How to remove svchost.exe

» File
File Details
Overview
Analysis

svchost.exe

The module svchost.exe has been detected as Risk.CoinMiner

svchost.exe

Remove svchost.exe

File Details

Main Info:

Product Name:	XMRig
Company Name:	www.xmrig.com
MD5:	9d352721d8854fcf449380e7d55e6949
Size:	2 MB
First Published:	2018-10-23 11:02:16 (6 years ago)
Latest Published:	2024-12-07 23:01:42 (6 months ago)

Analysis:

Status:	Risk.CoinMiner (on last analysis)
Analysis Date:	2024-12-07 23:01:42 (6 months ago)

Common Places:

%windir%\fonts\thumb\77c4ad3f3cb3d812d68fab7a354d4a77

%sysdrive%\install\miner

Geography:

	66.7%
	33.3%

OS Version:

Windows Server 2016	66.7%
Windows 7	33.3%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x0018a2d4

PE Sections:

Name	Size of data	MD5
.text	1954816	dea049afa64af7c5fd578380113516a9
.rdata	697856	38bb594104da0dcb739ce51f5ce6a4e7
.data	55808	5d161b03e0120408b084b9854da43292
.pdata	87552	96ae952c8f110801197a98eb0e410df8
_TEXT_CN	3584	b3092c78cb64bf57243ac2e3fe9bd3d6
.rsrc	23040	7cabb56afb182228905c88f9859396e3
.reloc	27648	0315e58caa98eff22caae8ab54d22520

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for svchost.exe

copyright for information about svchost.exe