How to remove CNICDriver.sys

» File
File Details
Overview
Analysis

CNICDriver.sys

The module CNICDriver.sys has been detected as PUP.DriveTheLife

Remove CNICDriver.sys

File Details

Main Info:

Product Name:	DTL
Company Name:	Shenzhen DriveTheLife Software Technology Co.Ltd
MD5:	5666de6c9926291d943792539c277e2a
Size:	230 KB
First Published:	2018-08-15 22:12:15 (6 years ago)
Latest Published:	2019-09-03 00:22:28 (5 years ago)

Analysis:

Status:	PUP.DriveTheLife (on last analysis)
Analysis Date:	2019-09-03 00:22:28 (5 years ago)

Overview

Digital Signature

Signed By:	Shenzhen DriveTheLife Software Technology Co.Ltd
Status:	Valid

Common Places:

%system%

%temp%\drivertemp\201832313321

%system%\driverstore\filerepository

%sysdrive%\ostotofolder\pre-download\win7(64)

%sysdrive%\$recycle.bin\s-1-5-21-822963106-1902015229-3869927724-1000

%sysdrive%\ostotofolder\driversdownload\win7(64)

%localappdata%\innovative solutions\drivermax\agent\downloded drivers\d2e6a21f4e5a7f2d686a0ddbf9d3b8e3.zip\net

%sysdrive%\vtroot\harddiskvolume2\ostotofolder\driversdownload\win7(64)

%system%\driverstore\filerepository

Geography:

	21.7%
	16.7%
	8.3%
	8.3%
	6.7%
	6.7%
	6.7%
	3.3%
	3.3%
	3.3%
	3.3%
	3.3%
	1.7%
	1.7%
	1.7%
	1.7%
	1.7%

OS Version:

Windows 7	48.3%
Windows 10	43.3%
Windows 8.1	8.3%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000000010000
Entry Address:	0x000261f4

PE Sections:

Name	Size of data	MD5
.text	48640	05a4452c45e951f9dd67c325b16efec3
.rdata	6144	ccb693696427dffcb1140d30c6c5d237
.data	82944	6165fcdcb339a352aceff9a8315053fc
.pdata	1536	ec181ef7ce4cb4cfa47f62e25da964d8
INIT	4608	a1dd378cf4598cdbb7b803b33d2ebea1
.vmp0	74240	f8b550defad4ac738c46c9380764906c
.reloc	2048	8c771c5f1f7ca49672cf144ae409c047
.rsrc	1536	ec80e21a70b1b472350431b1b82f5f81

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for CNICDriver.sys

copyright for information about CNICDriver.sys