Information about fkabvesvsqgthlvmvodikjvdrfdimmqt.back

fkabvesvsqgthlvmvodikjvdrfdimmqt.back

File Details

Product Name:

WinThruster
Company Name:

solvusoft
MD5: 9222dc807ff095358467458f9dc14bc1
Size: 21 KB
First Published: 2017-05-21 15:03:44 (8 years ago)
Latest Published: 2025-05-20 23:05:21 (6 months ago)
Status: Undefined (on last analysis)
Analysis Date: 2025-05-20 23:05:21 (6 months ago)

Overview

Signed By: Installer Genius (Solvusoft Corporation)
Status: Valid

Common Places:

%windir%\system32
%sysdrive%\windows.old.000\windows\system32
%sysdrive%\adwcleaner\quarantine\idcdjoyapn
%programfiles%\panda security\panda security protection\kosz
%sysdrive%\adwcleaner\quarantine\jboh8s4kwi
%system%
%sysdrive%\adwcleaner\quarantine
%programfiles%\panda security\panda security protection
%desktop%\restored
%sysdrive%\adwcleaner\quarantine\v1\20180424.160605

File Names:

roboot64.exe
fkabvesvsqgthlvmvodikjvdrfdimmqt.back
ydeorvhgmfbcwofiowhkhvdozyrxzalr.back
roboot64.exe#D5475221920302DD

Geography:

28.4%
11.0%
5.8%
5.3%
4.3%
4.2%
4.2%
2.8%
2.5%
2.3%
2.0%
2.0%
1.8%
1.5%
1.5%
1.2%
1.0%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.7%
0.7%
0.7%
0.7%
0.7%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%

OS Version:

Windows 10 47.5%
Windows 7 41.6%
Windows 8.1 9.1%
Windows 8 1.5%
Windows Vista 0.3%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000100000000
Entry Address: 0x0000247c

PE Sections:

Name Size of data MD5
.text 9728 219fecd3cfda4d8b10045f836868dcf3
.data 512 043c46095689123e1f5be96c109c2f46
.pdata 512 522e7ece45fc23ef8ecf7d65ea5148e5
.rsrc 1536 897db0f45a8e15165a9ee3089b2a5a0e
.reloc 512 4c69442f94342f01c9eecc224c99f9b1

More information:

Search on Virustotal
copyright for information about fkabvesvsqgthlvmvodikjvdrfdimmqt.back