How to remove 4F8BA3295AE1.sys

» File
File Details
Overview
Analysis

4F8BA3295AE1.sys

The module 4F8BA3295AE1.sys has been detected as Rootkit.Gen

4F8BA3295AE1.sys

Remove 4F8BA3295AE1.sys

File Details

Main Info:

Product Name:	VxDriver
Company Name:	VxDriver
MD5:	b59de9a59625418ba634749aff1a4157
Size:	480 KB
First Published:	2019-03-07 05:15:38 (6 years ago)
Latest Published:	2022-11-20 23:33:44 (2 years ago)

Analysis:

Status:	Rootkit.Gen (on last analysis)
Analysis Date:	2022-11-20 23:33:44 (2 years ago)

Overview

Digital Signature

Signed By:	韵羽健康管理咨询（上海）有限公司
Status:	Valid

Common Places:

%windir%

%windir%

%windir%

%windir%

%windir%

%windir%

%windir%

%windir%

%windir%

%windir%

Geography:

	17.6%
	17.6%
	11.8%
	11.8%
	5.9%
	5.9%
	5.9%
	5.9%
	5.9%
	5.9%
	5.9%

OS Version:

Windows 7	70.6%
Windows 8.1	11.8%
Windows 10	11.8%
Windows Vista	5.9%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	32
Image Base:	0x00010000
Entry Address:	0x00074d3e

PE Sections:

Name	Size of data	MD5
.text	6528	a7c53ae60e8b8885cce007bfc1f8c665
.rdata	384	5abc281060f224c25f3248bdd16dd661
.data	470400	253f1de26e9652f1c92aaf87f863884b
INIT	1536	598ef10e8ee0ea73872733943869b483
.rsrc	1024	113026569c73730d853abf1c4a720d96
.reloc	1920	b33296e4619cd12030b7d3cd1e963d95

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for 4F8BA3295AE1.sys

copyright for information about 4F8BA3295AE1.sys