How to remove fwproc_x64.exe

» File
File Details
Overview
Analysis

fwproc_x64.exe

The module fwproc_x64.exe has been detected as Risk.RemoteAdmin

fwproc_x64.exe

Remove fwproc_x64.exe

File Details

Main Info:

Product Name:	Virtual Printer Driver
Company Name:	Two Pilots
MD5:	65585187aeb6391bf1eeb69c20365485
Size:	17 KB
First Published:	2017-05-21 17:06:42 (6 years ago)
Latest Published:	2019-08-05 08:07:21 (4 years ago)

Analysis:

Status:	Risk.RemoteAdmin (on last analysis)
Analysis Date:	2019-08-05 08:07:21 (4 years ago)

Overview

Digital Signature

Signed By:	Usoris Systems LLC
Status:	Valid

Common Places:

%programfiles%\remote utilities - host\printer\x64

%programfiles%\remote utilities - host\printer

%programfiles%\remote utilities - host\printer

%programfiles%\remote utilities - host\printer

Geography:

	42.9%
	42.9%
	14.3%

OS Version:

Windows 7	57.1%
Windows Server 2012 R2	28.6%
Windows 10	14.3%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000000400000
Entry Address:	0x00001d00

PE Sections:

Name	Size of data	MD5
.text	5120	50fc4f002f69e8c033d8d05eb43f52d1
.rdata	3584	a98b88dca734dd45f08a3d146ff45578
.data	512	bb93bb6e58eeb310f9c846f73ced10f2
.pdata	512	9d536e9e6efab6ece5df75c664281a39
.rsrc	1536	a72991179a32b61ab1b35775fed147f8

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for fwproc_x64.exe

copyright for information about fwproc_x64.exe