home

MicroProProc.exe

RetosProret

MicroNames Ltd.

The application MicroProProc.exe by MicroNames has been detected as a potentially unwanted program by 22 anti-malware scanners.
Publisher:
.  (signed by MicroNames Ltd.)

Product:
RetosProret

Version:
2.00

MD5:
a0ccb1a742a127fb5250c69f41186e8d

SHA-1:
5ab73ad1c4fd487f4dcb4da0a68016cca3b7fe6f

SHA-256:
93527fb7cf9b76bad9c0cf9267f1410e89b27f8cbbf3ddd8b9d726ad81c8fc4c

Scanner detections:
22 / 68

Status:
Potentially unwanted

Analysis date:
4/24/2024 3:24:07 AM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
PUP/Win32.MicroLab
2013.10.31

Avira AntiVirus
TR/VB.Downloader.Gen
7.11.110.52

avast!
Win32:MicroLab-A [PUP]
2014.9-151120

AVG
Agent.O
2016.0.2920

Bitdefender
Application.Generic.572536
1.0.20.1620

Comodo Security
Application.Win32.Downware.KG
17182

ESET NOD32
Win32/Adware.DownloadWare (variant)
9.8985

F-Prot
W32/VB-Backdoor-HRS-based!Maxim
v6.4.7.1.166

F-Secure
Application.Generic.572536
11.2015-20-11_6

G Data
Application.Generic.572536
15.11.22

IKARUS anti.virus
AdWare.Win32.Hebogo
t3scan.2.0.127

K7 AntiVirus
Adware
13.173.10028

Kaspersky
not-a-virus:AdWare.Win32.Hebogo
14.0.0.1094

McAfee
Artemis!A0CCB1A742A1
5600.6576

Microsoft Security Essentials
Adware:Win32/Hebogo
1.163.1557.3

MicroWorld eScan
Application.Generic.572536
16.0.0.972

nProtect
Adware/W32.Agent.798168.D
13.10.30.03

Panda Antivirus
Trj/Genetic.gen
15.11.20.05

Reason Heuristics
PUP.MicroNames (M)
15.11.20.5

Sophos
Mal/GamePSW-C
4.94

Trend Micro House Call
TROJ_GEN.R047H0AI813
7.2.324

VIPRE Antivirus
Trojan.Win32.Generic
22862

File size:
779.5 KB (798,168 bytes)

Product version:
2.00

Original file name:
MicroProProc.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\roaming\microlab\myengin\common\microproproc.exe

Digital Signature
Signed by:
MicroNames Ltd.

Authority:
Thawte, Inc.

Valid from:
11/28/2011 9:00:00 AM

Valid to:
12/28/2013 8:59:59 AM

Subject:
CN=MicroNames Ltd., OU=IT, O=MicroNames Ltd., L=Guro-gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
71EADF6347D76C842389C834D3A58AEB

File PE Metadata
Compilation timestamp:
9/5/2013 4:05:56 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:9grZ5f7jZwHk9avoHB4/z83Qvua/DlDvaDnV:9grZ5f7jjHB4/A3QvuqDlDvaDnV

Entry address:
0x6BB0

Entry point:
68, 00, 7D, 40, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 58, DB, AF, 02, E4, 8C, 77, 45, A0, AE, C7, 39, B6, 1D, 3D, 6F, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 52, 65, 74, 6F, 73, 50, 72, 6F, 72, 65, 74, 00, 00, 00, 00, 00, 00, 00, 00, 00, FF, CC, 31, 00, 04, 32, 98, 26, 3F, 2B, 9F, 9C, 43, BC, 22, 81, 41, E2, 20, B7, 01, 4C, 0B, 0C, 85, 1E, 65, BD, 44, AA, 2D, FD, 27, 60, AC, 06, 79, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Entropy:
5.8384

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
760 KB (778,240 bytes)

Remove MicroProProc.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.