How to remove winserv.exe
- File Details
- Overview
- Analysis
winserv.exe
The module winserv.exe has been detected as Risk.RemoteAdmin
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
3f4f5a6cb95047fea6102bd7d2226aa9 |
| Size: |
10 MB |
| First Published: |
2022-07-14 23:21:03 (3 years ago) |
| Latest Published: |
2025-05-31 23:03:01 (2 months ago) |
| Status: |
Risk.RemoteAdmin (on last analysis) |
|
| Analysis Date: |
2025-05-31 23:03:01 (2 months ago) |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
|
53.2% |
|
|
14.1% |
|
|
5.4% |
|
|
4.4% |
|
|
3.4% |
|
|
1.3% |
|
|
1.3% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
| Windows 10 |
96.3% |
|
| Windows 7 |
3.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0077b96c |
| Name |
Size of data |
MD5 |
| .tls |
10560512 |
2e7ca63fa88daeae7fd9830b8655abbd |
| .rsrc |
92160 |
64ab199fce033650bbe20cf75c3e3597 |
| .idata |
22528 |
46c8ceb8f393fdd5b905455c1e58401f |
