How to remove ROMFUSClient.exe

» File
File Details
Overview
Analysis

ROMFUSClient.exe

The module ROMFUSClient.exe has been detected as Risk.RemoteAdmin

ROMFUSClient.exe

Remove ROMFUSClient.exe

File Details

Main Info:

MD5:	0274166b1bd674d8f27b589ae23363b4
Size:	4 MB
First Published:	2017-07-24 15:13:56 (6 years ago)
Latest Published:	2021-01-12 16:48:27 (3 years ago)

Analysis:

Status:	Risk.RemoteAdmin (on last analysis)
Analysis Date:	2021-01-12 16:48:27 (3 years ago)

Overview

Digital Signature

Signed By:	Yakhnovets Denis Aleksandrovich IP
Status:	Valid

Common Places:

%programfiles%\litemanager pro - viewer\server

%programfiles%\litemanager pro - server

%programfiles%\litemanager pro - viewer

%programfiles%

%sysdrive%\tools\dubbele bediening

%programfiles%

%programfiles%

%programfiles%\litemanager pro - viewer

%programfiles%

Geography:

	18.5%
	13.0%
	12.0%
	7.6%
	6.5%
	5.4%
	5.4%
	4.3%
	3.3%
	3.3%
	3.3%
	2.2%
	2.2%
	2.2%
	2.2%
	1.1%
	1.1%
	1.1%
	1.1%
	1.1%
	1.1%
	1.1%
	1.1%

OS Version:

Windows 10	79.8%
Windows 7	12.8%
Windows 8.1	7.4%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00385c30

PE Sections:

Name	Size of data	MD5
.text	3676672	bffea2c1ee370a5d9e8ad51031040a29
.itext	11776	fcca4613b3d8e257843faabbf4047fcb
.data	74240	90798c252830bc46e97e218aa205c37e
.bss	0	00000000000000000000000000000000
.idata	18432	f91a3393111786ca93ea7a73382f798c
.didata	3072	ef4fd2a50857bf2be75d58e42ed50e02
.edata	512	0f31a2a53f0c9d948604053b134f99b0
.tls	0	00000000000000000000000000000000
.rdata	512	9aa1e856d237111cabd91bd3f20c3e23
.reloc	327168	178474655a96e412bdb6978cc0828955
.rsrc	845824	a3333d163b8eace070b6028ded5772ba

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for ROMFUSClient.exe

copyright for information about ROMFUSClient.exe