How to remove ProcObsrv.sys

» File
File Details
Overview
Analysis

ProcObsrv.sys

The module ProcObsrv.sys has been detected as General Threat

ProcObsrv.sys

Remove ProcObsrv.sys

File Details

Main Info:

Product Name:	Windows (R) Win 7 DDK driver
Company Name:	Windows (R) Win 7 DDK provider
MD5:	b41de4353f7c5e32117875516fb48d39
Size:	17 KB
First Published:	2019-07-26 17:53:53 (6 years ago)
Latest Published:	2021-01-12 16:49:28 (4 years ago)

Analysis:

Status:	General Threat (on last analysis)
Analysis Date:	2021-01-12 16:49:28 (4 years ago)

Overview

Digital Signature

Signed By:	Atom Security OOO
Status:	Valid

Common Places:

%system%

%system%

%system%

Geography:

	66.7%
	33.3%

OS Version:

Windows 7	66.7%
Windows 10	33.3%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	32
Image Base:	0x00010000
Entry Address:	0x0000125c

PE Sections:

Name	Size of data	MD5
.text	2048	4ff5f752f2562031bcc41ccfe431bbbb
.rdata	1536	1a7cdc665a87d20f2a03268d727dd21f
.data	512	871d2cce060b25c3126d8755dddb73a6
PAGE	1536	de4d4e4bd6b37984cce108af80b94a6e
INIT	1024	b243e702f9f550ed58f2e2fc3b7931c2
.rsrc	1536	06056e08ae9cc3a293fe40d97c051b06
.reloc	512	2cfa83187419faf445591d00ad148119

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for ProcObsrv.sys

copyright for information about ProcObsrv.sys