How to remove GuardMailRu[1].exe
- File Details
- Overview
- Analysis
GuardMailRu[1].exe
The module GuardMailRu[1].exe has been detected as PUP.MailRu
File Details
| Product Name: |
|
| MD5: |
63b94e5f3063d6fd631b6bdca4a6f4ff |
| Size: |
1 MB |
| First Published: |
2017-05-31 23:06:50 (8 years ago) |
| Latest Published: |
2025-06-13 23:01:41 (a month ago) |
| Status: |
PUP.MailRu (on last analysis) |
|
| Analysis Date: |
2025-06-13 23:01:41 (a month ago) |
Overview
| %commonappdata%\guard.mail.ru |
| %system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\fzg8ckj5 |
| %system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\f4mhnzny |
| %allusersprofile%\\application data\guard.mail.ru |
| %system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\owtkg9uq |
| %system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\lixmvqoa |
| %system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5 |
| %commonappdata% |
| %sysdrive%\bamp\румянцев корень с\компьютер рам\documents and settings\localservice\local settings\temporary internet files\content.ie5 |
| %sysdrive%\system volume information\_restore{4eab92ee-e966-4d87-9a2b-92c35fc5a3a0} |
| GuardMailRu.exe |
| GuardMailRu[1].exe |
| GuardMailRu[2].exe |
| A0320761.exe |
|
51.7% |
|
|
23.3% |
|
|
8.3% |
|
|
3.3% |
|
|
3.3% |
|
|
1.7% |
|
|
1.7% |
|
|
1.7% |
|
|
1.7% |
|
|
1.7% |
|
|
1.7% |
|
| Windows 7 |
71.7% |
|
| Windows 10 |
16.7% |
|
| Windows XP |
11.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x001203a6 |
| Name |
Size of data |
MD5 |
| .text |
1373184 |
a3cc7aa1e8b9579abc93321c8cd9c134 |
| .rdata |
213504 |
cfe0fed1ab7c1c48dfb921b500eead92 |
| .data |
35328 |
0620f5d913c9fb33832284a1f7e608f1 |
| .tls |
512 |
bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc |
79872 |
33b82d4a983fa7d6bd00c7bb53601ecf |
| .reloc |
81408 |
3fc98b9abbd17357da5d181c285e8b81 |
![GuardMailRu[1].exe](/screens/screen-63b94e5f3063d6fd631b6bdca4a6f4ff.png "Remove PUP.MailRu")
![copyright for information about GuardMailRu[1].exe](/images/copyright.png)