How to remove vncdrv.sys
vncdrv.sys
The module vncdrv.sys has been detected as Risk.RemoteAdmin
File Details
| Product Name: | UltraVnc Mirror Driver |
| Company Name: | RDV Soft |
| MD5: | 6a3835b5925a3ebb3c357446fe867824 |
| Size: | 11 KB |
| First Published: | 2017-09-28 23:02:36 (7 years ago) |
| Latest Published: | 2018-09-21 15:05:32 (6 years ago) |
| Status: | Risk.RemoteAdmin (on last analysis) | |
| Analysis Date: | 2018-09-21 15:05:32 (6 years ago) |
Overview
| Signed By: | uvnc bvba |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %programfiles%\ultravnc addons |
| %system%\drivers |
| %programfiles% |
| %system% |
| %programfiles%\its |
Geography:
| France | 30.0% | |
| Spain | 20.0% | |
| Chile | 20.0% | |
| Reunion | 10.0% | |
| United States | 10.0% | |
| Morocco | 10.0% |
OS Version:
| Windows 10 | 58.3% | |
| Windows 7 | 41.7% |
Analysis
| Subsystem: | Native |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00010000 |
| Entry Address: | 0x00000706 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 1152 | 02ea3d56a6999a87e8cfed08f1de8d3e |
| .rdata | 256 | 619410bfafe56e027c704bded6e46690 |
| .data | 384 | 0fe8b6ff202a2b826cb73fc50d089e9b |
| .edata | 128 | 04acd44a1a1addb9746e7b344a686199 |
| INIT | 384 | 1765a6d63025d6564f7cfd7a57567f35 |
| .rsrc | 1024 | 752cc0d117ff20f76db37dcfe78ce5f4 |
| .reloc | 256 | ac1edc720b18b52dd0ac500035c8c7ea |
More information:
Download GridinSoft
Anti-Malware - Removal tool for vncdrv.sys
