How to remove X7XSEx_Pr143.Sys
- File Details
- Overview
- Analysis
X7XSEx_Pr143.Sys
The module X7XSEx_Pr143.Sys has been detected as Adware.GameVance
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
8ab65f649dd26b8adb9995b31b5d8595 |
| Size: |
55 KB |
| First Published: |
2017-05-24 16:11:25 (8 years ago) |
| Latest Published: |
2022-10-15 23:56:54 (3 years ago) |
| Status: |
Adware.GameVance (on last analysis) |
|
| Analysis Date: |
2022-10-15 23:56:54 (3 years ago) |
Overview
| %programfiles%\free ride games |
| %temp%\wz7044\glyph_www.freegames.ir |
| %programfiles% |
| %sysdrive%\downloads\glyph_www.p30fast.com |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| X5XSEx_Pr143.sys |
| X7XSEx_Pr143.Sys |
| X7XSEx_Pr143.sys |
| X5XSEx_Pr143.Sys |
| X5XSEx_Pr148.Sys |
|
18.1% |
|
|
12.8% |
|
|
8.5% |
|
|
6.4% |
|
|
5.3% |
|
|
5.3% |
|
|
4.3% |
|
|
4.3% |
|
|
4.3% |
|
|
3.2% |
|
|
3.2% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
1.1% |
|
|
1.1% |
|
|
1.1% |
|
|
1.1% |
|
|
1.1% |
|
|
1.1% |
|
|
1.1% |
|
| Windows 10 |
45.4% |
|
| Windows 7 |
38.1% |
|
| Windows XP |
10.3% |
|
| Windows 8.1 |
4.1% |
|
| Windows Vista |
2.1% |
|
Analysis
| Subsystem: |
Native |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000000010000 |
| Entry Address: |
0x0000f1a4 |
| Name |
Size of data |
MD5 |
| .text |
33792 |
48ef9b79fa7047c31ef5a804ec6046d1 |
| page |
512 |
cb4dde582ad291c9a748d9b268f7d89c |
| .rdata |
3584 |
e313a0dfc2400551e03a22041cd5054b |
| .data |
1024 |
60496ab0124fecd4c059dc7c70952ac1 |
| .pdata |
1536 |
26a7232507b0547ae68edbd98df669d3 |
| PAGE |
2048 |
81f6ea8d34b786e2815c54edf4728b80 |
| INIT |
3584 |
c91c0974f2f288e6601e1a19aac92852 |
| .rsrc |
1536 |
f649dc596a8725a850c4ca1814f2ebd7 |
| .reloc |
512 |
ab37a35d2b93e8ddee9a7e3fcb873466 |
