How to remove Online-Guardian.exe.quarantined
- File Details
- Overview
- Analysis
Online-Guardian.exe.quarantined
The module Online-Guardian.exe.quarantined has been detected as PUP.Microleaves
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
a1cdb91704711de3b455feba2d49a3fd |
| Size: |
457 KB |
| First Published: |
2017-05-21 15:02:25 (8 years ago) |
| Latest Published: |
2021-01-07 08:11:06 (4 years ago) |
| Status: |
PUP.Microleaves (on last analysis) |
|
| Analysis Date: |
2021-01-07 08:11:06 (4 years ago) |
Overview
| %programfiles%\microleaves\traffic exchange |
| %sysdrive%\adwcleaner\quarantine\files\ltcguxvpsrbwkznnawxzlhosmwhdkxru\traffic exchange |
| %sysdrive%\adwcleaner\quarantine\files\nltlnnnizltgrxicwqifkyekhsdpiber\traffic exchange |
| %programfiles%\microleaves |
| %sysdrive%\system volume information\systemrestore\frstaging\program files (x86)\microleaves |
| %programfiles%\microleaves |
| %programfiles%\microleaves |
| %programfiles%\microleaves |
| %programfiles%\microleaves |
| %programfiles%\microleaves |
| Online-Guardian.exe |
| Online-Guardian.exe.quarantined |
| Taiwan |
21.1% |
|
| Vietnam |
6.7% |
|
| Israel |
5.6% |
|
| Turkey |
4.7% |
|
| Thailand |
4.1% |
|
| Iran |
3.8% |
|
| Indonesia |
3.5% |
|
| Argentina |
3.2% |
|
| Romania |
2.6% |
|
| Serbia |
2.3% |
|
| Tunisia |
2.3% |
|
| Portugal |
2.3% |
|
| Hong Kong |
2.0% |
|
| United States |
2.0% |
|
| Uruguay |
2.0% |
|
| Spain |
2.0% |
|
| Czech Republic |
1.8% |
|
| Peru |
1.8% |
|
| South Africa |
1.8% |
|
| Croatia |
1.5% |
|
| Italy |
1.5% |
|
| Saudi Arabia |
1.5% |
|
| Greece |
1.5% |
|
| Hungary |
1.2% |
|
| Japan |
1.2% |
|
| Mexico |
1.2% |
|
| United Kingdom |
1.2% |
|
| Morocco |
1.2% |
|
| Bosnia and Herzegovina |
0.9% |
|
| Libya |
0.9% |
|
| France |
0.9% |
|
| Uganda |
0.9% |
|
| Lebanon |
0.9% |
|
| Namibia |
0.9% |
|
| Ecuador |
0.9% |
|
| Netherlands |
0.9% |
|
| Belize |
0.9% |
|
| Iceland |
0.9% |
|
| Yemen |
0.6% |
|
| Russia |
0.6% |
|
| Moldova |
0.3% |
|
| Cyprus |
0.3% |
|
| Egypt |
0.3% |
|
| Qatar |
0.3% |
|
| Poland |
0.3% |
|
| Mongolia |
0.3% |
|
| Nigeria |
0.3% |
|
| Azerbaijan |
0.3% |
|
| Philippines |
0.3% |
|
| Windows 7 |
44.9% |
|
| Windows 10 |
42.7% |
|
| Windows 8.1 |
7.6% |
|
| Windows 8 |
4.8% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000012c0 |
| Name |
Size of data |
MD5 |
| .text |
40448 |
73e0865cf345ac2d9c56d1a6d580b100 |
| .data |
512 |
16ee330182c635e62f5744d95798cabb |
| .rdata |
2560 |
827465527bbb699931aaa715f673db33 |
| .eh_fram |
6656 |
bf1969dfefbc51c268a4bf3c5e0c836c |
| .bss |
0 |
00000000000000000000000000000000 |
| .idata |
2560 |
965b74cddf8e70a21e297d1e374cf8d1 |
| .CRT |
512 |
f4728ee0dfb902231b3f5bd9a460a459 |
| .tls |
512 |
00a4d24d8dac08a0a945300639df2101 |
| .rsrc |
371712 |
9d96cac335c0579f6b28229a497edffb |
