How to remove Service_21.exe
- File Details
- Overview
- Analysis
Service_21.exe
The module Service_21.exe has been detected as Crack.AutoKMS
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
17ac95b349ccf5dc5f9792b0c5217e36 |
| Size: |
943 KB |
| First Published: |
2017-05-22 07:07:24 (8 years ago) |
| Latest Published: |
2025-06-09 23:01:12 (2 months ago) |
| Status: |
Crack.AutoKMS (on last analysis) |
|
| Analysis Date: |
2025-06-09 23:01:12 (2 months ago) |
Overview
| %programfiles%\kmspico |
| %windir%\system32 |
| %programfiles% |
| %sysdrive%\программы |
| %system% |
| %appdata%\zhp\quarantine |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| Service_KMS.exe |
| Service_21.exe |
| Thailand |
30.2% |
|
| Iran |
13.0% |
|
| Jordan |
6.9% |
|
| Peru |
6.3% |
|
| Mexico |
3.0% |
|
| Philippines |
3.0% |
|
| Italy |
2.4% |
|
| Hungary |
2.1% |
|
| Turkey |
1.8% |
|
| Netherlands |
1.8% |
|
| Taiwan |
1.8% |
|
| Belgium |
1.5% |
|
| Israel |
1.2% |
|
| Vietnam |
1.2% |
|
| Indonesia |
1.2% |
|
| Guatemala |
1.2% |
|
| Egypt |
1.2% |
|
| Ukraine |
1.2% |
|
| Chile |
1.2% |
|
| India |
0.9% |
|
| Portugal |
0.9% |
|
| Brazil |
0.9% |
|
| Australia |
0.9% |
|
| Saudi Arabia |
0.9% |
|
| Sri Lanka |
0.9% |
|
| China |
0.6% |
|
| Argentina |
0.6% |
|
| Japan |
0.6% |
|
| Malaysia |
0.6% |
|
| Spain |
0.6% |
|
| Germany |
0.6% |
|
| Ecuador |
0.6% |
|
| Uruguay |
0.6% |
|
| France |
0.6% |
|
| Russia |
0.6% |
|
| Bolivia |
0.6% |
|
| Yemen |
0.6% |
|
| Panama |
0.6% |
|
| Venezuela |
0.6% |
|
| Costa Rica |
0.3% |
|
| United States |
0.3% |
|
| Cayman Islands |
0.3% |
|
| Malta |
0.3% |
|
| Kazakhstan |
0.3% |
|
| South Korea |
0.3% |
|
| Colombia |
0.3% |
|
| Algeria |
0.3% |
|
| Palestine |
0.3% |
|
| Libya |
0.3% |
|
| Romania |
0.3% |
|
| Nicaragua |
0.3% |
|
| Windows 7 |
57.7% |
|
| Windows 10 |
20.1% |
|
| Windows 8.1 |
18.6% |
|
| Windows 8 |
1.5% |
|
| Windows Server 2008 R2 |
1.2% |
|
| Windows Vista |
0.6% |
|
| Windows Server 2003 |
0.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000e8c8e |
| MVID: |
3f0353da-403b-4fae-9a2f-e0bfb11cd6fa |
| Name |
Size of data |
MD5 |
| .text |
945664 |
55cbd8983367c46e44048b037184326d |
| .rsrc |
15360 |
6a64e7944b57a37c3fcbc344a3a179a4 |
| .reloc |
512 |
c4dae8c865d45cc457e021779b8941fa |
