How to remove kernelbasis.dll.o
- File Details
- Overview
- Analysis
kernelbasis.dll.o
The module kernelbasis.dll.o has been detected as PUP.Baidu
File Details
| Company Name: |
|
| MD5: |
fc5236270391507bbe6c2da6d26878e4 |
| Size: |
4 MB |
| First Published: |
2017-05-21 04:03:41 (7 years ago) |
| Latest Published: |
2020-12-03 19:16:23 (3 years ago) |
| Status: |
PUP.Baidu (on last analysis) |
|
| Analysis Date: |
2020-12-03 19:16:23 (3 years ago) |
Overview
| %temp%\baidu\autoupdate |
| %appdata%\baidu\baidunetdisk |
| %appdata%\baidu\baiduyunguanjia |
| %sysdrive%\windows.old\users\jason yuen\appdata\local\temp\baidu\autoupdate |
| %sysdrive%\windows.old\users\jingwei\appdata\local\temp\baidu\autoupdate |
| %sysdrive%\windows.old\users\user\appdata\roaming\baidu\baiduyunguanjia |
| %system%\config\systemprofile\appdata\roaming\baidu\baidunetdisk |
| %sysdrive%\temp\baidu\autoupdate |
| %desktop%\xdir\百度网盘 552\baidu |
| %temp%\baidu |
| kernelbasis.dll |
| kernelbasis.dll.o |
| kernelbasis.dll.quarantined |
|
68.4% |
|
|
17.1% |
|
|
3.6% |
|
|
2.8% |
|
|
1.3% |
|
|
1.3% |
|
|
1.1% |
|
|
0.9% |
|
|
0.8% |
|
|
0.8% |
|
|
0.5% |
|
|
0.3% |
|
|
0.3% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
| Windows 7 |
38.8% |
|
| Windows 10 |
29.5% |
|
| Windows 8.1 |
29.4% |
|
| Windows Server 2003 |
1.3% |
|
| Windows 8 |
0.9% |
|
| Windows XP |
0.2% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x10000000 |
| Entry Address: |
0x00359442 |
| Name |
Size of data |
MD5 |
| .text |
4112384 |
5431db4376c2ab8d7d5436af7a5c12ec |
| .rdata |
593920 |
09b0bc3b34782c5a054f0d28daf02ba6 |
| .data |
110592 |
04ee3e1c859f7fde6b43fbfbc2c57603 |
| .tls |
4096 |
620f0b67a91f7f74151bc5be745b7110 |
| .rsrc |
4096 |
28895778766589e3eaa4d4b608f87fb6 |
| .reloc |
180224 |
d9de41bd08d66becb637cf4ac8a192ad |
