How to remove QMUdisk64.sys.bak_9791

QMUdisk64.sys.bak_9791

The module QMUdisk64.sys.bak_9791 has been detected as PUP.Tencent

QMUdisk64.sys.bak_9791
Remove QMUdisk64.sys.bak_97

File Details

Product Name:

QMUdiskKernel
Company Name:

Tencent
MD5: bef6127f4ca8b1144bd1d2164a175315
Size: 60 KB
First Published: 2017-06-10 02:04:19 (7 years ago)
Latest Published: 2018-07-17 09:11:26 (6 years ago)
Status: PUP.Tencent (on last analysis)
Analysis Date: 2018-07-17 09:11:26 (6 years ago)

Overview

Signed By: Tencent Technology(Shenzhen) Company Limited
Status: Valid

Common Places:

%programfiles%\tencent\qqpcmgr\10.8.16208.227\filegroupupdate\sectionsbackup\9621
%programfiles%\tencent\qqpcmgr\10.8.16208.227\filegroupupdate\sectionsbackup\9276
%programfiles%\tencent\qqpcmgr\10.8.16208.227
%programfiles%\tencent\qqpcmgr\10.8.16208.227\filegroupupdate\sectionsbackup\9791
%programfiles%\tencent\qqpcmgr\10.8.16208.227\filegroupupdate\sectionsbackup\10178
%sysdrive%\adwcleaner\quarantine\xrpmcarcr4\qqpcmgr
%programfiles%\tencent\qqpcmgr

File Names:

QMUdisk64.sys.bak_
QMUdisk64.sys.bak_9791
QMUdisk64.sys

Geography:

30.8%
15.4%
15.4%
15.4%
7.7%
7.7%
7.7%

OS Version:

Windows 7 30.8%
Windows 8.1 30.8%
Windows 10 23.1%
Windows XP 7.7%
Windows Server 2012 R2 7.7%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000000010000
Entry Address: 0x0000f064

PE Sections:

Name Size of data MD5
.text 40448 b9ed70e450eae6b657f1175cadc2ef45
.rdata 3584 c641ed66a2872a8ce8b0c97a97ece7b5
.data 1536 7a6f6d86f6d7c8e56d3104cb3c52ef90
.pdata 1536 e9dcd578aec39e9a3fe11bc7698a976d
INIT 3584 bf2fa737b9600cd78bdc423453bfce16
.rsrc 1024 da9e812046054ae6b2bf4d5857183d8d
.reloc 512 8e8cb98ffa4c40b2a9ef4ff88e8ed05e

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for QMUdisk64.sys.bak_9791
copyright for information about QMUdisk64.sys.bak_9791