How to remove rpcapd.exe
rpcapd.exe
The module rpcapd.exe has been detected as Trojan.Downloader
File Details
| Product Name: | WinPcap |
| Company Name: | Riverbed Technology, Inc. |
| MD5: | 3844bbb1349e1092b9c061102a7b14b2 |
| Size: | 115 KB |
| First Published: | 2021-10-25 20:10:49 (4 years ago) |
| Latest Published: | 2021-10-25 20:10:49 (4 years ago) |
| Status: | Trojan.Downloader (on last analysis) | |
| Analysis Date: | 2021-10-25 20:10:49 (4 years ago) |
Overview
| Signed By: | Riverbed Technology, Inc. |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %programfiles% |
Geography:
| 100.0% |
OS Version:
| Windows 7 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00009025 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 77824 | dd0a0fde158529e75138266a79fece41 |
| .rdata | 16384 | 7771a88f780fbbafc20b50c93e1b6a62 |
| .data | 8192 | 7b625826efb4dc6202381b437e06db6c |
| .rsrc | 4096 | a8de8c9f7f782d2ce3c929337a08a782 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for rpcapd.exe
