How to remove ba9d.rbf
ba9d.rbf
The module ba9d.rbf has been detected as Adware.Amonetize (Heuristic)
File Details
| Product Name: | zlib |
| MD5: | b8a9e91134e7c89440a0f95470d5e47b |
| Size: | 105 KB |
| First Published: | 2017-05-22 09:04:06 (7 years ago) |
| Latest Published: | 2024-01-23 23:21:17 (a year ago) |
| Status: | Adware.Amonetize (Heuristic) (on last analysis) | |
| Analysis Date: | 2024-01-23 23:21:17 (a year ago) |
Common Places:
| %programfiles%\zaxar |
| %sysdrive%\config.msi |
| %programfiles% |
| %appdata%\nch software\components |
| %programfiles% |
| %appdata% |
| %appdata% |
| %appdata% |
| %appdata% |
| %appdata% |
File Names:
| zlib1.dll |
| ba9d.rbf |
| zlib1v2.dll |
Geography:
| 79.2% | ||
| 14.0% | ||
| 0.6% | ||
| 0.6% | ||
| 0.6% | ||
| 0.6% | ||
| 0.6% | ||
| 0.6% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% |
OS Version:
| Windows 10 | 46.9% | |
| Windows 7 | 43.2% | |
| Windows 8.1 | 7.4% | |
| Windows 8 | 1.5% | |
| Windows XP | 0.9% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x62e80000 |
| Entry Address: | 0x00001440 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 78336 | fec1a00b760f5e85512b0e9c90235f19 |
| .data | 512 | d98dcaa8ebf568009fc550f631b95594 |
| .rdata | 19456 | 592e3dff0dbc4bc2d05206086957012d |
| .bss | 0 | 00000000000000000000000000000000 |
| .edata | 2048 | f125b1f7467777587cfcf5f62792c8e6 |
| .idata | 2048 | f177d53f5b3483be044d900fd7101138 |
| .CRT | 512 | e98f5ea72365134db6af6d571ceb240b |
| .tls | 512 | 129fc74a3aafa04286a1e0d08421380e |
| .rsrc | 1024 | 42faa36c15b10475f8160f199c2b247f |
| .reloc | 2048 | 91e73ff6158e4b438d383a84fe8a8421 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for ba9d.rbf
