How to remove gService_KMS.exe
- File Details
- Overview
- Analysis
gService_KMS.exe
The module gService_KMS.exe has been detected as Risk.Gen
File Details
| Product Name: |
|
| MD5: |
3c19c8cbc7917fee066cb7a116d3f326 |
| Size: |
1 MB |
| First Published: |
2017-05-21 09:02:34 (8 years ago) |
| Latest Published: |
2024-09-21 23:02:42 (a year ago) |
| Status: |
Risk.Gen (on last analysis) |
|
| Analysis Date: |
2024-09-21 23:02:42 (a year ago) |
Overview
| %programfiles%\system |
| %programfiles%\kmspico |
| %sysdrive%\kmspico.v9.1.3.20131211-heldigard\kmspico only service |
| %windir%\system32 |
| %mydoc%\kmspico.v9.1.3.20131211 activator for windows and\kmspico only service |
| %system%\service_kms.exe |
| %programfiles%\activation windows 8 office 2013 |
| %programfiles%\kmspico.v9.1.3.20131211 activator for windows and\kmspico only service |
| %desktop%\activador windows 8 tutoriales pc\activador windows 8 tutoriales pc\kmspico.v9.1.3.20131211 final\kmspico only service |
| %windir%\temp |
| Service_KMS.exe |
| gService_KMS.exe |
| Service_21.exe |
|
31.2% |
|
|
16.8% |
|
|
8.9% |
|
|
4.5% |
|
|
3.2% |
|
|
3.2% |
|
|
2.5% |
|
|
2.1% |
|
|
1.9% |
|
|
1.8% |
|
|
1.7% |
|
|
1.5% |
|
|
1.5% |
|
|
1.4% |
|
|
1.3% |
|
|
1.3% |
|
|
1.1% |
|
|
1.0% |
|
|
0.8% |
|
|
0.8% |
|
|
0.7% |
|
|
0.7% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
| Windows 8.1 |
51.3% |
|
| Windows 10 |
33.9% |
|
| Windows 7 |
13.4% |
|
| Windows 8 |
1.1% |
|
| Windows Server 2008 R2 |
0.1% |
|
| Windows Vista |
0.1% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000fd89e |
| MVID: |
ed9990c3-cceb-4de7-85c8-fbb5f1b4764e |
| Name |
Size of data |
MD5 |
| .text |
1030656 |
27d086eca432eaede67917ea7ee906d3 |
| .sdata |
512 |
88b7398edad9bd38a5dd5219c61cdeb4 |
| .rsrc |
15360 |
9d803f0562154db9949148b3560ab220 |
| .reloc |
512 |
0042f354297375bb0b246af25d491f28 |
