How to remove awesomehp.exe

awesomehp.exe

The module awesomehp.exe has been detected as Adware.ELEX

awesomehp.exe
Remove awesomehp.exe

File Details

Product Name:

QQ浏览器
Company Name:

Tencent Inc.
MD5: 2eee15b1927eadff45013e94b0cb0d94
Size: 128 KB
First Published: 2017-05-21 03:01:53 (7 years ago)
Latest Published: 2024-01-10 23:52:13 (10 months ago)
Status: Adware.ELEX (on last analysis)
Analysis Date: 2024-01-10 23:52:13 (10 months ago)

Overview

Signed By: Tencent Technology(Shenzhen) Company Limited
Status: Valid

Common Places:

%windir%\temp\oua8207.tmp\secondu71
%windir%\temp\hpaf85.tmp
%windir%\temp\hp19f6.tmp
%windir%\temp\hpa61c.tmp
%programfiles%\59146aba_cacayima\pack\2
%system%\_twm
%windir%\temp\hp4442.tmp
%temp%\hp71a9.tmp
%temp%\hp8289.tmp
%windir%\temp\hp4089.tmp

File Names:

QQBrowser.exe
awesomehp.exe
chff.exe
A0005713.exe
chkk.exe
chpp.exe
aartemis.exe
A0146811.exe
sflg.exe
nationzoom.exe

Geography:

17.5%
11.2%
10.4%
8.0%
6.1%
5.4%
4.0%
4.0%
3.9%
3.6%
3.5%
2.9%
2.1%
1.7%
1.4%
1.3%
1.2%
1.1%
1.0%
0.9%
0.8%
0.8%
0.7%
0.7%
0.7%
0.5%
0.4%
0.4%
0.4%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 7 50.5%
Windows 10 31.9%
Windows 8.1 10.8%
Windows XP 4.7%
Windows 8 1.7%
Windows Vista 0.2%
Windows Embedded 8.1 0.1%
Windows Server 2012 R2 0.1%
Windows Server 2008 R2 0.1%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x50bc0000
Entry Address: 0x00001996

PE Sections:

Name Size of data MD5
.text 5632 80dd89c2edbd1c73ceebc7e2aab9fd2c
.rdata 3072 336a9b0b677bb6029609f002100d52ce
.data 512 6ccd07d08967a33e75cc730e5a6f5de3
.rsrc 112128 82d5b7b4360bb63ee9a6a2b220104716
.reloc 1536 7b60ab8368cb8627c7edc0e8d51d2e17

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for awesomehp.exe
copyright for information about awesomehp.exe