How to remove mtpHelper_x86.sys
- File Details
- Overview
- Analysis
mtpHelper_x86.sys
The module mtpHelper_x86.sys has been detected as Rootkit.Gen
File Details
| MD5: |
df9be37ff05080a8ac508bfee2e16ea1 |
| Size: |
11 KB |
| First Published: |
2020-11-12 16:16:47 (4 years ago) |
| Latest Published: |
2022-07-04 23:53:59 (2 years ago) |
| Status: |
Rootkit.Gen (on last analysis) |
|
| Analysis Date: |
2022-07-04 23:53:59 (2 years ago) |
Overview
| Signed By: |
上海域联软件技术有限公司 |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %profile%\downloads\wimbuilder2-full.v2020-06-06.7z\projects\win10xpe\01-components |
| %sysdrive%\todo software\usb booteablesprogr\win10pe_se\target\win10pese\windows\system32 |
| %sysdrive%\todo software\usb booteablesprogr\win10pe_se\temp\win10pese\tempextractfolder |
| Windows 7 |
66.7% |
|
| Windows 10 |
33.3% |
|
Analysis
| Subsystem: |
Native |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00004000 |
| Name |
Size of data |
MD5 |
| .text |
2048 |
c8a9e10cd0d26017de2a3650d11c1f10 |
| .rdata |
1024 |
b523f00b5df74e517d2e54114bf775be |
| .data |
512 |
0b2e7741e0c0fc65af1542e370d89f53 |
| INIT |
1024 |
c1bf52ec35b853bee5eb597bcfec811d |
| .reloc |
512 |
b67ce746bbbb283f3e644e581a9f689a |
