How to remove PIDKey.exe
PIDKey.exe
The module PIDKey.exe has been detected as Hack.KMS
File Details
| Product Name: | PIDKey |
| Company Name: | MSfree Inc. (Ratiborus and friends) |
| MD5: | 010c49c5c014c3962f03d9b114c35002 |
| Size: | 2 MB |
| First Published: | 2017-10-07 02:13:01 (7 years ago) |
| Latest Published: | 2018-10-21 14:04:54 (6 years ago) |
| Status: | Hack.KMS (on last analysis) | |
| Analysis Date: | 2018-10-21 14:04:54 (6 years ago) |
Overview
| Signed By: | Ratiborus MSFree Inc. |
| Status: | Valid |
Common Places:
| %profile%\downloads\windowsoffice密钥检测工具pidkey(附windows 8.1mak密钥)\pidkey v2.0.9.1002 |
| %profile%\downloads\ms windows 10(x86) pro uk-en untouched iso+usb+activation-tools [danhuk]\activation tools\pidkey v2.0.9.1002 |
| %sysdrive%\ms windows 10(x86) pro uk-en untouched iso+usb+activation-tools [danhuk]\activation tools |
| %profile%\downloads\programs\ms windows 10(x86) pro uk-en untouched iso+usb+activation-tools [danhuk]\activation tools |
| %mydoc%\alex drive\d laptop\downloads\compressed\ms windows 10(x86) pro uk-en untouched iso+usb+activation-tools [danhuk]\activation tools |
| %sysdrive%\activation tools |
Geography:
| 25.0% | ||
| 25.0% | ||
| 12.5% | ||
| 12.5% | ||
| 12.5% | ||
| 12.5% |
OS Version:
| Windows 10 | 62.5% | |
| Windows 7 | 25.0% | |
| Windows Vista | 12.5% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0029bf2e |
.NET Info:
| MVID: | ee8d29f5-c381-430a-a3c5-79d5f14f21dd |
| Typelib ID: | 966f2f24-866c-4ddd-9678-ec3427ac80f5 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 2727936 | fac76547153b5cde773f76d050afa8fb |
| .sdata | 512 | 77f6afb7045bce52156115243b4e79bb |
| .rsrc | 72704 | 3e510723cfc2628bcae83bfac780ff56 |
| .reloc | 512 | ced53b08ddcc2bd01b0cdf12437f1682 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for PIDKey.exe
