How to remove gPIDKey.exe
- File Details
- Overview
- Analysis
gPIDKey.exe
The module gPIDKey.exe has been detected as Hack.KMS
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
190883959c44a3c3e2f021b43934ab50 |
| Size: |
4 MB |
| First Published: |
2017-09-09 16:01:31 (8 years ago) |
| Latest Published: |
2025-05-19 23:02:45 (6 months ago) |
| Status: |
Hack.KMS (on last analysis) |
|
| Analysis Date: |
2025-05-19 23:02:45 (6 months ago) |
Overview
| Signed By: |
WZT |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %profile%\downloads\программы\all activation windows (7-8-10) v14.0 2017\all activation\kms\microsoft product keys 2.6.3\tools\pid |
| %desktop%\new folder\microsoft.toolkit.collection.pack.october.2016-p2p\10.2016\pidkey.2.1.2.1015\pidkey v2.1.2.1015 |
| %profile%\downloads\compressed\[www.gigapurbalingga.com]_mipk120m\mpk1.2\tools\pid |
| %desktop%\microsoft product keys 2\new folder\microsoft product keys 2.6.3\tools\pid |
| %programfiles%\mpk 2.6\tools\pid |
| %desktop%\downlpad\all activation windows 7-8-10 v12.0 (windows @amp; office activator) [sadeempc]\all_activation_windows__7-8-10__v12.0\all activation\kms\microsoft product keys 2.6.3\tools\pid |
| %profile%\downloads\microsoft windows 7 activation tool |
| %profile%\downloads\activadores all\all activation windows 7-8-10 v12.0 (windows @amp; office activator) [sadeempc]\all activation\kms\microsoft product keys 2.6.3\tools\pid |
| %profile%\downloads\activaton\all activation\kms\microsoft product keys 2.6.3\tools\pid |
| %desktop%\all activation windows (7-8-10) v13.5 2017\all activation\kms\microsoft product keys 2.6.3\tools\pid |
|
18.5% |
|
|
7.0% |
|
|
5.8% |
|
|
5.3% |
|
|
3.7% |
|
|
3.3% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.5% |
|
|
2.5% |
|
|
2.5% |
|
|
2.5% |
|
|
2.1% |
|
|
2.1% |
|
|
1.6% |
|
|
1.6% |
|
|
1.6% |
|
|
1.6% |
|
|
1.6% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
| Windows 10 |
55.4% |
|
| Windows 7 |
33.8% |
|
| Windows 8.1 |
6.5% |
|
| Windows 8 |
2.7% |
|
| Windows XP |
1.5% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0049114e |
| Name |
Size of data |
MD5 |
| .text |
4780544 |
f02331f8b958b231418e44c65c97876c |
| .sdata |
1024 |
43847f7a63202d9f55a4e779e999c796 |
| .rsrc |
72704 |
8c2820f15c67c0203f91fa60fcf53782 |
| .reloc |
512 |
2b3d44d313dbd1c02e30cb27eb012298 |
