How to remove gkernel.sys

» File
File Details
Overview
Analysis

gkernel.sys

The module gkernel.sys has been detected as Suspicious Object

gkernel.sys

Remove gkernel.sys

File Details

Main Info:

MD5:	4e651936256cc920c8049da70c2063f5
Size:	49 KB
First Published:	2017-05-21 06:07:08 (7 years ago)
Latest Published:	2018-09-12 13:03:38 (6 years ago)

Analysis:

Status:	Suspicious Object (on last analysis)
Analysis Date:	2018-09-12 13:03:38 (6 years ago)

Overview

Digital Signature

Signed By:	Garena Online Pte Ltd
Status:	Valid

Common Places:

%localappdata%\temp

%sysdrive%\temp

%temp%

%sysdrive%

Geography:

Taiwan	49.8%
Vietnam	16.5%
Hong Kong	16.3%
Thailand	8.7%
Indonesia	5.2%
Malaysia	1.0%
Philippines	0.7%
Australia	0.3%
Japan	0.2%
Singapore	0.2%
Macau	0.2%
Saudi Arabia	0.1%
Poland	0.1%
United States	0.1%
Iran	0.1%
New Zealand	0.1%
Romania	0.1%

OS Version:

Windows 10	99.0%
Windows 7	1.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000000010000
Entry Address:	0x00001110

PE Sections:

Name	Size of data	MD5
.text	22528	d6d4bca6a2b33d57159e3c3f653a850c
.rdata	3584	fa26ec728e6b983aa3d97f117d0e879e
.data	512	69963d407ed0d642cef83755efeedef5
.pdata	2048	33a9fb1cdd674087d88147642cf05602
INIT	1536	3c97ad5681d775889fdb262114ad7375
.reloc	512	4c4af312895d705cb8d2c39d783782ee

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for gkernel.sys

copyright for information about gkernel.sys