How to remove GuardMailRu.exe

GuardMailRu.exe

The module GuardMailRu.exe has been detected as PUP.MailRu

GuardMailRu.exe
Remove GuardMailRu.exe

File Details

Product Name:

GuardMailRu Module
MD5: 1ada7dcd019654b9c31017c936902158
Size: 1 MB
First Published: 2017-05-31 19:02:09 (8 years ago)
Latest Published: 2025-06-13 23:01:39 (3 weeks ago)
Status: PUP.MailRu (on last analysis)
Analysis Date: 2025-06-13 23:01:39 (3 weeks ago)

Overview

Signed By: LLC Mail.Ru
Status: Valid

Common Places:

%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\tbrx4l2z
%commonappdata%\guard.mail.ru
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\po3t905q
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\cncylrdr
%programfiles%\mail.ru\guard
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\62axopq5
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\ramo39an
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\apx6b559
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\2vfcr2p5
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5\0ps72r2m

File Names:

GuardMailRu[1].exe
GuardMailRu.exe
GuardMailRu[2].exe
A0320762.exe
A0001512.exe

Geography:

59.3%
25.4%
3.4%
3.4%
1.7%
1.7%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%

OS Version:

Windows 7 82.2%
Windows 10 8.5%
Windows XP 8.5%
Windows Vista 0.8%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00140886

PE Sections:

Name Size of data MD5
.text 1549312 74955341eff9af041952a338287600de
.rdata 270848 caf6da92838f69dafee1ce9195458002
.data 35328 2cda239472f70196b430500b66d3bf5c
.tls 512 bf619eac0cdf3f68d496ea9344137e8b
.rsrc 79872 9bed480090350aca0b0b56428d27f1d4
.reloc 106496 cc2f23a98fc76bf143c2f4cb786dfd51

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for GuardMailRu.exe
copyright for information about GuardMailRu.exe