How to remove QMPROXYACCX64_ev.sys

QMPROXYACCX64_ev.sys

The module QMPROXYACCX64_ev.sys has been detected as PUP.Tencent

QMPROXYACCX64_ev.sys
Remove QMPROXYACCX64_ev.sys

File Details

Product Name:

腾讯网游加速器
Company Name:

腾讯科技(深圳)有限公司
MD5: c64da5ab60e5ed3f6f183b2b41c27f5d
Size: 133 KB
First Published: 2020-11-19 04:46:41 (4 years ago)
Latest Published: 2022-05-21 23:25:39 (3 years ago)
Status: PUP.Tencent (on last analysis)
Analysis Date: 2022-05-21 23:25:39 (3 years ago)

Overview

Signed By: Tencent Technology(Shenzhen) Company Limited;Microsoft Windows Hardware Compatibility Publisher
Status: Valid

Common Places:

%programfiles%\tencent\qqpcmgr\plugins\gameassist
%programfiles%\qqpcmgr\plugins\gameassist

Geography:

50.0%
50.0%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000000010000
Entry Address: 0x0002e064

PE Sections:

Name Size of data MD5
.text 97280 3172284b17805acfc309c8c423626948
.rdata 12288 1b34cc3fa451214d3d961e61916b640a
.data 512 f425c86fa48e33269f447f3eb63c79f9
.pdata 2560 2d4f9ee13e5c2675d84b9686f134b456
INIT 4096 db48247b5463d87b51c9bdb64415d079
.rsrc 1024 61b080c5d35f2a26c7080a3da2a5e4b9

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for QMPROXYACCX64_ev.sys
copyright for information about QMPROXYACCX64_ev.sys