How to remove AntiRKX64_ev.sys

» File
File Details
Overview
Analysis

AntiRKX64_ev.sys

The module AntiRKX64_ev.sys has been detected as PUP.Tencent

Remove AntiRKX64_ev.sys

File Details

Main Info:

Product Name:	TAntiRK
Company Name:	Tencent
MD5:	48dc9cc53d39db87d8d837c97daca253
Size:	49 KB
First Published:	2017-05-22 11:22:41 (7 years ago)
Latest Published:	2022-01-14 21:25:52 (3 years ago)

Analysis:

Status:	PUP.Tencent (on last analysis)
Analysis Date:	2022-01-14 21:25:52 (3 years ago)

Overview

Digital Signature

Signed By:	Tencent Technology(Shenzhen) Company Limited
Status:	Valid

Common Places:

%programfiles%\tencent\qqpcmgr\12.5.18755.213\filegroupupdate\sectionsbackup\9486

%programfiles%\tencent\qqpcmgr\12.1.18202.223\filegroupupdate\sectionsbackup\9316

%programfiles%\qqpcmgr\12.3.18498.501\filegroupupdate\sectionsbackup\9486

%programfiles%\tencent\qqpcmgr\12.5.18752.211\filegroupupdate\sectionsbackup\9486

%programfiles%\tencent\qqpcmgr\12.3.18483.221\filegroupupdate\sectionsbackup\9486

%programfiles%\tencent\qqpcmgr\12.5.18768.219\filegroupupdate\sectionsbackup\9609

%programfiles%\tencent\qqpcmgr\12.4.18584.206\filegroupupdate\sectionsbackup\9208

%programfiles%\qqpcmgr\12.5.18768.219\filegroupupdate\sectionsbackup\9668

%programfiles%\tencent\qqpcmgr\12.6.18863.209

%programfiles%\tencent\qqpcmgr\12.2.18329.219\filegroupupdate\sectionsbackup\9208

File Names:

AntiRKX64_ev.sys.bak_

AntiRKX64_ev.sys

AntiRKX64_ev.sys.bak_9761

AntiRkX64_EV.sys

Geography:

	31.6%
	23.0%
	14.1%
	5.7%
	5.4%
	3.2%
	2.7%
	1.6%
	1.4%
	1.1%
	1.1%
	1.1%
	0.8%
	0.8%
	0.8%
	0.8%
	0.8%
	0.5%
	0.5%
	0.5%
	0.5%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%

OS Version:

Windows 10	69.6%
Windows 7	17.7%
Windows Server 2012 R2	5.4%
Windows Server 2008 R2	3.2%
Windows 8.1	2.2%
Windows 8	1.1%
Windows XP	0.8%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000000010000
Entry Address:	0x0000b064

PE Sections:

Name	Size of data	MD5
.text	23552	15d1acbadfe25feef0e3d9f1a6886582
.rdata	2048	2134aff8b4caf7ec0bed6afc1ab55c66
.data	1024	445330a06055c16114274f12ef469de7
.pdata	1024	34f40aed1b835d3750462929b6be206b
INIT	2048	ea052140ad48a3c56097faccf439cd65
.rsrc	1024	4fc2cf1032ee5e5045cc57466093ef7e
.reloc	512	e1a5a5353d492954965d361bb36aa251

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for AntiRKX64_ev.sys

copyright for information about AntiRKX64_ev.sys

How to remove AntiRKX64_ev.sys

AntiRKX64_ev.sys

The module AntiRKX64_ev.sys has been detected as PUP.Tencent

File Details

Main Info:

TAntiRK

Tencent

Analysis:

Overview

Digital Signature

Common Places:

Geography:

OS Version:

Analysis

PE Info:

PE Sections:

More information: