How to remove driverrestore.exe
- File Details
- Overview
- Analysis
driverrestore.exe
The module driverrestore.exe has been detected as Hijack.Explorer
File Details
| Product Name: |
|
| MD5: |
4e04f1ecb0f8438a6757f6c5d522be28 |
| Size: |
719 KB |
| First Published: |
2017-07-27 17:13:47 (7 years ago) |
| Latest Published: |
2020-11-05 23:57:10 (4 years ago) |
| Status: |
Hijack.Explorer (on last analysis) |
|
| Analysis Date: |
2020-11-05 23:57:10 (4 years ago) |
Overview
| %programfiles%\driverrestore |
| %programfiles% |
| %sysdrive%\adwcleaner\quarantine\v1\20180709.094041\60 |
| %sysdrive%\system volume information\_restore{ce23a50f-fae0-40c5-ba13-d51a56728587} |
| %programfiles% |
| %sysdrive%\system volume information\_restore{b27e5c6a-35d1-4c73-bc02-db61c65223dc} |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| DriverRestore.exe |
| driverrestore.exe |
| DriverRestore.exe#5E4C582249B7E574 |
| A0584839.exe |
|
60.1% |
|
|
17.6% |
|
|
10.6% |
|
|
5.3% |
|
|
4.3% |
|
|
1.1% |
|
|
0.5% |
|
|
0.5% |
|
| Windows 10 |
61.7% |
|
| Windows 7 |
25.0% |
|
| Windows 8.1 |
10.6% |
|
| Windows XP |
2.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000aeaee |
| MVID: |
7c9d308d-7b29-4c38-99e6-ba1faad9ef0d |
| Typelib ID: |
fddaebaf-1174-4b8f-b708-034f2f27ca86 |
| Name |
Size of data |
MD5 |
| .text |
707584 |
4aa7c2c58c697cd5952a0a8b7e41c975 |
| .rsrc |
20480 |
86ed60dc0cff63ee403740b43ebae4a4 |
| .reloc |
512 |
ad2cd1cfc4fc8fbd1085b5b2f7a010f9 |
