How to remove winsw.exe
winsw.exe
The module winsw.exe has been detected as Risk.WindowsServiceWrapper
File Details
| Product Name: | Windows Service Wrapper |
| Company Name: | CloudBees, Inc. |
| MD5: | 70491c0b0216e31b254a54305ccf0f96 |
| Size: | 35 KB |
| First Published: | 2018-09-19 17:10:05 (6 years ago) |
| Latest Published: | 2023-05-23 23:54:10 (2 years ago) |
| Status: | Risk.WindowsServiceWrapper (on last analysis) | |
| Analysis Date: | 2023-05-23 23:54:10 (2 years ago) |
Common Places:
| %windir%\reserve service |
| %windir%\winkit\0.0.0.115\node_modules\node-windows\bin\winsw |
| %windir%\winkit\0.0.0.115 |
| %sysdrive%\crmviet\notification-x64 |
| %localappdata%\gravitdesigner\app-3.2.4\resources\app\node_modules\node-windows\bin\winsw |
| %programfiles%\explaindio video marker\resources\node-windows\bin\winsw |
| %programfiles%\green screen replacer\resources\node-windows\bin\winsw |
| %programfiles%\explaindio video fx\resources\node-windows\bin\winsw |
| %sysdrive%\download\gravitdesignerportable-ia32.zip\resources\app\node_modules\node-windows\bin\winsw |
| %sysdrive%\download\gravitdesignerportable-ia32\resources\app\node_modules\node-windows\bin\winsw |
File Names:
| service.exe |
| winsw.exe |
| crmnotification.exe |
| triggercmdagent.exe |
| sevice.exe |
| service.exe#4B18C600C1955288 |
| winsw.exe#AF1CB0CAE17D27AA |
Geography:
| 64.2% | ||
| 13.1% | ||
| 2.4% | ||
| 2.3% | ||
| 2.1% | ||
| 1.6% | ||
| 1.5% | ||
| 1.2% | ||
| 1.0% | ||
| 0.9% | ||
| 0.9% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.6% | ||
| 0.5% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% | ||
| 0.3% | ||
| 0.3% | ||
| 0.3% | ||
| 0.2% | ||
| 0.2% | ||
| 0.2% | ||
| 0.2% | ||
| 0.2% | ||
| 0.1% | ||
| 0.1% |
OS Version:
| Windows 10 | 54.7% | |
| Windows 7 | 35.9% | |
| Windows 8.1 | 9.0% | |
| Windows XP | 0.2% | |
| Windows Server 2008 R2 | 0.2% | |
| Windows Server 2012 R2 | 0.1% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0000a0be |
.NET Info:
| MVID: | 3f0a7126-14e0-4504-8f3c-1dee9fdad292 |
| Typelib ID: | 59ce18df-cacb-4360-bb80-798bd6459ca3 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 33280 | 02c008399cfb29597ea5eee3b9e6cf25 |
| .rsrc | 2048 | 4fe7a4281e242b45bc6569f6d88d5db8 |
| .reloc | 512 | 8ec5dec687f3274aaa38494e9f33a6a2 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for winsw.exe
