How to remove r_server.exe
- File Details
- Overview
- Analysis
r_server.exe
The module r_server.exe has been detected as Risk.RemoteAdmin
File Details
| MD5: |
6a413e4d338fb13e58916e3b8051dbbd |
| Size: |
236 KB |
| First Published: |
2017-06-01 12:11:01 (8 years ago) |
| Latest Published: |
2024-05-24 23:01:34 (2 years ago) |
| Status: |
Risk.RemoteAdmin (on last analysis) |
|
| Analysis Date: |
2024-05-24 23:01:34 (2 years ago) |
| %windir%\system32 |
| %programfiles%\radmin |
| %windir%\syswow64 |
| %windir%\system |
| %programfiles%\_系統工具\系統調整 |
| %sysdrive%\back_modelo\arquivos\docs\dados c 17-04-14\arquivos de programas |
| %sysdrive%\back_modelo\arquivos\dados c 17-04-14\arquivos de programas |
| %system% |
| %programfiles% |
| %sysdrive%\archivos de programa |
|
35.3% |
|
|
20.6% |
|
|
7.4% |
|
|
7.4% |
|
|
5.9% |
|
|
4.4% |
|
|
4.4% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
| Windows XP |
54.4% |
|
| Windows 7 |
22.1% |
|
| Windows 10 |
13.2% |
|
| Windows Server 2003 |
5.9% |
|
| Windows Server 2012 |
2.9% |
|
| Windows Small Business Server 2011 |
1.5% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x01400000 |
| Entry Address: |
0x0000d816 |
| Name |
Size of data |
MD5 |
| .text |
65536 |
b394fc87735d6e803debf2793367f11a |
| .rdata |
8192 |
6ae1b116a38a7fc638a5391b79f15220 |
| .data |
16384 |
10d4f06fcabbbdd020a7e967902eb5a0 |
| .rsrc |
147456 |
c111cabb5f8f34651804c6c0c6e2f34d |
