Should I block it?

90%
90% of PCs block this file from running.
Possible reason:
Multiple malware detections

VersionsAdditional versions

3246d 50.00%
6710a 50.00%
(Note, the developer publishes each variation of this file with the same version, but the hashes are unique.)

Relationships

PE structurePE file structure
Show functions
Import table
advapi32.dll
RegQueryValueExA, RegDeleteValueA, RegCloseKey, RegSetValueExA, RegCreateKeyExA, RegOpenKeyExA, RegSetValueExW, RegCreateKeyExW, RegQueryValueExW, RegDeleteValueW, RegOpenKeyExW
comctl32.dll
InitCommonControlsEx
comdlg32.dll
GetSaveFileNameA, GetOpenFileNameA, GetOpenFileNameW, GetSaveFileNameW
gdi32.dll
ExtTextOutA, SetBkColor, CreateCompatibleDC, BitBlt, DeleteDC, GetDeviceCaps, RemoveFontResourceA, AddFontResourceA, SetBkMode, CreateSolidBrush, GetObjectA, CreateFontIndirectA, EnumFontFamiliesExA, SelectObject, Rectangle, GetTextExtentPoint32A, SetTextColor, GetStockObject, DeleteObject, ExtTextOutW, GetObjectW, CreateFontIndirectW, EnumFontFamiliesExW, GetTextExtentPoint32W
kernel32.dll
GetFileAttributesA, MultiByteToWideChar, GetVersionExA, GetModuleFileNameA, SetEnvironmentVariableA, CompareStringW, CompareStringA, ReadFile, SetEndOfFile, GetSystemTimeAsFileTime, GetCurrentProcessId, GetTickCount, QueryPerformanceCounter, CreateFileA, FlushFileBuffers, InitializeCriticalSection, InterlockedExchange, SetFilePointer, VirtualQuery, GetSystemInfo, VirtualProtect, GetStringTypeW, GetStringTypeA, GetLocaleInfoA, IsBadCodePtr, IsBadReadPtr, SetUnhandledExceptionFilter, SetStdHandle, CloseHandle, IsBadWritePtr, VirtualAlloc, VirtualFree, HeapCreate, HeapDestroy, DeleteCriticalSection, GetFileType, SetHandleCount, GetEnvironmentStringsW, FreeEnvironmentStringsW, GetEnvironmentStrings, FreeEnvironmentStringsA, UnhandledExceptionFilter, GetStdHandle, WriteFile, GetCPInfo, GetOEMCP, GetACP, HeapSize, GetCurrentProcess, TerminateProcess, ExitProcess, HeapAlloc, HeapReAlloc, LCMapStringW, LCMapStringA, TlsGetValue, TlsSetValue, TlsFree, GetCurrentThreadId, SetLastError, TlsAlloc, LeaveCriticalSection, EnterCriticalSection, HeapFree, DeleteFileA, MoveFileA, GetLastError, GetCommandLineA, GetStartupInfoA, GetModuleHandleA, RtlUnwind, MulDiv, GlobalFree, GlobalReAlloc, GlobalUnlock, GlobalAlloc, GetProcAddress, FreeLibrary, LoadLibraryA, WideCharToMultiByte, GlobalSize, GlobalLock, LoadLibraryW, GetModuleFileNameW, GetVersionExW
shell32.dll
ShellExecuteA, ShellExecuteW
ukhook40.dll
VnFileConvert, VnConvert
user32.dll
GetMenuDefaultItem, ReleaseDC, GetWindow, DestroyCursor, SendDlgItemMessageA, EndDialog, CreateDialogParamA, DialogBoxParamA, CreateWindowExA, SetMenuDefaultItem, CheckMenuItem, GetClipboardOwner, OpenClipboard, CloseClipboard, RegisterClipboardFormatA, IsClipboardFormatAvailable, GetClipboardData, EmptyClipboard, SetClipboardData, GetSystemMetrics, TrackPopupMenu, DestroyMenu, LoadMenuA, LoadBitmapA, GetMenuItemInfoA, GetMenuItemCount, GetMenuItemID, GetMenuState, GetSubMenu, GetMenuStringA, ModifyMenuA, FindWindowA, MessageBeep, GetMessageA, IsWindow, IsDialogMessageA, TranslateMessage, DispatchMessageA, UnhookWindowsHookEx, PostQuitMessage, RegisterWindowMessageA, GetCursorPos, SetForegroundWindow, PostMessageA, SendMessageA, SetWindowsHookExA, LoadIconA, UpdateWindow, WinHelpA, BringWindowToTop, RegisterClassExA, SetCursor, GetSysColor, SetFocus, MessageBoxA, GetSystemMenu, LoadStringA, AppendMenuA, GetFocus, GetDlgCtrlID, DestroyWindow, EnableWindow, GetDesktopWindow, GetWindowRect, SetWindowPos, IntersectRect, IsWindowVisible, ScreenToClient, ShowWindow, SetWindowTextA, CallWindowProcA, InflateRect, DrawFrameControl, GetWindowTextA, DrawStateA, DrawFocusRect, GetClientRect, DestroyIcon, InvalidateRect, SetWindowLongA, DefWindowProcA, GetWindowLongA, GetDlgItem, LoadImageA, GetDC, GetTopWindow, CreateWindowExW, DialogBoxParamW, RegisterClipboardFormatW, LoadMenuW, LoadBitmapW, GetMenuItemInfoW, CreateDialogParamW, GetMenuStringW, ModifyMenuW, FindWindowW, GetMessageW, IsDialogMessageW, DispatchMessageW, RegisterWindowMessageW, PostMessageW, SetWindowsHookExW, LoadIconW, RegisterClassExW, MessageBoxW, LoadStringW, AppendMenuW, SetWindowTextW, CallWindowProcW, GetWindowTextW, DrawStateW, SetWindowLongW, DefWindowProcW, GetWindowLongW, LoadImageW, SendMessageW, SendDlgItemMessageW

