How to remove Au_.exe
Au_.exe
The module Au_.exe has been detected as Adware.Downloader
File Details
Product Name: | YTD Video Downloader |
MD5: | dd20a39a67ea5591bc81938362f47307 |
Size: | 286 KB |
First Published: | 2017-05-22 09:01:27 (6 years ago) |
Latest Published: | 2021-01-07 04:05:00 (3 years ago) |
Status: | Adware.Downloader (on last analysis) | |
Analysis Date: | 2021-01-07 04:05:00 (3 years ago) |
Common Places:
%temp%\~nsu.tmp |
%programfiles%\greentree applications\ytd video downloader |
%sysdrive%\adwcleaner\quarantine\files\trwfqjgjklsqoikrjcddaxlxxazinfic\ytd video downloader |
%sysdrive%\adwcleaner\quarantine\files\qfeolotvigmbhehrcmvwumkdpykvvngc\ytd video downloader |
%programfiles%\youtube.downloader.5.8.1.0.3\ytd video downloader |
%programfiles%\ytd video downloader |
%programfiles%\av\ytd\ytd video downloader |
%sysdrive%\adwcleaner\quarantine\fraqbc8wsa\ytd video downloader |
%programfiles%\greentree applications |
%sysdrive%\adwcleaner\quarantine\files\rbrqsbukqwmeokpuntroykwfsbisgeqv |
File Names:
Au_.exe |
Uninstall.exe |
uninstall.exe |
gUninstall.exe |
Geography:
20.6% | ||
8.5% | ||
6.4% | ||
6.4% | ||
5.7% | ||
4.3% | ||
4.3% | ||
4.3% | ||
3.5% | ||
3.5% | ||
2.8% | ||
2.1% | ||
2.1% | ||
1.4% | ||
1.4% | ||
1.4% | ||
1.4% | ||
1.4% | ||
1.4% | ||
1.4% | ||
1.4% | ||
1.4% | ||
1.4% | ||
1.4% | ||
0.7% | ||
0.7% | ||
0.7% | ||
0.7% | ||
0.7% | ||
0.7% | ||
0.7% | ||
0.7% | ||
0.7% | ||
0.7% | ||
0.7% | ||
0.7% | ||
0.7% | ||
0.7% |
OS Version:
Windows 10 | 43.1% | |
Windows 7 | 42.4% | |
Windows 8.1 | 8.3% | |
Windows XP | 2.8% | |
Windows Vista | 2.1% | |
Windows 8 | 1.4% |
Analysis
Subsystem: | Windows GUI |
PE Type: | pe |
OS Bitness: | 32 |
Image Base: | 0x00400000 |
Entry Address: | 0x000039e3 |
PE Sections:
Name | Size of data | MD5 |
.text | 28672 | f569e353af0ed51bf4c216faa9bed4e7 |
.rdata | 11264 | 91eee43954e068e650f7b73a8b0e6915 |
.data | 512 | db9f7acbf1c3ddfe255077b699955dfa |
.ndata | 0 | 00000000000000000000000000000000 |
.rsrc | 51200 | 06e15e3e14f977b938c499cc6cf33409 |
.reloc | 4096 | d7c163401b48e12d9ce9434bfd2d0edc |
More information:
Download GridinSoft
Anti-Malware - Removal tool for Au_.exe