How to remove GuardMailRu[1].exe

GuardMailRu[1].exe

The module GuardMailRu[1].exe has been detected as PUP.MailRu

GuardMailRu[1].exe
Remove GuardMailRu[1].exe

File Details

Product Name:

GuardMailRu Module
MD5: 63b94e5f3063d6fd631b6bdca4a6f4ff
Size: 1 MB
First Published: 2017-05-31 23:06:50 (8 years ago)
Latest Published: 2025-06-13 23:01:41 (9 months ago)
Status: PUP.MailRu (on last analysis)
Analysis Date: 2025-06-13 23:01:41 (9 months ago)

Overview

Signed By: LLC Mail.Ru
Status: Valid

Common Places:

%commonappdata%\guard.mail.ru
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\fzg8ckj5
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\f4mhnzny
%allusersprofile%\\application data\guard.mail.ru
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\owtkg9uq
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\lixmvqoa
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5
%commonappdata%
%sysdrive%\bamp\румянцев корень с\компьютер рам\documents and settings\localservice\local settings\temporary internet files\content.ie5
%sysdrive%\system volume information\_restore{4eab92ee-e966-4d87-9a2b-92c35fc5a3a0}

File Names:

GuardMailRu.exe
GuardMailRu[1].exe
GuardMailRu[2].exe
A0320761.exe

Geography:

51.7%
23.3%
8.3%
3.3%
3.3%
1.7%
1.7%
1.7%
1.7%
1.7%
1.7%

OS Version:

Windows 7 71.7%
Windows 10 16.7%
Windows XP 11.7%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x001203a6

PE Sections:

Name Size of data MD5
.text 1373184 a3cc7aa1e8b9579abc93321c8cd9c134
.rdata 213504 cfe0fed1ab7c1c48dfb921b500eead92
.data 35328 0620f5d913c9fb33832284a1f7e608f1
.tls 512 bf619eac0cdf3f68d496ea9344137e8b
.rsrc 79872 33b82d4a983fa7d6bd00c7bb53601ecf
.reloc 81408 3fc98b9abbd17357da5d181c285e8b81

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for GuardMailRu[1].exe
copyright for information about GuardMailRu[1].exe