How to remove GetAV.exe
GetAV.exe
The module GetAV.exe has been detected as PUP.DriveTheLife
File Details
| Product Name: | GetAV Module |
| MD5: | c370f62105bf4e23ed840df1de7da9f4 |
| Size: | 63 KB |
| First Published: | 2017-05-24 15:06:34 (6 years ago) |
| Latest Published: | 2020-11-15 12:47:12 (3 years ago) |
| Status: | PUP.DriveTheLife (on last analysis) | |
| Analysis Date: | 2020-11-15 12:47:12 (3 years ago) |
Overview
| Signed By: | Shenzhen DriveTheLife Software Technology Co.Ltd |
| Status: | Valid |
Common Places:
| %programfiles%\wifisrv\bind |
| %programfiles%\drivethelife\bind |
| %programfiles%\telkomsel flash\160w |
| %programfiles%\wifisrv |
| %sysdrive%\system volume information\_restore{843bfdf4-1c23-4a58-ad0d-779288ac07bc} |
| %sysdrive%\lenovo copy\d\program files\dtlsoft\drivethelife |
| %sysdrive%\應用程式驅動程式\重灌程式\驅動程式\驅動人生 2012 4.5.18.136 多國語言免安裝版\drivethelife2012 |
| %sysdrive%\財法概論作業\重灌程式\驅動程式\驅動人生 2012 4.5.18.136 多國語言免安裝版\drivethelife2012 |
| %sysdrive%\新增資料夾\8-16g\8g\重灌程式\驅動程式\驅動人生 2012 4.5.18.136 多國語言免安裝版\drivethelife2012 |
| %sysdrive%\d暫放\新增資料夾\應用程式驅動程式\重灌程式\驅動程式\驅動人生 2012 4.5.18.136 多國語言免安裝版\drivethelife2012 |
Geography:
| 50.0% | ||
| 6.3% | ||
| 6.3% | ||
| 6.3% | ||
| 6.3% | ||
| 6.3% | ||
| 6.3% | ||
| 6.3% | ||
| 6.3% |
OS Version:
| Windows 7 | 68.8% | |
| Windows 10 | 25.0% | |
| Windows 8.1 | 6.3% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0000297d |
PE Sections:
| Name | Size of data | MD5 |
| .text | 28672 | 180847674190b7e6cd369b72170c9eb4 |
| .rdata | 8192 | c5f4354d0ef582eb01cfbbc75085ad01 |
| .data | 12288 | 33f3d5390130c8a1b08ee35614dca388 |
| .rsrc | 8192 | 413420e4282d83711b653e65d6365d41 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for GetAV.exe
