How to remove Ad-Watch2007.exe
- File Details
- Overview
- Analysis
Ad-Watch2007.exe
The module Ad-Watch2007.exe has been detected as Trojan.Gen
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
67f518dbd7de862056e93b719b6822eb |
| Size: |
3 MB |
| First Published: |
2018-07-24 06:03:20 (5 years ago) |
| Latest Published: |
2020-09-23 16:35:34 (3 years ago) |
| Status: |
Trojan.Gen (on last analysis) |
|
| Analysis Date: |
2020-09-23 16:35:34 (3 years ago) |
| %sysdrive%\tools\01 工具程式\防毐軟體&掃毐工具\lavasoft ad-aware 2007 professional edition.v7.0.1.3 |
| %sysdrive%\contenu\logiciels\logiciels anti-malwares\lavasoft ad-aware\lavasoft ad-aware 2007\lavasoft ad-aware 2007 professional edition v7.0.1.3 incl-crack eng-ita-deu- french -esp par nac nacer du 69 lyon xcellent pour windows vista.rar\qw |
| %sysdrive%\z e\a a komputerowe\ochrona komputera\portable ad-aware pro 7.0.1.3\ad-aware_portable_pro_7.0.1.3_en.exe\adaware2007portable |
| %sysdrive%\recycler\s-1-5-21-1715567821-1229272821-682003330-1003\de12584.rar |
| %programfiles%\lavasoft |
| %sysdrive%\backup\photon\copied_from_gabor\store\lavasoft-ad-aware2007 |
| %temp%\rar$exa0.168\lavasoft ad-aware 2008 professional edition |
| %temp%\rar$exa0.165\lavasoft ad-aware 2008 professional edition |
| %temp%\rar$exa0.273\lavasoft ad-aware 2008 professional edition |
| %temp%\rar$exa0.820\lavasoft ad-aware 2008 professional edition |
|
26.7% |
|
|
20.0% |
|
|
13.3% |
|
|
6.7% |
|
|
6.7% |
|
|
6.7% |
|
|
6.7% |
|
|
6.7% |
|
|
6.7% |
|
| Windows 7 |
46.7% |
|
| Windows 10 |
40.0% |
|
| Windows Server 2003 |
6.7% |
|
| Windows XP |
6.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x001a0480 |
| Name |
Size of data |
MD5 |
| .text |
1695744 |
f301c7541cd3bc15882cdb8a53816c62 |
| .itext |
8192 |
64c96e73d5c7c47ea045e8de8a8222e5 |
| .data |
45056 |
a3e9c19e4d7009f1d7f74edd55e5556b |
| .bss |
36864 |
18747fcb2508eeec79415b32f63f3654 |
| .idata |
16384 |
baf3fa06b5947a6c450d1edb75c7afd3 |
| .tls |
4096 |
620f0b67a91f7f74151bc5be745b7110 |
| .rdata |
4096 |
163cc8f9a9d2afa8c01df431cab5fab4 |
| .reloc |
90112 |
c6d75f744dafb22b297da42173172198 |
| .text1 |
327680 |
9783c596b937bc8d2adf3cee5a93ded1 |
| .adata |
65536 |
fcd6bcb56c1689fcef28b57c22475bad |
| .data1 |
65536 |
4aa0e0e673d29154b781e34b5a34e04c |
| .reloc1 |
65536 |
e89403147815313b835ad7c03474fee5 |
| .pdata |
1179648 |
b2804a9db414d8e76d2bdf74a75bbff8 |
| .rsrc |
561152 |
741fb3de1c9b241cfb7fd62df968e093 |
| .idata |
8192 |
696621e70f424c25e19d716222d5875a |
