How to remove Service_KMS.exe
- File Details
- Overview
- Analysis
Service_KMS.exe
The module Service_KMS.exe has been detected as Hack.KMS
File Details
| Product Name: |
|
| MD5: |
6cd046d2be8fa9c2b591602195495ada |
| Size: |
340 KB |
| First Published: |
2017-08-22 13:14:57 (8 years ago) |
| Latest Published: |
2022-07-23 23:21:22 (3 years ago) |
| Status: |
Hack.KMS (on last analysis) |
|
| Analysis Date: |
2022-07-23 23:21:22 (3 years ago) |
| %programfiles%\kmspico |
| %sysdrive%\e\原thop使用硬碟\my documents\微型 kms\kmspico_v7 |
| %sysdrive%\e\仁愛之家做ghost硬碟\han0257 backup\d\my documents\微型 kms\kmspico_v7 |
| %sysdrive%\e\原thop使用硬碟\my documents\微型 kms\kmspico_v7.zip\kmspico_v7 |
| %sysdrive%\dysk_d\###-files\shifter.softarchive.net.mtool.rar\shifter.softarchive.net.mtool\kmspico |
| %programfiles% |
| %sysdrive%\kmspico(最简单的全自动win8office2013一键激活工具) v7.0 绿色版\kmspico(最简单的全自动win8-office2013一键激活工具) v7.0 绿色版_ttrar.rar |
| %sysdrive%\2-1\soft\2013-0613\kmspico v7.zip |
| %sysdrive%\$recycle.bin\s-1-5-21-609738374-3959143848-4153854406-1001\$rsqbhfs.rar\kmspico v7 |
| %programfiles% |
|
33.3% |
|
|
22.2% |
|
|
11.1% |
|
|
5.6% |
|
|
5.6% |
|
|
5.6% |
|
|
5.6% |
|
|
5.6% |
|
|
5.6% |
|
| Windows 10 |
50.0% |
|
| Windows 7 |
33.3% |
|
| Windows 8.1 |
11.1% |
|
| Windows 8 |
5.6% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0005307e |
| MVID: |
8dc55264-d87c-419c-a9ae-45a59ff892b8 |
| Typelib ID: |
9a79266f-9bd7-4979-82c2-2f910d03f9bf |
| Name |
Size of data |
MD5 |
| .text |
332288 |
0966033d04231994118daaeea7160388 |
| .sdata |
512 |
63337b5fee626e7f818106bd90975479 |
| .rsrc |
14336 |
1f02627171eb4873ffae5a080c4497b0 |
| .reloc |
512 |
bb18ac45f392e65b47e9061c5ca29349 |
