» k2safer-surfe.exe
Overview
Analysis
File Details

k2safer-surfe.exe

The application k2safer-surfe.exe has been detected as adware by 23 anti-malware scanners.

File name:

k2safer-surfe.exe

MD5:

31f6e02292df02834624a1008b2edc06

SHA-1:

0d79a6edcc80bdb54e105efdf6f1c5a0ca078b67

SHA-256:

a0a11c251a2b91178e20dd7247e17cd123d96435eabe5a184e35eed4c700e4c9

Scanner detections:

23 / 68

Status:

Adware

Analysis date:

4/19/2024 1:31:36 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.Graftor.146923

919

Avira AntiVirus

Adware/AddLyrics.BA

7.11.164.2

avast!

Win32:Adware-gen [Adw]

2014.9-140731

AVG

Generic5

2015.0.3397

Baidu Antivirus

Adware.Win32.AddLyrics

4.0.3.14731

Bitdefender

Gen:Variant.Adware.Graftor.146923

1.0.20.1060

Comodo Security

Application.Win32.Adware.WDUnlocker.A

18971

Emsisoft Anti-Malware

Gen:Variant.Adware.Graftor.146923

8.14.07.31.11

ESET NOD32

Win32/AdWare.AddLyrics.AY (variant)

8.10155

Fortinet FortiGate

Riskware/AddLyrics

7/31/2014

F-Secure

Gen:Variant.Adware.Graftor.146923

11.2014-31-07_5

G Data

Gen:Variant.Adware.Graftor.146923

14.7.24

IKARUS anti.virus

PUA.AddLyrics

t3scan.1.6.1.0

K7 AntiVirus

Adware

13.181.12846

McAfee

Artemis!31F6E02292DF

5600.7053

MicroWorld eScan

Gen:Variant.Adware.Graftor.146923

15.0.0.636

Reason Heuristics

Threat.Win.Reputation.IMP

14.7.31.11

Rising Antivirus

PE:Trojan.Win32.Generic.17044CE0!386157792

23.00.65.14729

Sophos

Generic PUA AN

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Graftor

10450

Trend Micro House Call

TROJ_GEN.R0CBH09GH14

7.2.253

Trend Micro

TROJ_GEN.R0CBC0EGL14

10.465.31

VIPRE Antivirus

Trojan.Win32.Generic

31608

File size:

96 KB (98,304 bytes)

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\di6safer-surf\k2safer-surfe.exe

File PE Metadata

Compilation timestamp:

7/13/2014 3:15:17 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

1536:ueidWQ48D9jeMywNX8UPlAcwDDJ6JsWjcdS+q2kw6iLjNE:ueidWQnBpigliDXS+76c5

Entry address:

0x43E4

Entry point:

E8, 44, 40, 00, 00, E9, 7F, FE, FF, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A1, 60, 40, 41, 00, 33, C5, 89, 45, FC, 83, 7D, 08, FF, 57, 74, 09, FF, 75, 08, E8, 28, 1C, 00, 00, 59, 83, A5, E0, FC, FF, FF, 00, 6A, 4C, 8D, 85, E4, FC, FF, FF, 6A, 00, 50, E8, 88, 41, 00, 00, 8D, 85, E0, FC, FF, FF, 89, 85, D8, FC, FF, FF, 8D, 85, 30, FD, FF, FF, 83, C4, 0C, 89, 85, DC, FC, FF, FF, 89, 85, E0, FD, FF, FF, 89, 8D, DC, FD, FF, FF, 89, 95, D8, FD, FF, FF, 89, 9D, D4, FD, FF, FF, 89, B5, D0, FD, FF, FF, 89, BD, CC... 
[+]

Entropy:

5.6449

Code size:

46.5 KB (47,616 bytes)

Remove k2safer-surfe.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.