How to remove drvagent64.sys

drvagent64.sys

The module drvagent64.sys has been detected as PUP.DriverAgent

drvagent64.sys
Remove drvagent64.sys

File Details

Product Name:

DriverAgent
Company Name:

Phoenix Technologies
MD5: 1ed08a6264c5c92099d6d1dae5e8f530
Size: 21 KB
First Published: 2017-10-06 16:04:09 (8 years ago)
Latest Published: 2025-11-29 23:01:08 (3 days ago)
Status: PUP.DriverAgent (on last analysis)
Analysis Date: 2025-11-29 23:01:08 (3 days ago)

Overview

Signed By: Phoenix Technologies Ltd
Status: Valid

Common Places:

%system%\drivers
%windir%\downloaded program files
%temp%\driveragent
%windir%\temp\driveragent
%system%
%sysdrive%\july4-transfers\receptionist\application data\mozilla\firefox\profiles\ly4yuqb5.default\extensions
%windir%\temp
%windir%
%sysdrive%\zaloha1\zaloha zalozky\firefox\profiles\2o2zqsml.zbysek\extensions
%sysdrive%\zaloha\zaloha\mozilla\firefox\profiles\2o2zqsml.zbysek\extensions

File Names:

DrvAgent64.SYS
drvagent64.sys
tvichw64.sys
DrvAgent64.sys

Geography:

12.2%
10.1%
7.0%
6.6%
5.6%
4.9%
4.5%
3.8%
3.5%
3.1%
3.1%
2.4%
2.1%
2.1%
1.7%
1.7%
1.7%
1.7%
1.7%
1.7%
1.7%
1.4%
1.4%
1.0%
1.0%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%

OS Version:

Windows 10 55.9%
Windows 7 36.0%
Windows 8.1 5.2%
Windows 8 2.1%
Windows Vista 0.7%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000000010000
Entry Address: 0x00006008

PE Sections:

Name Size of data MD5
.text 8192 e69a7883efa2fff41eb77ea2d0813ce7
.rdata 1024 62e19d4ffb01e7229e383a65d253ede6
.data 512 043c46095689123e1f5be96c109c2f46
.pdata 512 ab654620e5977c608373195438082460
INIT 1536 08781afcef34da09efe1f97044b2326e
.rsrc 1024 414e27ee0774a9594ba8034a336699c3

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for drvagent64.sys
copyright for information about drvagent64.sys