How to remove ROMServer.exe
- File Details
- Overview
- Analysis
ROMServer.exe
The module ROMServer.exe has been detected as Risk.RemoteAdmin
File Details
| Product Name: |
|
| MD5: |
c81058c19dd26a4a7b5ffe78eee75631 |
| Size: |
6 MB |
| First Published: |
2019-03-07 02:09:01 (6 years ago) |
| Latest Published: |
2021-01-06 06:09:29 (4 years ago) |
| Status: |
Risk.RemoteAdmin (on last analysis) |
|
| Analysis Date: |
2021-01-06 06:09:29 (4 years ago) |
Overview
| %programfiles%\litemanager pro - viewer |
| %programfiles% |
| %programfiles%\litemanager pro - viewer |
| %programfiles% |
| %programfiles% |
| %programfiles%\litemanager pro - viewer |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
|
62.3% |
|
|
8.2% |
|
|
8.2% |
|
|
4.9% |
|
|
4.9% |
|
|
3.3% |
|
|
3.3% |
|
|
1.6% |
|
|
1.6% |
|
|
1.6% |
|
| Windows 10 |
85.2% |
|
| Windows 7 |
6.6% |
|
| Windows Server 2016 |
4.9% |
|
| Windows 8.1 |
3.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x004e9e74 |
| Name |
Size of data |
MD5 |
| .text |
5133824 |
bc16f63a0c8596e028f75aab8100826d |
| .itext |
12288 |
89b96e7f8a043c76b43c36762acff2ea |
| .data |
80384 |
6b31dd345f03f8d1fb928f2d29ecc8d1 |
| .bss |
0 |
00000000000000000000000000000000 |
| .idata |
19456 |
276e678da4e495d37eafdf5bcd395bb8 |
| .didata |
3072 |
fa2a424c89ebac514c251703a026aab7 |
| .edata |
512 |
c7a263a6c50cac8bf0ee8cee79ebb5f3 |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
9397325a6f494c5824963607cbe19db7 |
| .reloc |
429056 |
61bc63300da524117e84d7103256ceab |
| .rsrc |
1529856 |
fc7342820721a78177a9a845cc772a0a |
