How to remove kprocesshacker.sys

kprocesshacker.sys

The module kprocesshacker.sys has been detected as Hack.Patcher

kprocesshacker.sys
Remove kprocesshacker.sys

File Details

Product Name:

KProcessHacker
Company Name:

wj32
MD5: 6365fe1d37545c71cbe2719ac7831bdd
Size: 40 KB
First Published: 2019-07-28 08:43:05 (6 years ago)
Latest Published: 2022-11-04 23:51:04 (3 years ago)
Status: Hack.Patcher (on last analysis)
Analysis Date: 2022-11-04 23:51:04 (3 years ago)

Overview

Signed By: Wen Jia Liu
Status: Valid

Common Places:

%programfiles%
%sysdrive%\tech & tools files\process hacker
%sysdrive%\cracking files & tweets\cracking files & tweets\process hacker
%sysdrive%\cracking files & tweets\process hacker
%sysdrive%\work station\service\processhacker-2.39-bin.zip
%sysdrive%\work station\service\processhacker-2.39-bin
%profile%\downloads\compressed\processhacker-2.39-bin.zip
%desktop%\todo\windows10
%sysdrive%\drivers & programms\antivirus\processhacker-2.39.zip
%sysdrive%\drivers & programms\antivirus\processhacker-2.39

Geography:

15.5%
7.2%
5.2%
5.2%
5.2%
4.1%
4.1%
4.1%
4.1%
4.1%
3.1%
3.1%
2.1%
2.1%
2.1%
2.1%
2.1%
2.1%
2.1%
2.1%
2.1%
2.1%
2.1%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%

OS Version:

Windows 10 74.7%
Windows 7 21.2%
Windows XP 1.0%
Windows 8.1 1.0%
Windows Server 2012 R2 1.0%
Windows Server 2016 1.0%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 32
Image Base: 0x00010000
Entry Address: 0x0000703e

PE Sections:

Name Size of data MD5
.text 3072 1d7311b9b5b31ee3901ce12ac9dbbc9c
.rdata 2048 c700f3b49f13c84abf08744c098db39e
.data 512 9eec23851ccd108f57b2c18b37be628e
PAGE 12288 846d4c5afb273d594ed491ef32a48a27
INIT 2560 6d4bf5f911f0c4a0fd137e70bd0c9057
.rsrc 1024 54e1f1037e1df16f54cb7f6e34ed8d49
.reloc 1536 63903d2462a027e1f53f364ffa30e229

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for kprocesshacker.sys
copyright for information about kprocesshacker.sys