How to remove QClean.exe
QClean.exe
The module QClean.exe has been detected as PUP.ChinAd
File Details
| Company Name: | 鲁大师 |
| MD5: | 2061741db13249efd99fd6a034971956 |
| Size: | 1 MB |
| First Published: | 2024-11-05 23:01:41 (a year ago) |
| Latest Published: | 2025-04-28 23:01:31 (7 months ago) |
| Status: | PUP.ChinAd (on last analysis) | |
| Analysis Date: | 2025-04-28 23:01:31 (7 months ago) |
Overview
| Signed By: | Chengdu Qilu Technology Co. Ltd. |
| Status: | Valid |
Common Places:
| %programfiles%\ludashi |
| %programfiles%\ludashi |
Geography:
| 50.0% | ||
| 50.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0006086a |
PE Sections:
| Name | Size of data | MD5 |
| .text | 659456 | 40aee2287eb9d3bf0fbbc84f870163de |
| .rdata | 152576 | 7975149c885c33e409b53020941aa04c |
| .data | 15360 | 0348e974fc20d3e9785efc03b132af49 |
| .rsrc | 434176 | b7b5bd557933927c900fcc9874f9b550 |
| .reloc | 31232 | b8083eb3c8a74ec40ec40985a1fb8bb3 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for QClean.exe
