How to remove GEARAspiWDM.sys
- File Details
- Overview
- Analysis
GEARAspiWDM.sys
The module GEARAspiWDM.sys has been detected as Adware.BrowseFox
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
185ada973b5020655cee342059a86cbb |
| Size: |
26 KB |
| First Published: |
2017-05-21 06:07:18 (7 years ago) |
| Latest Published: |
2020-05-21 15:25:43 (4 years ago) |
| Status: |
Adware.BrowseFox (on last analysis) |
|
| Analysis Date: |
2020-05-21 15:25:43 (4 years ago) |
Overview
| %allusersprofile%\\application data\188f1432-103a-4ffb-80f1-36b633c5c9e1\x86\x86 |
| %allusersprofile%\\application data\b0ffcdd9-5261-4e59-b29a-17a4fabdebab\x86\x86 |
| %commonappdata%\188f1432-103a-4ffb-80f1-36b633c5c9e1\x86\x86 |
| %commonappdata%\b0ffcdd9-5261-4e59-b29a-17a4fabdebab\x86\x86 |
| %allusersprofile%\\dati applicazioni\b0ffcdd9-5261-4e59-b29a-17a4fabdebab\x86\x86 |
| %allusersprofile%\\dati applicazioni\188f1432-103a-4ffb-80f1-36b633c5c9e1\x86\x86 |
| %appdata%\\b0ffcdd9-5261-4e59-b29a-17a4fabdebab\x86\x86 |
| %allusersprofile%\\start menu\programs\application data\b0ffcdd9-5261-4e59-b29a-17a4fabdebab\x86\x86 |
| %allusersprofile%\.windows.0\application data\b0ffcdd9-5261-4e59-b29a-17a4fabdebab\x86\x86 |
| %sysdrive%\dokumente und einstellungen\all users\anwendungsdaten\b0ffcdd9-5261-4e59-b29a-17a4fabdebab\x86\x86 |
|
25.3% |
|
|
8.6% |
|
|
7.0% |
|
|
5.9% |
|
|
5.5% |
|
|
5.2% |
|
|
2.9% |
|
|
2.7% |
|
|
2.2% |
|
|
2.2% |
|
|
2.2% |
|
|
1.8% |
|
|
1.8% |
|
|
1.7% |
|
|
1.7% |
|
|
1.3% |
|
|
1.2% |
|
|
1.2% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.5% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
| Windows XP |
46.2% |
|
| Windows 7 |
30.8% |
|
| Windows Vista |
14.5% |
|
| Windows 10 |
7.1% |
|
| Windows 8.1 |
0.8% |
|
| Windows 8 |
0.6% |
|
Analysis
| Subsystem: |
Native |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00010000 |
| Entry Address: |
0x000045c2 |
| Name |
Size of data |
MD5 |
| .text |
7808 |
f3760e5dd39424072c34c8d02dc497f8 |
| .rdata |
1152 |
3d5afd33525a2a483672737c46235b68 |
| .data |
896 |
d1dfaf14ed843866a78e5bb52b5dc48d |
| PAGE |
6656 |
cd2cb86d11817d1734100225389aa9ad |
| INIT |
1920 |
576412f01e6330a697bb2b303038d95a |
| .rsrc |
896 |
71bcdb94e0444524621560fe8d7d0cfc |
| .reloc |
768 |
7676308c37fc60b4f671872fb314a0c8 |
