How to remove svchost10.exe

svchost10.exe

The module svchost10.exe has been detected as Worm.Mira

svchost10.exe
Remove svchost10.exe

File Details

MD5: 5442aadc3191893ccf37d4c30bc5c8cf
Size: 54 KB
First Published: 2021-01-03 10:33:57 (4 years ago)
Latest Published: 2021-01-03 12:00:25 (4 years ago)
Status: Worm.Mira (on last analysis)
Analysis Date: 2021-01-03 12:00:25 (4 years ago)

Common Places:

%sysdrive%\cd shygunsys\ca437\ca8\addin\sql2008\x32\1033_enu_lp\x86\setup\sqlsupport_msi\windows\winsxs
%sysdrive%\cd shygunsys\ca437\ca8\addin\sql2008\x32\x86\setup\sql_common_core_msi\pfiles\sqlservr\100
%sysdrive%\cd shygunsys\ca437\ca8\addin\sql2008\x32\pcusource\1033_enu_lp\x86\setup\sqlsupport_msi\windows\winsxs
%sysdrive%\cd shygunsys\ca437\ca8\addin\sql2008\x64\x64\setup\sql_common_core_msi\pfiles\sqlservr\100\tools\binn\vsshell
%sysdrive%\cd shygunsys\ca437\ca8\addin\sql2008\x32\1033_enu_lp\x86\setup\sql2008support\pfiles\sqlservr\100
%sysdrive%\cd shygunsys\ca437\ca8\addin\sql2008\x32\1033_enu_lp\x86\setup\sql2008support\windows\winsxs\policies
%sysdrive%\cd shygunsys\ca437\ca8\addin\sql2008\x32\x86\setup\sql_engine_core_inst_msi\pfiles
%sysdrive%\cd shygunsys\ca437\ca8\addin\sql2008\x32\x86\setup
%sysdrive%\cd shygunsys\ca437\ca8\addin\sql2008\x32\x86\redist
%sysdrive%\cd shygunsys\ca437\ca8\addin\sql2008\x64\1033_enu_lp\x64\setup

Geography:

100.0%

OS Version:

Windows 7 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00003a93

PE Sections:

Name Size of data MD5
.text 14336 5eb15cc99322b7b5dd1d0a42aa4f53e1
.rdata 10240 3d1511ee7c436942c945dda1cc89da1c
.data 512 9cc231ab2d60caec50ecddad4651adb8
.rsrc 26624 a109de59912fcee7dd8d45838fc2c7a4
.reloc 2560 ca48fbd92a0ef990b864df491e0e7a5e

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for svchost10.exe
copyright for information about svchost10.exe