How to remove Icon.ROMServer.exe_9D09B2BC25A2414CBD848E2B7589867

Icon.ROMServer.exe_9D09B2BC25A2414CBD848E2B7589867

The module Icon.ROMServer.exe_9D09B2BC25A2414CBD848E2B7589867 has been detected as Risk.RemoteAdmin

Icon.ROMServer.exe_9D09B2BC25A2414CBD848E2B7589867
Remove Icon.ROMServer.exe_9

File Details

Product Name:

InstallShield
Company Name:

Flexera Software LLC
MD5: db3b13342b79ece5fdf8d25ab52e140a
Size: 63 KB
First Published: 2020-03-27 17:10:56 (5 years ago)
Latest Published: 2024-02-29 23:06:38 (2 years ago)
Status: Risk.RemoteAdmin (on last analysis)
Analysis Date: 2024-02-29 23:06:38 (2 years ago)

Overview

Signed By: Yakhnovets Denis Aleksandrovich IP
Status: Invalid (digital signature could be stolen or file could be patched)

Common Places:

%windir%\installer
%profile%\downloads\litemanager_4.9
%windir%\installer
%temp%\rar$dra0.994
%profile%\downloads
%windir%\installer
%temp%\rar$exa0.162
%temp%\rar$exa0.350
%windir%\installer
%windir%\installer

Geography:

60.0%
13.3%
6.7%
6.7%
6.7%
6.7%

OS Version:

Windows 7 53.3%
Windows 10 46.7%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00001005

PE Sections:

Name Size of data MD5
.text 16384 afb12c47d3be203c0a7aebdc25422cef
.rdata 4096 15e13969f0737bb4ec50592b029c02f2
.data 12288 9b57a8510b2e985a48115bbaee120bb5
.rsrc 20480 5293a76735e8f75f17234babf0fc0cef

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for Icon.ROMServer.exe_9D09B2BC25A2414CBD848E2B7589867
copyright for information about Icon.ROMServer.exe_9D09B2BC25A2414CBD848E2B7589867