How to remove TAOKernelXP.sys
- File Details
- Overview
- Analysis
TAOKernelXP.sys
The module TAOKernelXP.sys has been detected as PUP.Tencent
File Details
| Company Name: |
|
| MD5: |
57803e77405d2eb1780183318e2eaec4 |
| Size: |
91 KB |
| First Published: |
2018-12-26 05:50:08 (6 years ago) |
| Latest Published: |
2022-01-14 21:29:21 (3 years ago) |
| Status: |
PUP.Tencent (on last analysis) |
|
| Analysis Date: |
2022-01-14 21:29:21 (3 years ago) |
Overview
| %programfiles%\tencent\qqpcmgr |
| %programfiles%\tencent\qqpcmgr |
| %programfiles%\tencent\qqpcmgr |
| %programfiles%\tencent\qqpcmgr |
| %programfiles%\tencent\qqpcmgr |
| %programfiles%\tencent\qqpcmgr |
| %programfiles%\tencent\qqpcmgr |
| %programfiles%\tencent\qqpcmgr |
| %programfiles%\tencent\qqpcmgr |
| %programfiles%\tencent\qqpcmgr |
|
27.9% |
|
|
25.6% |
|
|
18.6% |
|
|
9.3% |
|
|
4.7% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
| Windows 10 |
93.2% |
|
| Windows Server 2008 R2 |
2.3% |
|
| Windows Server 2012 R2 |
2.3% |
|
| Windows 7 |
2.3% |
|
Analysis
| Subsystem: |
Native |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00003000 |
| Name |
Size of data |
MD5 |
| .text |
60416 |
8823ee902ac4380ca66b610113ec6ce1 |
| .rdata |
5120 |
9d6d093223b96ddb4f2b22886c97a500 |
| .data |
1024 |
d158b283c52770bff07c6ebe506b646a |
| INIT |
3584 |
40aef623b603a261237101c31119aa60 |
| .rsrc |
1536 |
ec57b93d5afcb5a01f7272021b46b71f |
| .reloc |
5120 |
cfd36c70f20ba8ad0465f47d5bfb3e80 |
