How to remove rutserv.exe
- File Details
- Overview
- Analysis
rutserv.exe
The module rutserv.exe has been detected as Risk.RemoteAdmin
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
6ee0251eacbacf92fa8cfa140b43744f |
| Size: |
8 MB |
| First Published: |
2017-06-14 15:04:11 (6 years ago) |
| Latest Published: |
2020-06-24 11:11:10 (3 years ago) |
| Status: |
Risk.RemoteAdmin (on last analysis) |
|
| Analysis Date: |
2020-06-24 11:11:10 (3 years ago) |
Overview
| %temp%\7zipsfx.008 |
| %temp%\7zipsfx.003 |
| %temp%\7zipsfx.006 |
| %appdata%\rms-agent\66005\75d3b09c5f |
| %temp%\7zipsfx.009 |
| %programfiles%\remote manipulator system - viewer\server |
| %programfiles% |
| %sysdrive%\02. программы по группам\удалённое управление\rms удаленный доступ\rms.viewer.portable\rms.viewer.portable.zip\rms.viewer.portable |
| %programfiles% |
| Windows 10 |
50.0% |
|
| Windows 7 |
50.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x006fc6a4 |
| Name |
Size of data |
MD5 |
| .text |
7296512 |
85079efd70a0d6ef67af49466748a527 |
| .itext |
22528 |
a0b476f47a892f2f50037cd9824a3b20 |
| .data |
128512 |
5e0d113a1818c74337bf30dbc16fb6e5 |
| .bss |
0 |
00000000000000000000000000000000 |
| .idata |
25088 |
186268a58bafd718d770caf2e7e99f31 |
| .didata |
25088 |
ac29481ed550604cf520a460a2108aef |
| .edata |
512 |
3e5868b60a6badf98b3c692e516a2e31 |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
464f96571374d0bf0206c068567ab83e |
| .vmp0 |
2560 |
3d6bd4effe6b4b9304e313c596707a1f |
| .reloc |
634368 |
d477d07161a310a4f3b16c13a7acc419 |
| .rsrc |
1157120 |
0756f683146bc3ced55a51dc9dc666ba |
