How to remove siw_RO.exe
siw_RO.exe
The module siw_RO.exe has been detected as Trojan.RemoteAdmin
File Details
| Product Name: | System Information for Windows |
| Company Name: | Topala Software Solutions |
| MD5: | c62765da536c3186be665384cbf12d57 |
| Size: | 1 MB |
| First Published: | 2017-06-29 03:05:51 (7 years ago) |
| Latest Published: | 2024-11-03 23:06:10 (a month ago) |
| Status: | Trojan.RemoteAdmin (on last analysis) | |
| Analysis Date: | 2024-11-03 23:06:10 (a month ago) |
Common Places:
| %sysdrive%\mybootcd\cd\hbcd\wintools |
| %mydoc%\allan\pc antigo\quebra senha\hbcd\wintools |
| %desktop%\doc\hbcd\wintools |
| %desktop%\doc\soft\hbcd\wintools |
| %sysdrive%\my documents\desktop\tạo usb boot\hirens.bootcd.10.6\hiren's.bootcd.10.6\hbcd |
| %profile%\ser\desktop\tạo usb boot\hirens.bootcd.10.6\hiren's.bootcd.10.6\hbcd |
| %desktop%\new folder (2)\new folder\hbcd |
| %programfiles%\ultraiso\hbcd |
| %sysdrive%\voll\hirent\hbcd |
| %sysdrive%\hamze\hbcd |
File Names:
| siw.exe |
| siw_RO.exe |
| gsiw.exe |
Geography:
| 18.9% | ||
| 18.9% | ||
| 6.8% | ||
| 6.8% | ||
| 5.4% | ||
| 5.4% | ||
| 5.4% | ||
| 2.7% | ||
| 2.7% | ||
| 2.7% | ||
| 2.7% | ||
| 2.7% | ||
| 2.7% | ||
| 1.4% | ||
| 1.4% | ||
| 1.4% | ||
| 1.4% | ||
| 1.4% | ||
| 1.4% | ||
| 1.4% | ||
| 1.4% | ||
| 1.4% | ||
| 1.4% | ||
| 1.4% | ||
| 1.4% |
OS Version:
| Windows 10 | 48.6% | |
| Windows 7 | 43.2% | |
| Windows XP | 5.4% | |
| Windows Server 2008 R2 | 1.4% | |
| Windows 8.1 | 1.4% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0005740b |
PE Sections:
| Name | Size of data | MD5 |
| .text | 1503232 | af07c52717c1c8dcee56af4077062216 |
| .rsrc | 70656 | 52d3f29fc4cd45060efec694263a465f |
More information:
Download GridinSoft
Anti-Malware - Removal tool for siw_RO.exe
