How to remove update.exe
update.exe
The module update.exe has been detected as Adware.Gen
File Details
Product Name: | 口水党升级程序 |
Company Name: | koushuidang.cn |
MD5: | 3fbd1ed0c21744feff747bbdecb46878 |
Size: | 96 KB |
First Published: | 2017-07-23 09:10:16 (6 years ago) |
Latest Published: | 2020-08-22 16:27:02 (3 years ago) |
Status: | Adware.Gen (on last analysis) | |
Analysis Date: | 2020-08-22 16:27:02 (3 years ago) |
Overview
Signed By: | Shanghai Ban Ru Tech Co. Ltd. |
Status: | Valid |
Common Places:
%localappdata%\tucao\1.2.0.7 |
%sysdrive%\adwcleaner\quarantine\fraqbc8wsa\1.2.0.7 |
%localappdata%\tucao\1.2.0.10 |
%sysdrive%\adwcleaner\quarantine\1xvpfvjcrg\1.2.0.7\tc0108.tmp |
%sysdrive%\adwcleaner\quarantine\xrpmcarcr4\1.2.0.7 |
%sysdrive%\adwcleaner\quarantine\rywtiizs2t\1.2.0.7 |
%sysdrive%\adwcleaner\quarantine\files\slaadseknzfptlylxiytexwmlbzhztfx\1.2.0.7 |
%localappdata%\tucao\1.2.0.8 |
%sysdrive%\adwcleaner\quarantine\ameajswfch\1.2.0.7 |
%sysdrive%\adwcleaner\quarantine\8yfogkjxrr\1.2.0.7 |
Geography:
20.8% | ||
15.6% | ||
13.3% | ||
10.4% | ||
6.9% | ||
6.4% | ||
3.5% | ||
3.5% | ||
2.9% | ||
2.3% | ||
1.7% | ||
1.7% | ||
1.2% | ||
1.2% | ||
1.2% | ||
1.2% | ||
1.2% | ||
1.2% | ||
1.2% | ||
1.2% | ||
0.6% | ||
0.6% | ||
0.6% |
OS Version:
Windows 10 | 48.3% | |
Windows 7 | 46.6% | |
Windows 8.1 | 2.9% | |
Windows 8 | 2.3% |
Analysis
Subsystem: | Windows GUI |
PE Type: | pe |
OS Bitness: | 32 |
Image Base: | 0x00400000 |
Entry Address: | 0x00003a62 |
PE Sections:
Name | Size of data | MD5 |
.text | 39424 | 699fb899e44d51cb98a652be8bd0cf88 |
.rdata | 26112 | 62a76002b9cb885c331bad0846155be4 |
.data | 4096 | 438737216c2f8fc8ff4679a3e38f1002 |
.rsrc | 11776 | f33e3ccb6dd808eb18d2e8a9c84a49c9 |
.reloc | 8192 | 381518e48996465e344553b1ec7ad0f8 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for update.exe