How to remove spools.exe
spools.exe
The module spools.exe has been detected as Risk.CoinMiner
File Details
| Product Name: | winupdate |
| Company Name: | Microsoft Corporation |
| MD5: | ffac2ab6ba4f6bb0b7e1063e93639bcf |
| Size: | 1 MB |
| First Published: | 2020-05-24 14:20:06 (4 years ago) |
| Latest Published: | 2020-05-24 15:30:00 (4 years ago) |
| Status: | Risk.CoinMiner (on last analysis) | |
| Analysis Date: | 2020-05-24 15:30:00 (4 years ago) |
Common Places:
| %windir% |
Geography:
| 100.0% |
OS Version:
| Windows Server 2012 R2 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x000a3ef8 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 1073152 | 34e31ced0dbba361a301da4839c38303 |
| .rdata | 200192 | 00cce6f58c184c47d3a91a1b5f3ca3d5 |
| .data | 36352 | e234ec039e5fd1648f20ffd40151b0c6 |
| .pdata | 31232 | 572200ce8fe139fb8dc2f4c81aebf1a7 |
| _TEXT_CN | 6656 | a447460c88ebef4a3a451c88454fa3d9 |
| _TEXT_CN | 7680 | 8b57f428ce17ef8aa42d5c7dc956e65c |
| .rsrc | 1536 | cc7c541801e8997ae57128d0a5832664 |
| .reloc | 6144 | 2a7684f4e893b066c5103ac6257e1437 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for spools.exe
