How to remove $RRRC0GD.sys
- File Details
- Overview
- Analysis
$RRRC0GD.sys
The module $RRRC0GD.sys has been detected as Adware.Vitruvian
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
a767ff3670b7349e961687c29ea9054e |
| Size: |
45 KB |
| First Published: |
2017-05-22 10:10:56 (7 years ago) |
| Latest Published: |
2020-08-08 20:35:44 (4 years ago) |
| Status: |
Adware.Vitruvian (on last analysis) |
|
| Analysis Date: |
2020-08-08 20:35:44 (4 years ago) |
Overview
| %system%\drivers |
| %programfiles%\othersearch |
| %sysdrive%\adwcleaner\quarantine\files\nlhzauzoizctzfjgwamxnfkiaybjhvgg |
| %sysdrive%\adwcleaner\quarantine\files\vollrdhmkhdqhmzxhferhmkfxaosmllx |
| %system% |
| %programfiles% |
| %sysdrive%\$recycle.bin |
| %sysdrive%\backupservidor\program files |
| %sysdrive%\adwcleaner\quarantine\files |
| %system% |
|
44.6% |
|
|
9.8% |
|
|
8.7% |
|
|
7.6% |
|
|
6.5% |
|
|
4.3% |
|
|
3.3% |
|
|
3.3% |
|
|
3.3% |
|
|
2.2% |
|
|
2.2% |
|
|
2.2% |
|
|
1.1% |
|
|
1.1% |
|
| Windows 10 |
80.4% |
|
| Windows 8.1 |
10.9% |
|
| Windows 7 |
4.3% |
|
| Windows 8 |
4.3% |
|
Analysis
| Subsystem: |
Native |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x00007074 |
| Name |
Size of data |
MD5 |
| .text |
27136 |
905f4dbfe6f9c7c915bcdcdfa05b802e |
| .rdata |
4096 |
affe1a33ef0227f536c26294130ec77b |
| .data |
512 |
1383c6ffb3ec20d1aa73a074f3e2206c |
| .pdata |
1024 |
589b91070bb8831f687e2bb2c2348e7b |
| INIT |
2560 |
862891d84a1795a509e881dd720c5afe |
| .rsrc |
1024 |
bf982ecb01c605c7f6fd938e97fdbef2 |
| .reloc |
512 |
75ec509b3e5af91294ab886283a1299e |
