» u3safer-surfq68.exe
Overview
Analysis
File Details
Behaviors (1)

u3safer-surfq68.exe

The application u3safer-surfq68.exe has been detected as adware by 11 anti-malware scanners. It runs as a scheduled task under the Windows Task Scheduler triggered daily at a specified time.

File name:

u3safer-surfq68.exe

MD5:

34ac613c1b0ed7f6cdbbf1a1dcea1f22

SHA-1:

d8777b40f90483759c06d21600644c668e4d40f9

SHA-256:

1735a3f8936bf4ed38a5db710c9a61ec2a86050bdc1536d0a593b7ab673d6929

Scanner detections:

11 / 68

Status:

Adware

Analysis date:

4/26/2024 11:21:36 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.Strictor.69213

800

Avira AntiVirus

ADWARE/Adware.Gen4

7.11.189.28

AVG

Adware Generic5.COXL

2014.0.4189

Baidu Antivirus

Adware.Win32.AddLyrics

4.0.3.141126

Bitdefender

Gen:Variant.Adware.Strictor.69213

1.0.20.1650

Emsisoft Anti-Malware

Gen:Variant.Adware.Strictor.69213

9.0.0.4570

ESET NOD32

Win32/Adware.AddLyrics.DC application

7.0.302.0

F-Secure

Gen:Variant.Adware.Strictor.69213

11.2014-26-11_4

G Data

Gen:Variant.Adware.Strictor.69213

14.11.24

MicroWorld eScan

Gen:Variant.Adware.Strictor.69213

15.0.0.990

Reason Heuristics

Adware.Task.P

14.11.26.8

File size:

430.5 KB (440,832 bytes)

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\ver0safer-surf\u3safer-surfq68.exe

File PE Metadata

Compilation timestamp:

11/15/2014 12:16:31 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

6144:DPTtXQshZ1Zm3M/3rAEep3ILCgECvJDCqdhhpaAub:rT9Qs/bsEfHEcCqLhYAub

Entry address:

0x331AD

Entry point:

E8, D0, 82, 00, 00, E9, 7F, FE, FF, FF, 6A, 14, 68, F0, 0A, 45, 00, E8, 3D, 33, 00, 00, 8B, 75, 08, 8B, DE, 89, 75, E4, 85, F6, 75, 19, 39, 75, 0C, 74, 14, E8, C2, 11, 00, 00, C7, 00, 16, 00, 00, 00, E8, 48, 11, 00, 00, 33, C0, EB, 77, 33, C0, 39, 45, 0C, 0F, 9D, C0, 85, C0, 74, E0, 33, C0, 8B, 7D, 10, 85, FF, 0F, 95, C0, 85, C0, 74, D2, 83, 7D, 0C, 00, 74, DC, 89, 7D, 08, 57, E8, C7, 55, 00, 00, 59, 83, 65, FC, 00, 85, F6, 74, 37, FF, 4D, 0C, 74, 2D, 57, E8, 9F, 83, 00, 00, 59, 0F, B7, C0, 89, 45, E0, 3D... 
[+]

Entropy:

6.3565

Code size:

287.5 KB (294,400 bytes)

Scheduled Task

Task name:

Safer-Surf Update

Trigger:

Daily (Runs daily at 12:09 PM)

Remove u3safer-surfq68.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.