How to remove KMS-QADhook.dll.quarantined

KMS-QADhook.dll.quarantined

The module KMS-QADhook.dll.quarantined has been detected as Trojan.Agent

KMS-QADhook.dll.quarantined
Remove KMS-QADhook.dll.quar

File Details

MD5: 5ea8636b43e5fcc51bebe9a121ecb485
Size: 3 KB
First Published: 2017-05-21 11:05:01 (8 years ago)
Latest Published: 2025-04-23 23:01:11 (7 months ago)
Status: Trojan.Agent (on last analysis)
Analysis Date: 2025-04-23 23:01:11 (7 months ago)

Common Places:

%sysdrive%\windows
%desktop%\recuper\windows
%sysdrive%\windows.old\windows
%windir%
%sysdrive%\$windows.~bt\newos
%sysdrive%\system volume information\systemrestore\frstaging
%sysdrive%\backup c\c
%desktop%\testdisk-7.1-wip
%sysdrive%\system recovery\repair
%sysdrive%\windows.old.000

File Names:

KMS-QADhook.dll
KMS-QADhook.dll.quarantined
kms-qadhook.dll
KMS-QADHOOK.DLL
f195402544.dll
f213298336.dll
ACBA5A62C5A48FBB9073F151A5F3790D93B32E85.dll
$R72FM0S.dll

Geography:

55.6%
6.6%
5.2%
4.8%
4.4%
4.0%
3.8%
1.6%
1.0%
1.0%
0.9%
0.7%
0.6%
0.6%
0.5%
0.5%
0.5%
0.5%
0.5%
0.4%
0.4%
0.4%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 10 77.8%
Windows 7 16.8%
Windows 8.1 4.3%
Windows 8 0.5%
Windows Server 2012 R2 0.3%
Windows Vista 0.2%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000180000000
Entry Address: 0x000010c4

PE Sections:

Name Size of data MD5
.text 1024 ac9f971d8157513bfaf10bece5d07221
.rdata 1024 35205770f1747923b74fcfde72a774c1
.data 0 00000000000000000000000000000000
.pdata 512 ce59a37ca8971bfc6b6f269527bb7ae8

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for KMS-QADhook.dll.quarantined
copyright for information about KMS-QADhook.dll.quarantined