How to remove Service_21.exe
- File Details
- Overview
- Analysis
Service_21.exe
The module Service_21.exe has been detected as Risk.Gen
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
0fffff9ed9392a7a925b4ea70c43c874 |
| Size: |
722 KB |
| First Published: |
2017-05-21 17:06:06 (8 years ago) |
| Latest Published: |
2024-08-03 23:01:54 (a year ago) |
| Status: |
Risk.Gen (on last analysis) |
|
| Analysis Date: |
2024-08-03 23:01:54 (a year ago) |
Overview
| %programfiles%\kmspico |
| %programfiles%\microsoft office\office16\kmspico |
| %windir%\temp\kms |
| %programfiles%\microsoft office\kmspico |
| %sysdrive%\system volume information\systemrestore\frstaging\program files\kmspico |
| %programfiles%\powerdatarecovery\d documento\program files\kmspico |
| %programfiles% |
| %sysdrive%\webrootdebug\quarantine\folders |
| %appdata%\zhp |
| %sysdrive%\office\office2013vol版激活工具\kmspico_install_v4_5 |
| Service_KMS.exe |
| Service_21.exe |
| service_kms.exe |
| SERVICE_KMS.del |
|
17.8% |
|
|
8.7% |
|
|
7.7% |
|
|
5.3% |
|
|
5.3% |
|
|
4.4% |
|
|
4.0% |
|
|
3.7% |
|
|
3.7% |
|
|
3.5% |
|
|
3.3% |
|
|
3.0% |
|
|
2.4% |
|
|
2.3% |
|
|
1.9% |
|
|
1.5% |
|
|
1.4% |
|
|
1.2% |
|
|
1.1% |
|
|
1.1% |
|
|
1.0% |
|
|
1.0% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.7% |
|
|
0.6% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.3% |
|
|
0.3% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
| Windows 10 |
56.6% |
|
| Windows 7 |
32.3% |
|
| Windows 8.1 |
8.8% |
|
| Windows 8 |
1.1% |
|
| Windows XP |
0.4% |
|
| Windows Server 2012 |
0.3% |
|
| Windows Server 2016 |
0.2% |
|
| Windows Vista |
0.1% |
|
| Windows Server 2008 R2 |
0.1% |
|
| Windows Server 2012 R2 |
0.1% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000b43be |
| MVID: |
706ec5b4-e5e7-4ae2-95ff-8cfe27db2dd6 |
| Name |
Size of data |
MD5 |
| .text |
730112 |
1a80e001f86c6ac11f49729af9efd1b3 |
| .rsrc |
4096 |
8a8a8a4675fde5e674879c9ed65a52e5 |
| .reloc |
512 |
7d1b663e67cabdcff4403b80f1effe02 |
