How to remove installdrv64.exe

» File
File Details
Overview
Analysis

installdrv64.exe

The module installdrv64.exe has been detected as Worm.Ramnit

Remove installdrv64.exe

File Details

Main Info:

MD5:	006e6e841dc1b55e334de45428d7836e
Size:	629 KB
First Published:	2017-08-02 09:04:51 (6 years ago)
Latest Published:	2017-08-02 09:05:16 (6 years ago)

Analysis:

Status:	Worm.Ramnit (on last analysis)
Analysis Date:	2017-08-02 09:05:16 (6 years ago)

Common Places:

%programfiles%\nvidia corporation\display

%programfiles%\nvidia corporation\nvsmi

%programfiles%\adobe\adobe media encoder cs6\required

%programfiles%\adobe\adobe after effects cs6\support files\plug-ins\effects\mochaae\(mocha support)\mediaioserver\bin

%programfiles%\adobe\adobe after effects cs6\support files

%programfiles%\adobe\adobe photoshop cs6 (64 bit)

%programfiles%\adobe\adobe media encoder cs6

%programfiles%\nvidia corporation\drs

%programfiles%\adobe\adobe media encoder cs6\32

%programfiles%\adobe\adobe bridge cs6 (64 bit)

File Names:

DrvTool.exe

installdrv64.exe

nvsmartmaxapp64.exe

nvidia-smi.exe

AdobeQTServer.exe

MediaIOServer.exe

LogTransport2.exe

MCU.exe

sniffer_gpu.exe

dbInstaller.exe

WindowsInstaller-KB893803-x86.exe

Adobe Analysis Server.exe

ImporterREDServer.exe

PhotoshopServer.exe

arh.exe

uninstaller.exe

aerender.exe

Adobe QT32 Server.exe

Setup.exe

UDMT.exe

PsiService_2.exe

PropSchemaReg.exe

ApMsgFwd.exe

nvsmartmaxapp.exe

nvdebugdump.exe

unins000.exe

UPEXISTS.EXE

UPFINISH.EXE

delegate_execute.exe

UPREVISE.EXE

RegisterCGS.exe

SetupARP.exe

nacl64.exe

UPDSetup64.exe

KL_GETID.EXE

InstallAdobeHelp.exe

UPCREATE.EXE

DELLBOOT.EXE

CwExpand.exe

ground.exe

Geography:

100.0%

OS Version:

Windows Vista

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0008d000

PE Sections:

Name	Size of data	MD5
.text	459264	62249c187bd2d89e7a755a795429d613
.itext	2560	a55cb933bb4acf9de8ba7ac965575ef4
.data	9728	dc9b863276062b2e2c1e1ffe56d7d0b8
.bss	0	00000000000000000000000000000000
.idata	11264	aa8abe6176103dc524e88e85de4efcee
.tls	0	00000000000000000000000000000000
.rdata	512	74f253aa9f19b5b236f8efef4cfa8a49
.reloc	26624	f0d825167de67ca2352628a4f816af30
.rsrc	23040	ba066dc4f6653ec736c3d619a1251273
.text	110592	cd2d3ad36507fcfb70038b176112c303

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for installdrv64.exe

copyright for information about installdrv64.exe