How to remove kernelUpdate.exe
- File Details
- Overview
- Analysis
kernelUpdate.exe
The module kernelUpdate.exe has been detected as PUP.Baidu
File Details
Company Name: |
|
MD5: |
1b9f487a1c05776e118e7497e324ba1f |
Size: |
2 MB |
First Published: |
2017-07-10 06:04:54 (6 years ago) |
Latest Published: |
2019-10-28 07:09:22 (4 years ago) |
Status: |
PUP.Baidu (on last analysis) |
|
Analysis Date: |
2019-10-28 07:09:22 (4 years ago) |
Overview
%appdata%\baidu\baidunetdisk |
%appdata%\baidu\baiduyunguanjia |
%sysdrive%\windows.old\users\abundance church\appdata\roaming\baidu\baidunetdisk |
%programfiles%\baiduyunguanjiaportable\app\baiduyunguanjia |
%sysdrive%\0o my documents o0\my utils\baidunetdisk |
%appdata%\baidu |
%programfiles% |
%sysdrive%\baidu |
%sysdrive% |
%profile%\downloads\baidu net disk 5.5.1.13 portable |
kernelUpdate.exe |
kernelupdate.exe.old |
|
54.9% |
|
|
16.3% |
|
|
8.7% |
|
|
6.4% |
|
|
2.9% |
|
|
2.9% |
|
|
2.3% |
|
|
0.9% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
Windows 10 |
56.1% |
|
Windows 7 |
38.1% |
|
Windows 8.1 |
4.1% |
|
Windows 8 |
0.9% |
|
Windows Server 2008 R2 |
0.6% |
|
Windows Server 2012 R2 |
0.3% |
|
Analysis
Subsystem: |
Windows CUI |
PE Type: |
pe |
OS Bitness: |
32 |
Image Base: |
0x00400000 |
Entry Address: |
0x001e0c73 |
Name |
Size of data |
MD5 |
.text |
2195456 |
893021778ef6d76c89daff7307e3d524 |
.rdata |
495104 |
e1483835a02b8cba5b17ee8ecd98c851 |
.data |
87552 |
980c81f995f79016b01d4c827bffca72 |
.tls |
512 |
bf619eac0cdf3f68d496ea9344137e8b |
.rsrc |
1536 |
93337aec1b71e051b42ca4c433146ac3 |
.reloc |
98816 |
0580f8c42e6c59af0e005c84ebf4b999 |