How to remove 156cbf4025165d80.sys
- File Details
- Overview
- Analysis
156cbf4025165d80.sys
The module 156cbf4025165d80.sys has been detected as PUP.NetFilter
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
683b5aa6c4e6b9f518e7d1e74d954488 |
| Size: |
33 KB |
| First Published: |
2019-08-16 12:47:01 (4 years ago) |
| Latest Published: |
2023-11-09 23:18:59 (5 months ago) |
| Status: |
PUP.NetFilter (on last analysis) |
|
| Analysis Date: |
2023-11-09 23:18:59 (5 months ago) |
Overview
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %sysdrive%\pkkj0lxgrkit0gin\pvoc4ibbsk8urnbx\system32 |
|
7.3% |
|
|
6.1% |
|
|
5.5% |
|
|
3.9% |
|
|
3.3% |
|
|
3.3% |
|
|
3.2% |
|
|
3.2% |
|
|
3.1% |
|
|
2.7% |
|
|
2.5% |
|
|
2.4% |
|
|
2.4% |
|
|
2.0% |
|
|
2.0% |
|
|
1.9% |
|
|
1.7% |
|
|
1.5% |
|
|
1.5% |
|
|
1.4% |
|
|
1.3% |
|
|
1.3% |
|
|
1.2% |
|
|
1.1% |
|
|
1.1% |
|
|
1.1% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
| Windows 10 |
69.7% |
|
| Windows 7 |
20.3% |
|
| Windows 8.1 |
8.6% |
|
| Windows 8 |
1.1% |
|
| Windows Embedded 8.1 |
0.2% |
|
Analysis
| Subsystem: |
Native |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000000010000 |
| Entry Address: |
0x00007064 |
| Name |
Size of data |
MD5 |
| .text |
10240 |
dc9e39a1c125d4522b4fffcc8679afd5 |
| .rdata |
1024 |
33c582003758c7acb16371f1c214cdf6 |
| .data |
512 |
9101435c01cb6b969a5a519e0b296bc3 |
| .pdata |
512 |
0c0ed0440de71568a69f89c8d20caf36 |
| INIT |
1536 |
3d5aff09f3586ae69ce182a748bf5f13 |
| .rsrc |
1024 |
466332388bf098c5029f38e96b928b8c |
| .reloc |
512 |
2cad62a266405f4ef847f07e68a307c8 |
