How to remove GuardMailRu[1].exe

GuardMailRu[1].exe

The module GuardMailRu[1].exe has been detected as PUP.MailRu

GuardMailRu[1].exe
Remove GuardMailRu[1].exe

File Details

Product Name:

GuardMailRu Module
MD5: 6ddf334c6406cc869c68c14b9df6cab0
Size: 2 MB
First Published: 2017-08-05 11:08:16 (8 years ago)
Latest Published: 2021-01-07 16:33:55 (5 years ago)
Status: PUP.MailRu (on last analysis)
Analysis Date: 2021-01-07 16:33:55 (5 years ago)

Overview

Signed By: LLC Mail.Ru
Status: Valid

Common Places:

%commonappdata%\guard.mail.ru
%programfiles%\mail.ru\guard
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\k0p69ivp
%allusersprofile%\\application data\guard.mail.ru
%sysdrive%\bamp\румянцев корень с\компьютер рам\documents and settings\localservice\local settings\temporary internet files\content.ie5
%sysdrive%\bamp\румянцев корень с\компьютер рам\documents and settings\all users\application data
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5
%sysdrive%\backup\misc\backup\budata\homepc-pc-f620e90f_00000001\20121010084946\chg\00\documents and settings\all users
%allusersprofile%\\application data
%commonappdata%

File Names:

GuardMailRu.exe
GuardMailRu[1].exe
GuardMailRu[2].exe
A0075513.exe
A0075511.exe
$RNXE6XL.exe

Geography:

54.9%
27.5%
9.8%
5.9%
2.0%

OS Version:

Windows 7 81.1%
Windows XP 11.3%
Windows 10 7.5%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000db0a0

PE Sections:

Name Size of data MD5
.text 1645056 106b5123e0cf83db0903171f49e2f275
.rdata 303104 91fb49bab169540e996c2899a80983af
.data 37888 a5bd0f8b02fac8c59969edfda6fe773d
.tls 512 bf619eac0cdf3f68d496ea9344137e8b
.rsrc 80384 f3023cdf9dc0eeef8554d8d56e41a832
.reloc 107520 16c5e754e4b52f919d6c162f07fb2cc0

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for GuardMailRu[1].exe
copyright for information about GuardMailRu[1].exe