unikey.exe

Remove unikey.exe
MD5:   3246d74d15fcf3d3da7bb58fad497321
SHA1:   72d5fe36502611cc1f37625a58540122bc4d3401
SHA256:   43db554d9f75bbf012035232ca21869c02a98fcee8c1564c5afbda496e9c0ba5
Warning 9 antivirus scanners has detected malware.

Overview

unikey.exe is malware that executes as a process with the local user's privileges usually within the context of Windows Explorer. It is set to be run when the PC boots and the user logs into Windows (added to the Run registry key for the current user). It is installed with a couple of know programs including UniKey 4.0 published by Pham Kim Long and UniKey 4.0 RC2 (build 1101) published by Pham Kim Long.

DetailsDetails

File name:unikey.exe
Typical file path:C:\app. software\unikey 4.0\unikey.exe
Size:204 KB (208,896 bytes)
Build date:4/19/2006 6:55 AM
Digital DNA
PE subsystem:Windows GUI
File packed:No
.NET CLR:No
More details

ResourcesPrograms

The following programs will install this file
UniKey
 Pham Kim Long
39% remove
UniKey RC2 build 1101
 Pham Kim Long
5% remove

BehaviorsBehaviors

Startup files (user) run
Runs under the registry key 'HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'UniKey' → C:\APP. SOFTWARE\UniKey 4.0\UniKey.exe

MalwareMalware detections

Based on 40+ industry antivirus scanners, 9 of them detected the following malware.
Antivirus engineEngine versionDetection
Bkav Security 1.3.0.4246 HW32.Laneul.nqow
Commtouch 5.4.1.7 W32/Risk.OBKO-8852
F-Prot v6.4.7.1.166 W32/MalwareS.ARDS
K7 AntiVirus 9.173.9807 Riskware
NANO AntiVirus 0.26.0.55366 Trojan.Win32.XPACK.vpulz
Norman 7.02.06 Suspicious_Gen4.BWPBX
nProtect 2013-10-08.04 Trojan/W32.Genome.208896.L
Rising Antivirus 24.83.00.04 Trojan.Win32.Generic.14BD1719
ViRobot 2011.4.7.4223 Trojan.Win32.Genome.229376

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00036092%
0.028634%
Kernel CPU:0.00025827%
0.013761%
User CPU:0.00010265%
0.014873%
Kernel CPU time:78 ms/min
100,923,805ms/min
CPU cycles:2,853/sec
17,470,203/sec
Memory
Private memory:2.15 MB
21.59 MB
Private (maximum):5.02 MB
Private (minimum):3.45 MB
Non-paged memory:2.15 MB
21.59 MB
Virtual memory:49.12 MB
140.96 MB
Virtual memory (peak):49.31 MB
169.69 MB
Working set:4.05 MB
18.61 MB
Working set (peak):5.02 MB
37.95 MB
Page faults:2,111/min
2,039/min
I/O
I/O read transfer:7 Bytes/sec
1.02 MB/min
I/O read operations:1/sec
343/min
I/O other transfer:5 Bytes/sec
448.09 KB/min
I/O other operations:1/sec
1,671/min
Resource allocations
Threads:1
12
Handles:70
600
GUI GDI count:19
103
GUI GDI peak:21
142
GUI USER count:13
49
GUI USER peak:13
71

BehaviorsProcess properties

Integrety level:Medium
Platform:32-bit
Command line:"C:\app. software\unikey 4.0\unikey.exe"
Owner:User
Parent process:explorer.exe (Windows Explorer by Microsoft Corporation)

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Microsoft Windows XP 50.00%
Windows 7 Ultimate 50.00%

Distribution by countryDistribution by country

Vietnam installs about 100.00% of unikey.exe.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
GIGABYTE 100.00%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE