How to remove Au_.exe
Au_.exe
The module Au_.exe has been detected as PUP.Tencent
File Details
| Product Name: | QQPlayer |
| Company Name: | 腾讯科技(深圳)有限公司 |
| MD5: | a2d5810fccbd7f4f5f057cab37429eee |
| Size: | 301 KB |
| First Published: | 2017-05-24 15:06:59 (8 years ago) |
| Latest Published: | 2022-04-18 23:19:21 (3 years ago) |
| Status: | PUP.Tencent (on last analysis) | |
| Analysis Date: | 2022-04-18 23:19:21 (3 years ago) |
Common Places:
| %programfiles%\tencent\qqplayer |
| %temp%\~nsu.tmp |
| %programfiles%\tencent |
| %temp% |
| %programfiles%\tencent |
| %programfiles%\tencent |
| %programfiles%\tencent |
| %programfiles%\tencent |
| %programfiles%\tencent |
| %programfiles%\tencent |
File Names:
| uninst.exe |
| Au_.exe |
Geography:
| 52.2% | ||
| 12.5% | ||
| 5.4% | ||
| 3.6% | ||
| 2.8% | ||
| 2.0% | ||
| 2.0% | ||
| 2.0% | ||
| 1.5% | ||
| 1.5% | ||
| 1.3% | ||
| 1.3% | ||
| 1.0% | ||
| 1.0% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.5% | ||
| 0.5% | ||
| 0.5% | ||
| 0.5% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% |
OS Version:
| Windows 7 | 48.6% | |
| Windows 10 | 24.3% | |
| Windows XP | 16.0% | |
| Windows 8.1 | 10.0% | |
| Windows 8 | 0.5% | |
| Windows Server 2012 R2 | 0.3% | |
| Windows Vista | 0.3% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0000354b |
PE Sections:
| Name | Size of data | MD5 |
| .text | 25600 | 3291075913c14a1799655a261fb21cca |
| .rdata | 6656 | 170563e94de7ebfd6e622a164ce38c8a |
| .data | 512 | 23d69b1e3a55dee07701198b7650a06b |
| .ndata | 0 | 00000000000000000000000000000000 |
| .rsrc | 29184 | b4594183f41926bc78f564c45bd63e6f |
More information:
Download GridinSoft
Anti-Malware - Removal tool for Au_.exe
