How to remove xRdp.exe

» File
File Details
Overview
Analysis

xRdp.exe

The module xRdp.exe has been detected as Virtool.Patcher

xRdp.exe

Remove xRdp.exe

File Details

Main Info:

MD5:	f17a6feb053a24a0b69860c8e1c13f46
Size:	1 MB
First Published:	2017-05-22 11:17:23 (8 years ago)
Latest Published:	2021-01-14 03:04:39 (4 years ago)

Analysis:

Status:	Virtool.Patcher (on last analysis)
Analysis Date:	2021-01-14 03:04:39 (4 years ago)

Common Places:

%profile%\desktop

%desktop%\rdp

%desktop%\рабочий

%sysdrive%\soft\rdp

%desktop%

%sysdrive%\$recycle.bin

%profile%\downloads

%profile%

%sysdrive%\$recycle.bin\s-1-5-21-3694011806-1115375672-3340003884-500\$rt3ehvt\desktop

%sysdrive%\$recycle.bin\s-1-5-21-3694011806-1115375672-3340003884-500\$rwe93pd\desktop

File Names:

xRdp.v2.1.exe

xRdp.exe

$RMWPNY9.exe

xDedic RDP Patch v2.1.exe

cmd.exe

Geography:

	21.9%
	15.6%
	9.4%
	9.4%
	9.4%
	9.4%
	6.3%
	3.1%
	3.1%
	3.1%
	3.1%
	3.1%
	3.1%

OS Version:

Windows 10	25.8%
Windows Server 2012 R2	25.8%
Windows Server 2008 R2	22.6%
Windows 7	9.7%
Windows Server 2012	9.7%
Windows XP	3.2%
Windows Server 2016	3.2%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0042b001

PE Sections:

Name	Size of data	MD5
.text	648192	3fc1309464cd6b62fc2d31c605965a4f
.itext	4096	ab261c687c5a03ebc92cec69e03ee30a
.data	20480	64d78b643301f7e041dd2a0673a25a8b
.bss	0	00000000000000000000000000000000
.idata	4608	3e4ef6bac08716b0d4d1237e585aa811
.didata	1024	c012b6c52ad2b825318cabb99a9831f6
.edata	512	7864f8f955bec5a24a237e87a9732bbc
.tls	0	00000000000000000000000000000000
.rdata	512	f521170a29fb5233935a2d00ad468794
.reloc	0	00000000000000000000000000000000
.rsrc	693760	ff2f3d0215d6758be5cdee56e20dc79e
.aspack	40960	a387ec9621ccef35d1d1a10241173782
.adata	0	00000000000000000000000000000000

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for xRdp.exe

copyright for information about xRdp.exe