How to remove MaohaWifiProNat64.sys

MaohaWifiProNat64.sys

The module MaohaWifiProNat64.sys has been detected as Adware.Kuaiba

MaohaWifiProNat64.sys
Remove MaohaWifiProNat64.sy

File Details

Product Name:

WifiProNat
MD5: b8f760633541da35bcff7087e710bcb4
Size: 42 KB
First Published: 2017-05-21 04:03:20 (8 years ago)
Latest Published: 2023-01-04 23:19:35 (2 years ago)
Status: Adware.Kuaiba (on last analysis)
Analysis Date: 2023-01-04 23:19:35 (2 years ago)

Overview

Signed By: 深圳市猫哈网络科技发展有限公司
Status: Valid

Common Places:

%programfiles%\maoha\maohaap\driver
%sysdrive%\adwcleaner\quarantine\files\hqwcouoiidlkcdajrpouhcgvlpxpqmpq\maohaap\driver
%programfiles%\greatmaker\maohawifi\driver
%system%\drivers
%programfiles%\greatmaker\maohawifi
%programfiles%\maoha\maohaap
%system%
%sysdrive%\adwcleaner\quarantine\files\ydnmbaqijnfabvujyxwxbtqpmxdpfwxp\maohaap
%localappdata%\maoha\maohaap
%sysdrive%\adwcleaner\quarantine\rqf69azbla\maohaap

Geography:

28.8%
24.3%
9.1%
7.2%
6.7%
3.8%
1.6%
1.6%
1.4%
1.3%
0.9%
0.7%
0.7%
0.7%
0.7%
0.7%
0.5%
0.5%
0.5%
0.5%
0.5%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%

OS Version:

Windows 7 72.2%
Windows 8.1 13.5%
Windows 10 10.6%
Windows 8 2.9%
Windows XP 0.7%
Windows Server 2008 R2 0.2%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000000010000
Entry Address: 0x0004b500

PE Sections:

Name Size of data MD5
.text 21504 380e8df2b80ded74003f1ac28be8e3a1
.rdata 1536 c8dba2626fe8b9a6366c18cd98d81799
.data 512 bc685e3a8a4c8a18ce6d19183c7d510d
.pdata 1024 42a77e7bb9cf1feb684b9880ba277aec
INIT 3584 e6aa6c3eac93ba5561eecec82176b12a
.rsrc 1024 1adddcc1867d4e7f82f3cd20cf4f2104
.reloc 512 e88847a7acc9311ec6cf44a905908b7a

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for MaohaWifiProNat64.sys
copyright for information about MaohaWifiProNat64.sys