home

Serv-U-Tray.exe

Serv-U File Server

SolarWinds, Inc.

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘ServUTrayIcon’.
Publisher:
SolarWinds Worldwide, LLC. +1(866) 530-8100  (signed by SolarWinds, Inc.)

Product:
Serv-U® File Server

Description:
Serv-U® File Server Tray Application

Version:
15, 0, 1, 20

MD5:
280f5e4ebdfb3b3966b9d5909b5237c4

SHA-1:
8ad207b11cc96c46eb251afefde554ce24427607

SHA-256:
a59990770191b2b2a6243a587af796fb23fcd2584a0fabca360c120840ad1175

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 4:54:34 PM UTC  (today)

File size:
894.9 KB (916,328 bytes)

Product version:
15, 0, 1, 20

Copyright:
(C) 2013 SolarWinds Worldwide, LLC. All rights reserved.

Trademarks:
Serv-U® is a registered trademark of SolarWinds Worldwide, LLC.

Original file name:
Serv-U-Tray.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\rhinosoft\serv-u\serv-u-tray.exe

Digital Signature
Signed by:
SolarWinds, Inc.

Authority:
VeriSign, Inc.

Valid from:
7/31/2013 7:00:00 PM

Valid to:
9/12/2016 6:59:59 PM

Subject:
CN="SolarWinds, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="SolarWinds, Inc.", L=Austin, S=Texas, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4DF39883390551C113967E6F2ECAB9C8

File PE Metadata
Compilation timestamp:
2/6/2014 10:30:38 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:IK8VprWXMPHGYGUoJ+nDotgoQ9JjPhc24ae459b8fYwjPccDS4aF:ITVprWXMF2+nk0GBYw8F

Entry address:
0x42327

Entry point:
E8, 57, 08, 00, 00, E9, 6B, FD, FF, FF, 3B, 0D, C0, 50, 46, 00, 75, 02, F3, C3, E9, DE, 08, 00, 00, 8B, FF, 55, 8B, EC, F6, 45, 08, 02, 57, 8B, F9, 74, 25, 56, 68, 64, 2D, 44, 00, 8D, 77, FC, FF, 36, 6A, 0C, 57, E8, BE, 01, 00, 00, F6, 45, 08, 01, 74, 07, 56, E8, E3, EE, FF, FF, 59, 8B, C6, 5E, EB, 14, E8, EC, 09, 00, 00, F6, 45, 08, 01, 74, 07, 57, E8, CC, EE, FF, FF, 59, 8B, C7, 5F, 5D, C2, 04, 00, 6A, 14, 68, F0, C8, 45, 00, E8, F8, 04, 00, 00, FF, 35, 0C, 6D, 46, 00, 8B, 35, 08, A2, 44, 00, FF, D6, 89...
 
[+]

Entropy:
5.5971

Code size:
288.5 KB (295,424 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
ServUTrayIcon

Command:
C:\Program Files\rhinosoft\serv-u\serv-u-tray.exe


herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.