How to remove kernel.dll.o
- File Details
- Overview
- Analysis
kernel.dll.o
The module kernel.dll.o has been detected as PUP.Baidu
File Details
| Company Name: |
|
| MD5: |
8a1dfb84ca0e3f3e8a484a2657f4059e |
| Size: |
4 MB |
| First Published: |
2017-06-01 05:07:51 (6 years ago) |
| Latest Published: |
2018-10-27 04:07:42 (5 years ago) |
| Status: |
PUP.Baidu (on last analysis) |
|
| Analysis Date: |
2018-10-27 04:07:42 (5 years ago) |
Overview
| %desktop%\baiduyunguanjiaportable(황금왕관)\app\baiduyunguanjia |
| %profile%\downloads\baiduyunguanjiaportable(황금왕관)\app\baiduyunguanjia |
| %profile%\downloads\baiduyunguanjiaportable(황금왕관)\baiduyunguanjiaportable(황금왕관)\app\baiduyunguanjia |
| %sysdrive%\한국실업탁구연맹\새 폴더\app\baiduyunguanjia_5.3.2.4 |
| %sysdrive%\★다운로드\app\baiduyunguanjia_5.3.2.4 |
| %sysdrive%\개인자료 백업-2017-06-24\app\baiduyunguanjia_5.3.2.4 |
| %profile%\downloads\baiduyunguanjiaportable(황금왕관)\baiduyunguanjiaportable(황금왕관)\app |
| %profile%\downloads\baiduyunguanjiaportable(황금왕관)_5.3.2_kor (2)\baiduyunguanjiaportable(황금왕관)_5.3.2_kor\app |
| %appdata%\baidu |
| %sysdrive%\utility\바이두 pc\baiduyunguanjiaportable(황금왕관)_5.3.2_kor\app |
| Windows 10 |
83.3% |
|
| Windows Server 2008 R2 |
8.3% |
|
| Windows 8.1 |
8.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x10000000 |
| Entry Address: |
0x0032de27 |
| Name |
Size of data |
MD5 |
| .text |
3907584 |
280747d8342c439ba437f33d474be771 |
| .rdata |
565248 |
b2ee2ad24de15d8a0b7551de8a1f24f5 |
| .data |
102400 |
affa3d0307f08f1087f7c54f13ea3deb |
| .tls |
4096 |
620f0b67a91f7f74151bc5be745b7110 |
| .rsrc |
4096 |
fa3738d7f042e472b705726048688023 |
| .reloc |
167936 |
ef2ad74d5703a6db109cf0cd60fab8f4 |
