How to remove A0426619.sys

» File
File Details
Overview
Analysis

A0426619.sys

The module A0426619.sys has been detected as Adware.Kuaiba

Remove A0426619.sys

File Details

Main Info:

Product Name:	WinMount Driver
Company Name:	WinMount International Inc
MD5:	e421deca657d17119d8a909ef74d563d
Size:	66 KB
First Published:	2017-05-26 04:01:26 (6 years ago)
Latest Published:	2020-05-14 14:24:38 (3 years ago)

Analysis:

Status:	Adware.Kuaiba (on last analysis)
Analysis Date:	2020-05-14 14:24:38 (3 years ago)

Overview

Digital Signature

Signed By:	上海广乐网络科技有限公司
Status:	Valid

Common Places:

%programfiles%\abddd\x86

%system%\drivers

%sysdrive%\system volume information\_restore{f14a1c2c-a641-43f9-a293-b0cb265a4677}\rp1241

%programfiles%\ώμρή\x86

%programfiles%\¿ìñ¹\x86

%commonappdata%\smr501\archive

%sysdrive%\$windows.~bt\adwcleaner\quarantine\files\msxuuojhvexnbmrbeoqbxcdwmhgpfkks\x86

%system%

File Names:

KuaiZipDrive.sys

A0426619.sys

kuaizipdrive.sys

Geography:

	43.8%
	17.2%
	14.1%
	6.3%
	4.7%
	3.1%
	1.6%
	1.6%
	1.6%
	1.6%
	1.6%
	1.6%
	1.6%

OS Version:

Windows 7	40.9%
Windows 8.1	25.8%
Windows 10	18.2%
Windows XP	15.2%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	32
Image Base:	0x00010000
Entry Address:	0x0000d63e

PE Sections:

Name	Size of data	MD5
.text	46336	379cc8c083ae8178ca9f091aa4650540
.rdata	7168	6c444de5f0cb1a878f9c7b43742b764b
.data	128	2e46271761bc1d0ed5a617abf30849ad
INIT	2432	9260f9a147d7f2ef2abbbf39d508b633
.rsrc	1024	e478865e0d3588c142f94b7235d4e84a
.reloc	2048	f6d6e7da1b8a41b5e2bbccf4d51531af

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for A0426619.sys

copyright for information about A0426619.sys

How to remove A0426619.sys

A0426619.sys

The module A0426619.sys has been detected as Adware.Kuaiba

File Details

Main Info:

WinMount Driver

WinMount International Inc

Analysis:

Overview

Digital Signature

Common Places:

Geography:

OS Version:

Analysis

PE Info:

PE Sections:

More information: