How to remove KZTui.exe
KZTui.exe
The module KZTui.exe has been detected as Adware.Kuaiba (Heuristic)
File Details
| Product Name: | 快压 |
| Company Name: | 上海广乐网络科技有限公司 |
| MD5: | bada1b657ccbd55ff557c1e05cb29761 |
| Size: | 777 KB |
| First Published: | 2017-05-25 23:03:26 (7 years ago) |
| Latest Published: | 2018-11-15 16:08:29 (6 years ago) |
| Status: | Adware.Kuaiba (Heuristic) (on last analysis) | |
| Analysis Date: | 2018-11-15 16:08:29 (6 years ago) |
Overview
| Signed By: | 上海广乐网络科技有限公司 |
| Status: | Valid |
Common Places:
| %programfiles%\辦揤\x86 |
| %temp%\kz7zdata.7z\x86 |
| %programfiles%\¿ìñ¹\x86 |
| %programfiles%\ソ・ケ\x86 |
| %programfiles%\їмс№\x86 |
| %sysdrive%\$recycle.bin\s-1-5-21-3092207873-173956258-2776779464-1001\$r19tl9b.7z\x86 |
| %programfiles%\ώμρή\x86 |
| %sysdrive%\adwcleaner\quarantine\files\mkkqjpbdchlqaondykutffxwdslcecpl\x86 |
| %sysdrive%\windows.old.000\users\siswo\appdata\local\temp\kz7zdata.7z\x86 |
| %windir%\temp\kz7zdata.7z\x86 |
Geography:
| 22.2% | ||
| 16.7% | ||
| 13.9% | ||
| 8.3% | ||
| 5.6% | ||
| 5.6% | ||
| 5.6% | ||
| 5.6% | ||
| 2.8% | ||
| 2.8% | ||
| 2.8% | ||
| 2.8% | ||
| 2.8% | ||
| 2.8% |
OS Version:
| Windows 10 | 47.2% | |
| Windows 7 | 36.1% | |
| Windows 8.1 | 13.9% | |
| Windows 8 | 2.8% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0003776c |
PE Sections:
| Name | Size of data | MD5 |
| .text | 576512 | a39f87812028c8347367cf2857ca1cdd |
| .rdata | 87040 | 91656408bb5c8fe5aa6eaed83f3180e8 |
| .data | 12800 | dc542b09c02688639b74f829e0ef01da |
| .rsrc | 83968 | 9ace87fb68882bb8b3f8401e45cbe507 |
| .reloc | 27648 | ae27bcdac726dcf137db6eb4374184d7 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for KZTui.exe
