How to remove rutserv.exe
- File Details
- Overview
- Analysis
rutserv.exe
The module rutserv.exe has been detected as Risk.RemoteAdmin
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
55d66bd554511f803bebead2bd1bfde0 |
| Size: |
12 MB |
| First Published: |
2019-10-03 05:32:34 (5 years ago) |
| Latest Published: |
2021-08-05 20:36:41 (4 years ago) |
| Status: |
Risk.RemoteAdmin (on last analysis) |
|
| Analysis Date: |
2021-08-05 20:36:41 (4 years ago) |
Overview
| %programfiles%\remote manipulator system - viewer |
| %programfiles% |
| %programfiles% |
| %desktop%\новая папка\rms.viewer.portable |
| %desktop%\новая папка\rms.viewer.portable |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %appdata%\rms agent\69110 |
| Russia |
50.0% |
|
| Ukraine |
37.5% |
|
| Netherlands |
8.3% |
|
| Uzbekistan |
4.2% |
|
| Windows 10 |
77.8% |
|
| Windows 7 |
18.5% |
|
| Windows Server 2012 R2 |
3.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x009bc914 |
| Name |
Size of data |
MD5 |
| .text |
10177024 |
c1094ad9ec8ab6bbcf07cba233e9a951 |
| .itext |
27136 |
d4ec3ddaa9d181bc0414c936cdb95c8c |
| .data |
151040 |
72797e4f142ec558219a8641e2b8347f |
| .bss |
0 |
00000000000000000000000000000000 |
| .idata |
23552 |
7431870b29e88b0516c8a0e9521ba3a7 |
| .didata |
25600 |
f645549cb3d651c6f7c79fc61591eb56 |
| .edata |
512 |
506c2f7bf7fe687e86f7f2c5e0f2e3ef |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
c5c74e6984b713e615a336dfa2e240c2 |
| .reloc |
909312 |
f5aa9453e57e8dcc5444929861b93198 |
| .rsrc |
1901568 |
133d899f86c81a1ce0d19ffc51a06ef5 |
