How to remove rutserv.exe
- File Details
- Overview
- Analysis
rutserv.exe
The module rutserv.exe has been detected as PUP.RemoteAdmin
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
c805f814be968f1405a1144d02e8034d |
| Size: |
8 MB |
| First Published: |
2017-06-23 03:09:13 (7 years ago) |
| Latest Published: |
2020-03-05 10:23:37 (4 years ago) |
| Status: |
PUP.RemoteAdmin (on last analysis) |
|
| Analysis Date: |
2020-03-05 10:23:37 (4 years ago) |
Overview
| %profile%\буфон\buhphone\bin\bph_rda\rms |
| %programfiles%\1c-connect\bin\bph_rda\rms |
| %programfiles%\1c-connect |
| %mydoc%\1c-connect\bin\bph_rda |
| %sysdrive%\buhphone\bin\bph_rda |
| %desktop%\мои документы\1c-connect\bin\bph_rda |
| %mydoc%\client\bin\bph_rda |
| %sysdrive%\system volume information\systemrestore\frstaging\users\montigomo\documents\1c-connect\bin\bph_rda |
| %programfiles%\1c connect\1c-connect\bin\bph_rda |
| %programfiles%\1c-connect |
| Windows 10 |
50.0% |
|
| Windows 7 |
42.9% |
|
| Windows XP |
3.6% |
|
| Windows Server 2012 R2 |
3.6% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x006fc7b8 |
| Name |
Size of data |
MD5 |
| .text |
7298048 |
c6558657f1bcee40b4de3d307f79cb12 |
| .itext |
22528 |
b2910a098317b053b61916945867587c |
| .data |
127488 |
d3689bf517e63fd650dadc7036246dbc |
| .bss |
0 |
00000000000000000000000000000000 |
| .idata |
24576 |
cf499057eae852a64a275dfe5c7966a6 |
| .didata |
25088 |
fa3fdf5a997e80432cdabceac9f19020 |
| .edata |
512 |
66ce09dd93dcd69e5d0af5dec3598dde |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
0865d8b9603c59227612c64c71f45edc |
| .reloc |
644608 |
165d8fb4c1cd27be7ad54885f747fcc1 |
| .rsrc |
1185792 |
8e097e0b63e636554cd5d11c29e61ccd |
