How to remove sysmon.exe

sysmon.exe

The module sysmon.exe has been detected as PUP.SystemOptimizer

sysmon.exe
Remove sysmon.exe

File Details

Product Name:

SysMon

Company Name:

MD5: 49f582a7a696d66f83d149ef06be4804
Size: 1 MB
First Published: 2017-07-14 08:06:40 (7 years ago)
Latest Published: 2018-02-24 06:08:42 (6 years ago)
Status: PUP.SystemOptimizer (on last analysis)
Analysis Date: 2018-02-24 06:08:42 (6 years ago)

Overview

Signed By: TUNEUP PRO SOFTWARE SERVICES LLP
Status: Invalid (digital signature could be stolen or file could be patched)

Common Places:

%sysdrive%\vtroot\harddiskvolume2\program files (x86)\d884b18b-bd74-42c3-a801-6222268a8adc
%programfiles%\dc964be5-c4ee-488f-a00c-cc59f39f392a
%programfiles%\afb81c89-2880-4b41-a7b8-d9f17c950696
%programfiles%\2caef66b-34a3-4506-a85a-69d325c645b7
%programfiles%\95b2f3e6-b39f-4e90-90b3-7580da798c02
%programfiles%\14d451d7-661e-4c76-a058-2f5ac4170c8c
%programfiles%\15cf9c78-5bb8-473e-b762-dba26c919b49
%programfiles%\ba450304-a1ff-4e14-8807-128fc88fbfdf
%programfiles%\89e6f15f-cadf-4d35-a222-92f351b5555a
%programfiles%\142b3471-ea8c-453b-a9c8-4f1d477649f2

Geography:

26.1%
8.7%
8.7%
8.7%
8.7%
8.7%
4.3%
4.3%
4.3%
4.3%
4.3%
4.3%
4.3%

OS Version:

Windows 7 60.9%
Windows 10 21.7%
Windows XP 13.0%
Windows Vista 4.3%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00016478

PE Sections:

Name Size of data MD5
.text 82944 c9bb3afc1ceaaa31127ccfa204c657ef
.itext 3072 1ba5adf2e1058c0460dcc814ba86fb32
.data 3584 d5b22eff9e08edaa95f493c1a71158c0
.bss 0 00000000000000000000000000000000
.idata 4096 b47eaca4c149ee829de76a342b5560d5
.tls 0 00000000000000000000000000000000
.rdata 512 3746f5876803f8f30db5bb2deb8772ae
.rsrc 45568 5bff3d90e860bc2d240234973264cd4d

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for sysmon.exe
copyright for information about sysmon.exe