How to remove DrvAgent64.SYS

DrvAgent64.SYS

The module DrvAgent64.SYS has been detected as PUP.DriverAgent

DrvAgent64.SYS
Remove DrvAgent64.SYS

File Details

Product Name:

DriverAgent
Company Name:

Phoenix Technologies
MD5: 29ccff428e5eb70ae429c3da8968e1ec
Size: 20 KB
First Published: 2017-05-29 19:10:31 (8 years ago)
Latest Published: 2025-05-15 23:09:22 (7 months ago)
Status: PUP.DriverAgent (on last analysis)
Analysis Date: 2025-05-15 23:09:22 (7 months ago)

Overview

Signed By: eSupport.com, Inc
Status: Valid

Common Places:

%programfiles%\driverrestore\driver
%system%\drivers
%programfiles%\driverwhiz\driver
%sysdrive%\adwcleaner\quarantine\nisnrmwuln\driver
%desktop%\nkt 2017\nhà b tgð\driverrestore\driver
%system%
%programfiles%\driverwhiz
%programfiles%\driverrestore
%sysdrive%\windows.old\windows\syswow64
%sysdrive%\$windows.~bt\newos\windows\syswow64

File Names:

DrvAgent64.sys
DrvAgent64.SYS
drvagent64.sys
DrvAgent64.sys#E4A44F3B9B3DF205

Geography:

37.1%
10.3%
8.0%
4.7%
3.9%
3.6%
3.5%
3.5%
2.6%
2.4%
2.2%
2.1%
1.6%
1.5%
1.3%
1.2%
1.0%
0.8%
0.8%
0.8%
0.7%
0.6%
0.5%
0.5%
0.4%
0.4%
0.4%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 10 66.7%
Windows 7 20.6%
Windows 8.1 11.0%
Windows 8 1.2%
Windows Vista 0.6%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000000010000
Entry Address: 0x00006008

PE Sections:

Name Size of data MD5
.text 8192 e69a7883efa2fff41eb77ea2d0813ce7
.rdata 1024 62e19d4ffb01e7229e383a65d253ede6
.data 512 043c46095689123e1f5be96c109c2f46
.pdata 512 ab654620e5977c608373195438082460
INIT 1536 08781afcef34da09efe1f97044b2326e
.rsrc 1024 414e27ee0774a9594ba8034a336699c3

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for DrvAgent64.SYS
copyright for information about DrvAgent64.SYS