How to remove MaohaWifiSvr.VIR
- File Details
- Overview
- Analysis
MaohaWifiSvr.VIR
The module MaohaWifiSvr.VIR has been detected as Adware.Kuaiba
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
993921373facaef60cb9f9e84aab8301 |
| Size: |
165 KB |
| First Published: |
2017-05-21 03:02:10 (8 years ago) |
| Latest Published: |
2021-02-27 04:58:38 (4 years ago) |
| Status: |
Adware.Kuaiba (on last analysis) |
|
| Analysis Date: |
2021-02-27 04:58:38 (4 years ago) |
Overview
| %programfiles%\maoha\maohaap |
| %sysdrive%\adwcleaner\quarantine\files\hqwcouoiidlkcdajrpouhcgvlpxpqmpq\maohaap |
| %sysdrive%\adwcleaner\quarantine\files\hcujyzvejsqewsyzgwflihedipilvmxu\maohawifi |
| %programfiles%\greatmaker\maohawifi |
| %sysdrive%\$recycle.bin\s-1-5-21-1644659338-4088440750-3721922704-1000\$rliudau\maohaap |
| %sysdrive%\adwcleaner\quarantine\files\lnildocnvdvpvylzcpuvgepxlpdcmqnz\maohaap |
| %sysdrive%\progra~2\maoha\maohaap |
| %sysdrive%\adwcleaner\quarantine\files\pjinqkipjkvnuldfyfzbcyeninupyuxs\maohaap |
| %programfiles%\greatmaker |
| %programfiles%\maoha |
| MaohaWifiSvr.exe |
| MaohaWifiSvr.VIR |
| MaohaWifiSvr.exe.quarantined |
| MaohaWifiSvr.exe.vir |
| MAOHAW~2.EXE |
| maohawifisvr.exe |
| wif45D1.tmp |
| Indonesia |
32.4% |
|
| Vietnam |
26.7% |
|
| Taiwan |
7.9% |
|
| Turkey |
5.5% |
|
| Thailand |
4.7% |
|
| Iran |
2.2% |
|
| South Korea |
1.6% |
|
| Russia |
1.5% |
|
| Hong Kong |
1.3% |
|
| China |
1.3% |
|
| Algeria |
1.2% |
|
| Egypt |
1.2% |
|
| India |
0.9% |
|
| Bulgaria |
0.8% |
|
| Romania |
0.7% |
|
| Iraq |
0.6% |
|
| Malaysia |
0.6% |
|
| Japan |
0.6% |
|
| Spain |
0.5% |
|
| Poland |
0.5% |
|
| Brazil |
0.5% |
|
| Mexico |
0.3% |
|
| Syria |
0.3% |
|
| Saudi Arabia |
0.3% |
|
| Morocco |
0.3% |
|
| Chile |
0.3% |
|
| Costa Rica |
0.3% |
|
| Philippines |
0.3% |
|
| Tunisia |
0.2% |
|
| Czech Republic |
0.2% |
|
| Italy |
0.2% |
|
| Kazakhstan |
0.2% |
|
| Serbia |
0.2% |
|
| Guatemala |
0.2% |
|
| Palestine |
0.2% |
|
| United States |
0.2% |
|
| Ukraine |
0.2% |
|
| Colombia |
0.2% |
|
| Belgium |
0.2% |
|
| Greece |
0.2% |
|
| Hungary |
0.1% |
|
| Singapore |
0.1% |
|
| Uruguay |
0.1% |
|
| United Arab Emirates |
0.1% |
|
| Pakistan |
0.1% |
|
| Austria |
0.1% |
|
| Denmark |
0.1% |
|
| Jordan |
0.1% |
|
| Slovenia |
0.1% |
|
| Israel |
0.1% |
|
| Mauritius |
0.1% |
|
| Argentina |
0.1% |
|
| Liberia |
0.1% |
|
| Belarus |
0.1% |
|
| South Africa |
0.1% |
|
| Venezuela |
0.1% |
|
| Windows 7 |
75.8% |
|
| Windows 8.1 |
12.8% |
|
| Windows 10 |
7.8% |
|
| Windows 8 |
2.7% |
|
| Windows Vista |
0.3% |
|
| Windows XP |
0.3% |
|
| Windows Server 2008 R2 |
0.2% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00011de6 |
| Name |
Size of data |
MD5 |
| .text |
114176 |
08cc69bf1bf273af7f3206173c3b41bc |
| .rdata |
29184 |
1b894481c25f37ce78808ba067a2a0b8 |
| .data |
4608 |
8239143271cde91193873946497908ba |
| .rsrc |
1536 |
755a737315af9117388c94d83277bec6 |
| .reloc |
12288 |
674225f354119f2e4badaa2be9e458db |
