How to remove mgadb.exe
mgadb.exe
The module mgadb.exe has been detected as Adware.Mobogenie
File Details
| MD5: | f7e52ad6f1016bb4dc14cdf8ca24799a |
| Size: | 4 MB |
| First Published: | 2017-05-21 12:06:06 (7 years ago) |
| Latest Published: | 2024-07-07 23:07:10 (9 months ago) |
| Status: | Adware.Mobogenie (on last analysis) | |
| Analysis Date: | 2024-07-07 23:07:10 (9 months ago) |
Overview
| Signed By: | Beijing AmazGame Age Internet Technology Co., Ltd. |
| Status: | Valid |
Common Places:
| %sysdrive%\system volume information\_restore{e79fa400-b217-4368-9e9f-04f8081b19f1}\rp374 |
| %localappdata%\mobogenie\version\oldversion\mobogenie |
| %programfiles%\mobogenie |
| %sysdrive%\windows.old\users\start_travel\appdata\local\mobogenie\version\oldversion\mobogenie |
| %localappdata%\mobogenie\version\newversion\mobogenie |
| %profile%\xp\local settings\application data\mobogenie\version\oldversion\mobogenie |
| %profile%\uido\configuración local\datos de programa\mobogenie\version\oldversion\mobogenie |
| %sysdrive%\datos\disco_lenovo\users\roberto b\appdata\local\mobogenie\version\oldversion\mobogenie |
| %profile%\omek\ustawienia lokalne\dane aplikacji\mobogenie\version\oldversion\mobogenie |
| %sysdrive%\archivos de programa\mobogenie |
File Names:
| A0131142.exe |
| mgadb.exe |
| A0107879.exe |
| A0107843.exe |
| A0000631.exe |
| mgadb-a627ca84-1c5c-4745-9877-c2c924ce9334.exe |
| A0006136.exe |
| mgadb.exe.vir |
| A0320813.exe |
| A0320787.exe |
Geography:
| Vietnam | 8.9% | |
| Thailand | 7.8% | |
| Brazil | 7.5% | |
| Russia | 6.2% | |
| Poland | 5.5% | |
| Taiwan | 4.9% | |
| Japan | 4.7% | |
| Indonesia | 4.4% | |
| United States | 3.3% | |
| Italy | 3.3% | |
| Turkey | 3.1% | |
| Argentina | 2.9% | |
| Canada | 2.7% | |
| Mexico | 2.2% | |
| Hong Kong | 1.8% | |
| South Korea | 1.6% | |
| Latvia | 1.6% | |
| Spain | 1.3% | |
| Colombia | 1.3% | |
| Bulgaria | 1.3% | |
| Malaysia | 1.3% | |
| Netherlands | 1.3% | |
| Saudi Arabia | 1.1% | |
| India | 1.1% | |
| Czech Republic | 1.1% | |
| France | 1.1% | |
| Ukraine | 1.1% | |
| Chile | 0.9% | |
| United Kingdom | 0.9% | |
| Uruguay | 0.9% | |
| Portugal | 0.9% | |
| Peru | 0.9% | |
| Kazakhstan | 0.9% | |
| Bolivia | 0.7% | |
| Israel | 0.7% | |
| Romania | 0.7% | |
| Serbia | 0.7% | |
| Australia | 0.4% | |
| Denmark | 0.4% | |
| Switzerland | 0.4% | |
| Algeria | 0.4% | |
| Egypt | 0.4% | |
| Germany | 0.4% | |
| New Zealand | 0.4% | |
| Greece | 0.4% | |
| Philippines | 0.4% | |
| Sri Lanka | 0.4% | |
| Finland | 0.2% | |
| Belgium | 0.2% | |
| Estonia | 0.2% | |
| Bosnia and Herzegovina | 0.2% | |
| Slovakia | 0.2% | |
| Pakistan | 0.2% | |
| Sweden | 0.2% | |
| Austria | 0.2% | |
| Honduras | 0.2% | |
| Croatia | 0.2% | |
| Ecuador | 0.2% | |
| United Arab Emirates | 0.2% | |
| Iran | 0.2% | |
| Belarus | 0.2% |
OS Version:
| Windows 7 | 43.1% | |
| Windows 10 | 36.3% | |
| Windows XP | 8.5% | |
| Windows 8.1 | 7.4% | |
| Windows 8 | 3.3% | |
| Windows Vista | 1.3% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00001130 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 630784 | bf66ee2f445e605e432acddd7151cca9 |
| .data | 5632 | 50f9946c8b708894ae71377253f670b7 |
| .rdata | 173568 | b1f0d99891575b69dcb95d0eeb591bb4 |
| .bss | 0 | 00000000000000000000000000000000 |
| .idata | 5632 | 438304c2b2dd3dc2073743fbd8b56b3b |
| /4 | 10240 | 4e5bdc017256c0c0ed78994a430d9d87 |
| /19 | 73728 | 804fcb6089ee69307a0a8fcc3cae796c |
| /35 | 1847808 | 7e8a44337a5adc3ca63ef2ab6f60fe96 |
| /47 | 156672 | 26b5d42a0da14b542b9ea6899fc7a328 |
| /61 | 204288 | f107efc4bc66cda44ed796e82036b0ee |
| /73 | 128512 | 7b18ddc82aef1a480cee720239c6e212 |
| /86 | 22528 | 00ae409e77c8ff742b162c79a157d2a0 |
| /97 | 679936 | f8a4f1cca0cf392831da72cb9017e3ab |
| /108 | 49664 | 29ccedb8ae3a63af4cb59d4cac0aaed2 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for mgadb.exe
