How to remove RestoroProtection.exe
- File Details
- Overview
- Analysis
RestoroProtection.exe
The module RestoroProtection.exe has been detected as PUP.Restoro
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
61324767ae1d5ce8ab0510774da7ce68 |
| Size: |
8 MB |
| First Published: |
2021-02-24 04:09:06 (4 years ago) |
| Latest Published: |
2025-10-24 23:00:25 (a month ago) |
| Status: |
PUP.Restoro (on last analysis) |
|
| Analysis Date: |
2025-10-24 23:00:25 (a month ago) |
Overview
| %programfiles%\restoro |
| %programfiles%\restoro |
| %programfiles%\restoro |
| %programfiles%\restoro |
| %programfiles%\restoro |
| %programfiles%\restoro |
| %programfiles%\restoro |
| %programfiles%\restoro |
| %programfiles%\restoro |
| %programfiles%\restoro |
|
17.0% |
|
|
11.3% |
|
|
5.7% |
|
|
5.2% |
|
|
3.1% |
|
|
3.1% |
|
|
2.6% |
|
|
2.1% |
|
|
2.1% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
| Windows 10 |
83.5% |
|
| Windows 7 |
15.5% |
|
| Windows Server 2012 R2 |
0.5% |
|
| Windows 8.1 |
0.5% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x004f4560 |
| Name |
Size of data |
MD5 |
| .text |
5841920 |
529d183c30b776e8ffa784aa311c22a9 |
| .rdata |
2739712 |
f18fbc2918e9e8ca210a26301eadce3a |
| .data |
407040 |
56a029e5205d9bae26cdbefcca5c0393 |
| .pdata |
225280 |
8361f64bcd81a57910678b9c5d384cf9 |
| .rsrc |
2048 |
1c653de9c8cb6ed55a6ad9aa3cc1c109 |
| .reloc |
79872 |
97557064944afb2d26c53f0de95b521c |
