How to remove Au_.exe
Au_.exe
The module Au_.exe has been detected as PUP.Gen
File Details
| Company Name: | Yahoo! Inc. |
| MD5: | 123c7afac8985a90a25e58c7bb4dd301 |
| Size: | 69 KB |
| First Published: | 2017-07-14 13:13:19 (8 years ago) |
| Latest Published: | 2025-05-06 23:01:30 (7 months ago) |
| Status: | PUP.Gen (on last analysis) | |
| Analysis Date: | 2025-05-06 23:01:30 (7 months ago) |
Overview
| Signed By: | Yahoo! Inc. |
| Status: | Valid |
Common Places:
| %programfiles%\yahoo!\yset\{1d11539c-3d76-d945-9e81-16efa907818b} |
| %programfiles%\yahoo!\yset\{5f1456e6-44fc-7449-9644-4589e2e78f14} |
| %programfiles%\yahoo!\yset\{30d07b32-71e3-0e40-8c97-10590b3e21e4} |
| %programfiles%\yahoo!\yset\{0a8089e6-d9d7-f94f-8186-958785892ff0} |
| %programfiles%\yahoo!\yset\{d1593172-8d87-7748-9746-43b6c55a95e8} |
| %programfiles%\yahoo!\yset\{ba41a194-c8aa-ca47-84d0-5d02127b7240} |
| %programfiles%\yahoo!\yset\{bf38a86a-5a06-674c-99ac-4a460237d98c} |
| %programfiles%\yahoo!\yset\{9b2ed56f-a79b-a94a-a033-2ba202176c09} |
| %programfiles%\yahoo!\yset\{1e4dd8f2-c37c-f34e-9730-4996d20e8994} |
| %programfiles%\yahoo!\yset\{c56eff78-e97f-2e45-8932-80c38515b860} |
File Names:
| unset.exe |
| Au_.exe |
Geography:
| 27.0% | ||
| 24.3% | ||
| 5.1% | ||
| 4.6% | ||
| 4.0% | ||
| 3.4% | ||
| 3.4% | ||
| 3.1% | ||
| 2.9% | ||
| 2.7% | ||
| 2.7% | ||
| 2.6% | ||
| 2.4% | ||
| 2.3% | ||
| 1.2% | ||
| 0.9% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.7% | ||
| 0.7% | ||
| 0.6% | ||
| 0.5% | ||
| 0.5% | ||
| 0.4% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.2% | ||
| 0.1% | ||
| 0.1% | ||
| 0.1% | ||
| 0.1% | ||
| 0.1% | ||
| 0.1% | ||
| 0.1% |
OS Version:
| Windows 10 | 50.0% | |
| Windows 7 | 40.4% | |
| Windows 8.1 | 5.9% | |
| Windows XP | 2.2% | |
| Windows Vista | 0.7% | |
| Windows 8 | 0.4% | |
| Windows Server 2012 R2 | 0.2% | |
| Windows Server 2008 R2 | 0.1% | |
| Windows Server 2003 | 0.1% | |
| Windows Server 2012 | 0.1% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00003883 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 28160 | 00499a6f70259150109c809d6aa0e6ed |
| .rdata | 11264 | 07990aaa54c3bc638bb87a87f3fb13e3 |
| .data | 512 | 014871d9a00f0e0c8c2a7cd25606c453 |
| .ndata | 0 | 00000000000000000000000000000000 |
| .rsrc | 8704 | ba217f3ac8d271bd5b684ae81463988b |
| .reloc | 4096 | 0d3d6b8007ba24b950ec405537ee6850 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for Au_.exe
