How to remove Update.exe
Update.exe
The module Update.exe has been detected as Adware.Kuaiba (Heuristic)
File Details
| Product Name: | 快压更新程序 |
| Company Name: | Shanghai Guangle Network Technology Ltd |
| MD5: | 38c4210ead0236cab8eb9a16e01b1fc5 |
| Size: | 903 KB |
| First Published: | 2017-05-28 15:11:23 (7 years ago) |
| Latest Published: | 2018-11-15 16:08:42 (6 years ago) |
| Status: | Adware.Kuaiba (Heuristic) (on last analysis) | |
| Analysis Date: | 2018-11-15 16:08:42 (6 years ago) |
Overview
| Signed By: | 上海广乐网络科技有限公司 |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %temp%\kz7zdata.7z\x86 |
| %programfiles%\¿ìñ¹\x86 |
| %programfiles%\ソ・ケ\x86 |
| %programfiles%\їмс№\x86 |
| %sysdrive%\$recycle.bin\s-1-5-21-3092207873-173956258-2776779464-1001\$r19tl9b.7z\x86 |
| %programfiles%\żěńą\x86 |
| %appdata%\zhp\quarantine |
| %sysdrive%\adwcleaner\quarantine\files\mkkqjpbdchlqaondykutffxwdslcecpl\x86 |
| %sysdrive%\windows.old.000\users\siswo\appdata\local\temp\kz7zdata.7z\x86 |
| %windir%\temp\kz7zdata.7z\x86 |
Geography:
| 20.0% | ||
| 15.0% | ||
| 12.5% | ||
| 10.0% | ||
| 5.0% | ||
| 5.0% | ||
| 5.0% | ||
| 5.0% | ||
| 2.5% | ||
| 2.5% | ||
| 2.5% | ||
| 2.5% | ||
| 2.5% | ||
| 2.5% | ||
| 2.5% | ||
| 2.5% | ||
| 2.5% |
OS Version:
| Windows 10 | 51.2% | |
| Windows 7 | 34.1% | |
| Windows 8.1 | 12.2% | |
| Windows 8 | 2.4% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x000379d1 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 595968 | 34685c75e58a36b426648174f8cc45eb |
| .rdata | 96768 | 14fd058a3f23a78eb6b111812e2dc97a |
| .data | 13824 | b9ea2cec52b6f0c6d86c7ec61c88c705 |
| .rsrc | 176128 | 4125700d9bd8d073f4a0e1f76307f822 |
| .reloc | 34304 | 5d866b22d6c73cf92f2aa3181250e459 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for Update.exe
