How to remove online-guardian.exe

online-guardian.exe

The module online-guardian.exe has been detected as PUP.Gen

online-guardian.exe
Remove online-guardian.exe

File Details

Product Name:

Online Guardian
Company Name:

Microleaves LTD
MD5: b848a750bc3eac9b5d29558f7d6ec976
Size: 542 KB
First Published: 2017-05-21 03:02:10 (7 years ago)
Latest Published: 2019-05-22 21:23:25 (5 years ago)
Status: PUP.Gen (on last analysis)
Analysis Date: 2019-05-22 21:23:25 (5 years ago)

Overview

Signed By: MICROLEAVES LTD
Status: Valid

Common Places:

%programfiles%\microleaves\online application\version 2.6.0
%appdata%\microleaves\online application 2.6.0\install\cfcbaa1\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\pngcjgnbctvvjvamlvuatshvhqsgsbkx\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\ylgpqvhnrqlxvsbbxdkipnuuwwxqlaeb\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\gaxndaxhyhesrqdhhcrsrfzmrnkswbzc\online application 2.6.0\install\cfcbaa1\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\deboqxnxsdjdmyqwhsdeaxqxqstamrax\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\jfhrubimbkfdjmzzuyzuzbfhjwnnnjtk\online application\version 2.6.0
%sysdrive%\quarantine_mzk\folders\2017061418553735\microleaves.19.01.57.11\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\pmyniyybdjearmfzpqmvtznesjdylrxi\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\dgrwoesskdqxhsvpmzwtkzibyfvuhbpm\online application\version 2.6.0

File Names:

Online-Guardian.exe
online-guardian.exe
trzDA9D.tmp
Online-Guardian.exe.quarantined
trz1ECD.tmp
trz10C4.tmp
trz10EE.tmp
trz8CFF.tmp
Online-Guardian.Vexe
trzEDF1.tmp

Geography:

28.4%
26.5%
5.5%
4.9%
4.4%
3.1%
2.4%
2.2%
2.1%
1.9%
1.8%
1.5%
1.3%
1.2%
1.0%
1.0%
0.9%
0.9%
0.7%
0.7%
0.6%
0.6%
0.6%
0.6%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.4%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 10 48.4%
Windows 7 37.7%
Windows 8.1 12.0%
Windows 8 1.3%
Windows Vista 0.6%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000012c0

PE Sections:

Name Size of data MD5
.text 105984 4ef5b97d80b55949ad7b2d1c1ff92d33
.data 512 0ef7780dc4a821f7c8d2d14b9b4830ab
.rdata 6656 063be716a067e3e7caba823fac26e491
.eh_fram 11776 2841058ce3e9c96c1fa40f459da3cf26
.bss 0 00000000000000000000000000000000
.idata 3584 9d729caa1b9684dec72eb6b8e47a23f0
.CRT 512 63611519e03f45643a119ea42b8de125
.tls 512 210f409e50035e70c2412ea102d8a2e5
.rsrc 371712 757d4ad137363ef2a9b2a6f5997d252f

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for online-guardian.exe
copyright for information about online-guardian.exe