How to remove CleanupConsole.exe.dat

CleanupConsole.exe.dat

The module CleanupConsole.exe.dat has been detected as PUP.OneSystemCare

CleanupConsole.exe.dat
Remove CleanupConsole.exe.d

File Details

MD5: 8b5c328f2718cdcfb2f464e99078ca0d
Size: 2 MB
First Published: 2017-05-21 18:09:01 (7 years ago)
Latest Published: 2018-10-12 12:04:03 (6 years ago)
Status: PUP.OneSystemCare (on last analysis)
Analysis Date: 2018-10-12 12:04:03 (6 years ago)

Overview

Signed By: One System Care Sp. Zo.o.
Status: Valid

Common Places:

%programfiles%\onesystemcare
%sysdrive%\adwcleaner\quarantine\files\xyfmvzycwesoanqtacsyajgblerpqzqp
%sysdrive%\adwcleaner\quarantine\files\chfmnjguhhcfmdudcufvhlakzvvnnokg
%sysdrive%\windows.old\program files (x86)\onesystemcare
%sysdrive%\$recycle.bin\s-1-5-21-1664815819-1314278771-338852205-1000\$rjgxnqk
%sysdrive%\$recycle.bin\s-1-5-21-79499368-3263216357-3996540022-1001\$r1d3a1f
%sysdrive%\$recycle.bin\s-1-5-21-2469723316-2303548437-3982465854-1001\$rxl3ff9
%sysdrive%\adwcleaner\quarantine\1xvpfvjcrg
%programfiles%
%sysdrive%\_programs

File Names:

CleanupConsole.exe
CleanupConsole.exe.dat
trzE2FD.tmp
CleanupConsole.exe.quarantined
trz6495.tmp
trz5A59.tmp
trz1558.tmp

Geography:

15.7%
7.1%
5.5%
4.7%
4.7%
4.7%
4.7%
3.9%
3.9%
3.9%
3.9%
3.1%
3.1%
2.4%
2.4%
1.6%
1.6%
1.6%
1.6%
1.6%
1.6%
1.6%
1.6%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%

OS Version:

Windows 10 45.7%
Windows 7 42.5%
Windows 8.1 11.0%
Windows 8 0.8%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x0007e427

PE Sections:

Name Size of data MD5
.text 978944 3b2228a64ce70afcc8dac056589ca8c3
.rdata 152576 e7fff88f6a0ca33ebb3db51f58331d88
.data 957440 9035a3daa3ac2e67e727498073136766
.rsrc 93696 d07211f11605545386d2247694c9be40
.reloc 48640 9f825b462cceb98fb05bf5e43ef9a2ae

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for CleanupConsole.exe.dat
copyright for information about CleanupConsole.exe.dat