How to remove KrnlUI.exe
KrnlUI.exe
The module KrnlUI.exe has been detected as Trojan.Conteban
File Details
| Product Name: | KrnlUI |
| MD5: | 89df28e00ed54cf75adda70a5dcc74d2 |
| Size: | 1 MB |
| First Published: | 2023-09-02 23:34:32 (2 years ago) |
| Latest Published: | 2023-09-02 23:34:32 (2 years ago) |
| Status: | Trojan.Conteban (on last analysis) | |
| Analysis Date: | 2023-09-02 23:34:32 (2 years ago) |
Overview
| Signed By: | 1305119 B.C. Ltd |
| Status: | Valid |
Common Places:
| %appdata% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00103956 |
.NET Info:
| MVID: | 6eac6abe-1561-46dd-afaf-8da2dea066d7 |
| Typelib ID: | f935dc21-1cf0-11d0-adb9-00c04fd58a0b |
PE Sections:
| Name | Size of data | MD5 |
| .text | 1055232 | 48e2ff181ada94be570b7b5ada13f622 |
| .rsrc | 108544 | 730517dc3cf16acc7b032a9e15309dab |
| .reloc | 512 | b822edf6f68f2a19ab584b36b5eaa1d6 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for KrnlUI.exe
