How to remove winsw.exe#AF1CB0CAE17D27AA
- File Details
- Overview
- Analysis
winsw.exe#AF1CB0CAE17D27AA
The module winsw.exe#AF1CB0CAE17D27AA has been detected as Risk.WindowsServiceWrapper
File Details
Product Name: |
|
Company Name: |
|
MD5: |
70491c0b0216e31b254a54305ccf0f96 |
Size: |
35 KB |
First Published: |
2018-09-19 17:10:05 (5 years ago) |
Latest Published: |
2023-05-23 23:54:10 (10 months ago) |
Status: |
Risk.WindowsServiceWrapper (on last analysis) |
|
Analysis Date: |
2023-05-23 23:54:10 (10 months ago) |
%windir%\reserve service |
%windir%\winkit\0.0.0.115\node_modules\node-windows\bin\winsw |
%windir%\winkit\0.0.0.115 |
%sysdrive%\crmviet\notification-x64 |
%localappdata%\gravitdesigner\app-3.2.4\resources\app\node_modules\node-windows\bin\winsw |
%programfiles%\explaindio video marker\resources\node-windows\bin\winsw |
%programfiles%\green screen replacer\resources\node-windows\bin\winsw |
%programfiles%\explaindio video fx\resources\node-windows\bin\winsw |
%sysdrive%\download\gravitdesignerportable-ia32.zip\resources\app\node_modules\node-windows\bin\winsw |
%sysdrive%\download\gravitdesignerportable-ia32\resources\app\node_modules\node-windows\bin\winsw |
service.exe |
winsw.exe |
crmnotification.exe |
triggercmdagent.exe |
sevice.exe |
service.exe#4B18C600C1955288 |
winsw.exe#AF1CB0CAE17D27AA |
|
64.2% |
|
|
13.1% |
|
|
2.4% |
|
|
2.3% |
|
|
2.1% |
|
|
1.6% |
|
|
1.5% |
|
|
1.2% |
|
|
1.0% |
|
|
0.9% |
|
|
0.9% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.6% |
|
|
0.5% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.1% |
|
|
0.1% |
|
Windows 10 |
54.7% |
|
Windows 7 |
35.9% |
|
Windows 8.1 |
9.0% |
|
Windows XP |
0.2% |
|
Windows Server 2008 R2 |
0.2% |
|
Windows Server 2012 R2 |
0.1% |
|
Analysis
Subsystem: |
Windows CUI |
PE Type: |
pe |
OS Bitness: |
32 |
Image Base: |
0x00400000 |
Entry Address: |
0x0000a0be |
MVID: |
3f0a7126-14e0-4504-8f3c-1dee9fdad292 |
Typelib ID: |
59ce18df-cacb-4360-bb80-798bd6459ca3 |
Name |
Size of data |
MD5 |
.text |
33280 |
02c008399cfb29597ea5eee3b9e6cf25 |
.rsrc |
2048 |
4fe7a4281e242b45bc6569f6d88d5db8 |
.reloc |
512 |
8ec5dec687f3274aaa38494e9f33a6a2 |