home

Adware Removal Tool by TSA.exe

Adware Removal Tool by TSA

Pawan Kumar

Publisher:
Pawan Kumar  (signed and verified)

Product:
Adware Removal Tool by TSA

Version:
5.1

MD5:
0ff0f5c72cf494a6a431df733a4f1e83

SHA-1:
b81c80f0af7c0bba2910c11de027abb2791f0a57

SHA-256:
37b90c06d1ea93710a8c502dc75ae47d59015d120f516dec7eba11898222fada

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 10:06:40 AM UTC  (today)

File size:
734.7 KB (752,296 bytes)

Product version:
5.1

Copyright:
Copyright © 2015

Original file name:
Adware Removal Tool by TSA.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\adware removal tool by tsa.exe

Digital Signature
Signed by:
Pawan Kumar

Authority:
COMODO CA Limited

Valid from:
10/29/2014 2:00:00 AM

Valid to:
10/29/2016 2:59:59 AM

Subject:
CN=Pawan Kumar, OU=Software Development, O=Pawan Kumar, STREET=H NO 453/19 kailash Colony, STREET=Shanti vihar Near ITI Sonipat, L=Sonipat, S=Haryana, PostalCode=131001, C=IN

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
317DD1C55F51AC2756D9C93C060C6FA5

File PE Metadata
Compilation timestamp:
3/31/2016 1:08:50 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:TLVaA/0rLVz0gQAHoLV4IDABaF56+Aq4WBTWpSqXhpeEioU2UsEyClfl9teBj8/Z:wCUUo+ONXiEiJ2IFlqMVV

Entry address:
0xAEBCE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 32, F7, FC, 56, 00, 00, 00, 00, 02, 00, 00, 00, A8, 00, 00, 00, 1C, 00, 0B, 00, 1C, D0, 0A, 00, 52, 53, 44, 53, 37, 7B, 45, 83, E6, 1D, 46, 44, 96, FF, 3C, DB, 5D, 54, 64, 2E, 01, 00, 00, 00, 43, 3A, 5C, 55, 73, 65, 72, 73, 5C, 55, 73, 65, 72, 5C, 44, 6F, 63, 75, 6D, 65, 6E, 74, 73, 5C, 56, 69...
 
[+]

Entropy:
6.1937

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
691 KB (707,584 bytes)

The file Adware Removal Tool by TSA.exe has been seen being distributed by the following 23 URLs.

https://www.dropbox.com/sh/venzjx8a5axf1rt/.../Adware Removal Tool by TSA.exe

C:\Users\Seifullah and Immad\Downloads\Adware Removal Tool by TSA.exe

ftp://192.168.0.102/Adware Removal Tool by TSA.exe

https://dl-web.dropbox.com/get/.../Adware Removal Tool by TSA.exe

https://tinyurl.com/jelonvir5

https://doc-00-44-docs.googleusercontent.com/docs/securesc/aebc4vo002gi7judojb4t4a49h47dl6n/5qkorjm5dbnmusrp0s97eniph28toaph/1475812800000/17584519907122099127/.../0B4ikxcuYPauReEtmVk9nZzh0Wnc?e=download

http://www.techtoolsweb.com/download/.../?wpdmdl=3007

https://www.educanet2.ch/d.php/1/2/.../Adware Removal Tool by TSA.exe

https://www.techsupportall.com/Adware-Removal-Tool-V3.7.exe

http://113.171.224.176/.../Adware Removal Tool by TSA.exe

http://123.briian.com/forum.php?mod=attachment&aid=MTIyNTl8NzZlZjUyY2F8MTQ4MDQ3MDY1NnwwfDQzNDA=

http://123.briian.com/forum.php?mod=attachment&aid=MTIyNTl8OGMwYmMwODl8MTQ3Nzg0Mzg4M3wwfDQzNDA=

http://www.techsupportall.com/download-art

http://r.srvtrck.com/v1/redirect?url=http://techsupportall.com/Adware-Removal-Tool.exe&type=url&abtag=abp:false&ykuid=4qfetjk8azbqu174b9akxhe38h&api_key=7d7a809da5bdbc602db5885fcc963e0f&site_id=df0dd5d782e5408d9fc24f65ce398b3e&tid=346e2e4f-ef56-448a-a521-c7ab0282ae03&dch=gaia&tna=gaia&tv=0.95&title=???t??? t?? Adware Removal Tool, d??e?? ????&refr=https://www.google.gr/&page=http://ioys.gr/.../&afsrc=1&cache=4TSKS49T5LF123PEV6EKI9RAEO4M3LHR&vid=1&ad_k=???? Adware Removal Tool ?????s? ??a??p???s?? &ad_t=advertiser&ad_zi=YieldLink&ad_dt=link

http://www.techsupportall.com/Adware-Removal-Tool.exe

http://www.adwareremovaltool.org/.../

ftp://192.168.1.3/Adware Removal Tool by TSA.exe

https://www.techsupportall.com/Adware-Removal-Tool.exe

http://www.techsupportall.com/Adware-Removal-Tool-V3.7.exe

http://www.adwareremovaltool.org/.../Adware Removal Tool by TSA.exe

https://www.techsupportall.com/download-art

http://www.adwareremovaltool.org/download-art

http://techsupportall.com/Adware-Removal-Tool.exe

Scan Adware Removal Tool by TSA.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.