How to remove USB.Protection.&.Recovery-1.3.exe

USB.Protection.&.Recovery-1.3.exe

The module USB.Protection.&.Recovery-1.3.exe has been detected as Ransom.Presenoker

USB.Protection.&.Recovery-1.3.exe
Remove USB.Protection.&.Rec

File Details

Company Name:

MirLab

MD5: f99bfddac9cb3be6465347635c295975
Size: 1 MB
First Published: 2019-12-09 10:15:54 (5 years ago)
Latest Published: 2024-03-27 23:07:23 (a year ago)
Status: Ransom.Presenoker (on last analysis)
Analysis Date: 2024-03-27 23:07:23 (a year ago)

Common Places:

%sysdrive%\программы\autorun\minstall\software
%sysdrive%\minstall v.21.09.2020 by andreyonohov & leha342\minstall\software
%sysdrive%\тера-1.5\игры\проги\minstall\minstall\software
%sysdrive%\дистрибутивы_образы\installall_02_04_2019\minstall\software
%profile%\downloads\minstall v.25.11.2023 by andreyonohov\minstall\software

Geography:

40.0%
20.0%
20.0%
20.0%

OS Version:

Windows 10 60.0%
Windows 7 40.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00025468

PE Sections:

Name Size of data MD5
CODE 148992 bac8bae7a5e5326cf49943b90d1c062a
DATA 10752 abafcbfbd7f8ac0226ca496a92a0cf06
BSS 0 00000000000000000000000000000000
.idata 6144 7a4934595db0efc364c3982c4e335d8c
.tls 0 00000000000000000000000000000000
.rdata 512 c4fdd0c5c9efb616fcc85d66056ca490
.reloc 6656 867a1120317d51734587a74f6ee70016
.rsrc 25600 a5d98b07b8d7900dc8b0c702ce509fd5

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for USB.Protection.&.Recovery-1.3.exe
copyright for information about USB.Protection.&.Recovery-1.3.exe