How to remove ndefrg64.exe

» File
File Details
Overview
Analysis

ndefrg64.exe

The module ndefrg64.exe has been detected as PUP.Auslogics

Remove ndefrg64.exe

File Details

Main Info:

Product Name:	BoostSpeed
Company Name:	Auslogics
MD5:	f74113850f37a2b8dbc130fca9549d96
Size:	110 KB
First Published:	2018-05-31 02:09:25 (6 years ago)
Latest Published:	2021-01-14 15:54:33 (4 years ago)

Analysis:

Status:	PUP.Auslogics (on last analysis)
Analysis Date:	2021-01-14 15:54:33 (4 years ago)

Overview

Digital Signature

Signed By:	Auslogics Labs Pty Ltd
Status:	Valid

Common Places:

%programfiles%\auslogics

%programfiles%

%programfiles%\portable\boostspeed\app

%desktop%\auslogicsboostspeedportable\app

%desktop%\auslogics boostspeed v10.0.11.0 portable\auslogics boostspeed v10.0.11.0 portable\app

%desktop%\auslogics.boostspeed.10.0.11.0.portable\app

%sysdrive%\portable\auslogics boostspeed 10.0.11.0 kpojiuk\app

%sysdrive%\логик\auslogics boostspeed\app

%profile%\downloads\nueva carpeta\boostspeed.10.0.11.0.portable\app

%sysdrive%\boostspeed.10.0.11.0.portable\app

Geography:

	30.6%
	10.7%
	9.1%
	6.6%
	5.0%
	4.1%
	4.1%
	3.3%
	3.3%
	2.5%
	2.5%
	2.5%
	2.5%
	1.7%
	1.7%
	0.8%
	0.8%
	0.8%
	0.8%
	0.8%
	0.8%
	0.8%
	0.8%
	0.8%
	0.8%
	0.8%
	0.8%

OS Version:

Windows 10	66.1%
Windows 7	24.0%
Windows 8.1	8.3%
Windows XP	1.7%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000100000000
Entry Address:	0x0000b170

PE Sections:

Name	Size of data	MD5
.text	91136	de25cd814769640b0a7b7ba778f3c102
.data	1024	9ead4bd90b9a97521fdd53e9f8476436
.pdata	2048	3149d432cd1a975fc14874736a33ac37
.CRT	512	b690578ab1abf0f6bb5b07eabe39faa5
.rsrc	1024	f30fa1091f8666c9db14d6c76c3c1375
.reloc	1024	22fbb51fa06ecc41da4dd2a8a1c0e832

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for ndefrg64.exe

copyright for information about ndefrg64.exe