How to remove ROMFUSClient.exe

» File
File Details
Overview
Analysis

ROMFUSClient.exe

The module ROMFUSClient.exe has been detected as Risk.RemoteAdmin

ROMFUSClient.exe

Remove ROMFUSClient.exe

File Details

Main Info:

Product Name:	ROMFUSClient
MD5:	b26f60f0e52c86b2a523cf6aca661dfd
Size:	5 MB
First Published:	2019-03-07 02:08:40 (6 years ago)
Latest Published:	2021-01-06 06:10:16 (4 years ago)

Analysis:

Status:	Risk.RemoteAdmin (on last analysis)
Analysis Date:	2021-01-06 06:10:16 (4 years ago)

Overview

Digital Signature

Signed By:	Yakhnovets Denis Aleksandrovich IP
Status:	Valid

Common Places:

%programfiles%\litemanager pro - viewer

%programfiles%\litemanager pro - viewer

%programfiles%

%programfiles%

%programfiles%\litemanager pro - viewer

%programfiles%

%programfiles%

%sysdrive%\windows.old\program files (x86)\litemanager pro - viewer

%programfiles%

%programfiles%

Geography:

	77.4%
	6.0%
	6.0%
	4.8%
	2.4%
	1.2%
	1.2%
	1.2%

OS Version:

Windows 10	88.1%
Windows 7	6.0%
Windows Server 2016	4.8%
Windows 8.1	1.2%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x003ebdb0

PE Sections:

Name	Size of data	MD5
.text	4096000	1d2adb2cc630c2d91df64b153876dec4
.itext	12288	33db37eeb25b0cdf0d8892aa05b015b1
.data	76800	f05bc38979b25830b48e18509500a71b
.bss	0	00000000000000000000000000000000
.idata	16896	d4dec98a82e0d74157491013679279f2
.didata	3072	1167237ab215dbfdd306f9f7f24b1603
.edata	512	b09e5b2862b126d86fa87f69bd0267b6
.tls	0	00000000000000000000000000000000
.rdata	512	c10e1405cf51f13707ff26639cf9564b
.reloc	358400	68bfc6c0b0590ca9c3c5c26e72362e41
.rsrc	1251840	215b43f47c7754c183dc0b060aefc4bb

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for ROMFUSClient.exe

copyright for information about ROMFUSClient.exe