How to remove mv2.sys

» File
File Details
Overview
Analysis

mv2.sys

The module mv2.sys has been detected as Risk.RemoteAdmin

Remove mv2.sys

File Details

Main Info:

Product Name:	UltraVnc Mirror Driver
Company Name:	RDV Soft
MD5:	3141ad382ae63db76260b42508b72027
Size:	10 KB
First Published:	2017-08-14 20:10:50 (7 years ago)
Latest Published:	2018-09-05 16:04:48 (6 years ago)

Analysis:

Status:	Risk.RemoteAdmin (on last analysis)
Analysis Date:	2018-09-05 16:04:48 (6 years ago)

Overview

Digital Signature

Signed By:	uvnc bvba
Status:	Valid

Common Places:

%commondir%\eztdesktop\mvdriver\w2k\driver

%commondir%\inpor\mvdriver\w2k\driver

%commondir%\eztdesktop\mvdriver\w2k

%sysdrive%\software\techserv\software\network software\vnc\drivers\driver\w2k

%commondir%\inpor\mvdriver\w2k

%sysdrive%\' ' ' 0 - documents\' ' ' - 0 - active-docs\from-500gbhd\program files (x86)\common files\eztdesktop\mvdriver\w2k

%sysdrive%\fastpush\vnc7\ultra106\driver\w2k

%commondir%\eztalks\mvdriver\w2k

%sysdrive%\windows.old\users\lenowo_2_16\downloads\software\zdalnydostęp\ultravnc\uvnc_md_sdk\uvnc_md_sdk\driver\w2k

%commondir%\hivelinks\mvdriver\w2k

Geography:

	20.8%
	13.2%
	11.3%
	9.4%
	7.5%
	5.7%
	3.8%
	3.8%
	3.8%
	3.8%
	1.9%
	1.9%
	1.9%
	1.9%
	1.9%
	1.9%
	1.9%
	1.9%
	1.9%

OS Version:

Windows 10	47.2%
Windows 8	18.9%
Windows 7	15.1%
Windows 8.1	7.5%
Windows Server 2008 R2	5.7%
Windows Small Business Server 2011	3.8%
Windows XP	1.9%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	32
Image Base:	0x00010000
Entry Address:	0x00000785

PE Sections:

Name	Size of data	MD5
.text	256	03e09a91f58c7b771efd8f0007e88e8a
.rdata	256	4073f4c96a214500abfbd560d6c86b11
.data	128	8a65a8f2c1c961d9edecdac3bad497bb
.edata	128	d2afeab9b9befbb2618680d3b66bcdcd
INIT	256	159f81aa12e8b362954f322b7d45cc0a
.rsrc	1024	beb5f019049c13bc354e6c813556dd1a
.reloc	128	32eb6e65d4d358f83da5a0d29862b59e

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for mv2.sys