home

SystemkService.exe

Systemk Service

Aztec Media Inc

The application SystemkService.exe has been detected as adware by 4 anti-malware scanners. It runs as a windows Service named “Systemk Service”.
Publisher:
Aztec Media Inc

Product:
Systemk Service

Version:
5.0.0.12791

MD5:
e79fa80becc1ea73a1f11041db3f55bc

SHA-1:
1fb9f9d931d2258c2fa23e45b107efb680e341b0

SHA-256:
95af6e20ca6d681248aaa9dc9400755bf950b8dc2080ec29b38a06f909502c24

Scanner detections:
4 / 68

Status:
Adware

Analysis date:
4/26/2024 4:06:35 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Trash.Gen
7.11.30.172

avast!
Win32:Adware-BWF [PUP]
2014.9-140829

Reason Heuristics
PUP.AztecMedia.O
14.8.29.12

SUPERAntiSpyware
Trojan.Agent/Gen-Nullo[Short]
10392

File size:
3.4 MB (3,543,056 bytes)

Product version:
5.0.0.12791

Copyright:
Copyright (c) 2005 - 2014

Original file name:
SystemkService.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\settings manager\systemk\systemkservice.exe

File PE Metadata
Compilation timestamp:
5/25/2014 4:47:07 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
49152:W74nx6bLBbNS/icrfio4rlcegqc37czRBbrDgw8LsoGLWIhbxS2OJarK4jAyJdTd:72tAlf8oqcLczRBb/Z8LsoGLoxnA

Entry address:
0x147B24

Entry point:
E8, B4, AF, 00, 00, E9, 89, FE, FF, FF, 6A, 10, 68, B0, 93, 6E, 00, E8, B6, 84, 00, 00, 33, C0, 89, 45, E0, 89, 45, FC, 89, 45, E4, 8B, 45, E4, 3B, 45, 10, 7D, 13, 8B, 75, 08, 8B, CE, FF, 55, 14, 03, 75, 0C, 89, 75, 08, FF, 45, E4, EB, E5, C7, 45, E0, 01, 00, 00, 00, C7, 45, FC, FE, FF, FF, FF, E8, 08, 00, 00, 00, E8, BD, 84, 00, 00, C2, 14, 00, 83, 7D, E0, 00, 75, 11, FF, 75, 18, FF, 75, E4, FF, 75, 0C, FF, 75, 08, E8, 4D, F8, FF, FF, C3, 8B, FF, 55, 8B, EC, 83, EC, 20, 53, 57, 33, DB, 6A, 07, 33, C0, 59...
 
[+]

Code size:
2.7 MB (2,807,296 bytes)

Service
Display name:
Systemk Service

Service name:
SystemkService

Description:
Serving SystemK modules functionality

Type:
Win32OwnProcess, InteractiveProcess


Remove SystemkService.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.