How to remove old_go.exe
old_go.exe
The module old_go.exe has been detected as PUP.MailRu
File Details
| Product Name: | Go! |
| Company Name: | Mail.Ru |
| MD5: | 16d7b254d434272625e57d6ab2ee6b00 |
| Size: | 980 KB |
| First Published: | 2017-12-10 11:08:26 (7 years ago) |
| Latest Published: | 2021-01-09 18:46:11 (4 years ago) |
| Status: | PUP.MailRu (on last analysis) | |
| Analysis Date: | 2021-01-09 18:46:11 (4 years ago) |
Overview
| Signed By: | LLC Mail.Ru |
| Status: | Valid |
Common Places:
| %localappdata%\go! |
| %system%\config\systemprofile\appdata\local\go! |
| %sysdrive%\$recycle.bin\s-1-5-21-2596977023-3061757637-3725599512-1000\$rg9s4a1 |
| %sysdrive%\save_20180209\users\user\appdata\local\go! |
| %localappdata%\go!\application\58.2.3029.31\installer\chrome.7z |
| %localappdata%\go!\temp |
| %sysdrive%\илья-пк\backup set 2018-02-11 190012\backup files 2018-02-11 190012\backup files 5.zip\c\users\илья\appdata\local\go! |
| %sysdrive%\илья-пк\backup set 2017-12-18 080633\backup files 2018-01-22 090410\backup files 1.zip\c\users\илья\appdata\local\go!\temp |
| %sysdrive%\илья-пк\backup set 2017-12-18 080633\backup files 2018-01-22 090410\backup files 1.zip\c\users\илья\appdata\local\go! |
| %sysdrive%\илья-пк\backup set 2018-02-11 190012\backup files 2018-02-11 190012\backup files 6.zip\c\users\илья\appdata\local\go!\temp |
File Names:
| go.exe |
| old_go.exe |
Geography:
| 68.1% | ||
| 5.2% | ||
| 4.7% | ||
| 4.4% | ||
| 3.6% | ||
| 2.9% | ||
| 1.6% | ||
| 1.6% | ||
| 1.3% | ||
| 1.3% | ||
| 1.3% | ||
| 1.0% | ||
| 0.5% | ||
| 0.5% | ||
| 0.5% | ||
| 0.5% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% |
OS Version:
| Windows 7 | 49.5% | |
| Windows 10 | 40.1% | |
| Windows 8.1 | 8.9% | |
| Windows 8 | 1.6% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0004c5e0 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 571904 | 72d2989c33e43a04ead3e9a1f6e7bbfe |
| .rdata | 191488 | 18e9801e7714962873d71cff40529c37 |
| .data | 4096 | 29508dbbf85c8978b64cf31fbd880596 |
| .didat | 512 | 71777150ada300c17ef41a779b86f511 |
| .tls | 512 | 1f354d76203061bfdd5a53dae48d5435 |
| .rsrc | 204288 | 306cedd5c64889d66eae69390b4025cc |
| .reloc | 23040 | 25dbeae3eefc701ea05c3fea86b4eac8 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for old_go.exe
