copyright for information about AA_v3.exe