How to remove sysmon.exe
sysmon.exe
The module sysmon.exe has been detected as PUP.SystemOptimizer
File Details
| Product Name: | SysMon |
| MD5: | 929ea444e404eb27aeecbd80ccb94712 |
| Size: | 2 MB |
| First Published: | 2017-07-10 20:06:22 (7 years ago) |
| Latest Published: | 2017-12-13 01:06:36 (7 years ago) |
| Status: | PUP.SystemOptimizer (on last analysis) | |
| Analysis Date: | 2017-12-13 01:06:36 (7 years ago) |
Overview
| Signed By: | TUNEUP PRO SOFTWARE SERVICES LLP |
| Status: | Valid |
Common Places:
| %appdata%\sysmon |
| %sysdrive%\$recycle.bin\s-1-5-21-298902337-536521910-2180741903-1001\$ryg4bqx\quarantine\files\aoqkgbvjrttxwoqwepuyvoupsxnutmid |
| %sysdrive%\vtroot\harddiskvolume2\users\uccioroccia\appdata\roaming\sysmon |
| %profile%\ánoska\application data\sysmon |
| %appdata%\sysmon.$quar |
| %profile%\kedi\desktop |
| %profile%\s\application data |
Geography:
| South Korea | 11.4% | |
| Poland | 9.1% | |
| Thailand | 9.1% | |
| Egypt | 6.8% | |
| Indonesia | 4.5% | |
| United States | 4.5% | |
| Italy | 4.5% | |
| Saudi Arabia | 4.5% | |
| Ukraine | 4.5% | |
| Hungary | 4.5% | |
| Turkey | 4.5% | |
| Algeria | 4.5% | |
| Libya | 4.5% | |
| Vietnam | 4.5% | |
| Bulgaria | 2.3% | |
| Democratic Republic of the Congo | 2.3% | |
| India | 2.3% | |
| Israel | 2.3% | |
| Russia | 2.3% | |
| Bangladesh | 2.3% | |
| Germany | 2.3% | |
| Croatia | 2.3% |
OS Version:
| Windows 7 | 50.0% | |
| Windows 10 | 38.6% | |
| Windows XP | 9.1% | |
| Windows 8.1 | 2.3% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x001108ca |
PE Sections:
| Name | Size of data | MD5 |
| .text | 1719296 | 924ebcff33ad2278fbdd9308b3651849 |
| .rdata | 313344 | 9528a397b396a5a0b98b8e66ef0049db |
| .data | 25088 | 2b505880737022b780f82e93cbf8d5fa |
| .rsrc | 798720 | e3f6abf15bcfc56083277daa72100c78 |
| .reloc | 180224 | 77c2a0b7ab5c4dbf32106e15eb4a35a2 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for sysmon.exe
