How to remove KMSAuto Net.exe

KMSAuto Net.exe

The module KMSAuto Net.exe has been detected as Trojan.Agent

KMSAuto Net.exe
Remove KMSAuto Net.exe

File Details

Product Name:

KMSAuto Net
Company Name:

MSfree Inc.
MD5: ae1b66643c50f81136b987d87f8ee89b
Size: 4 MB
First Published: 2017-05-22 11:18:33 (6 years ago)
Latest Published: 2020-12-07 15:55:57 (3 years ago)
Status: Trojan.Agent (on last analysis)
Analysis Date: 2020-12-07 15:55:57 (3 years ago)

Common Places:

%desktop%\activation
%commonappdata%\kmsauto
%commonappdata%\kmsautos
%temp%\oftemp
%temp%\nszc82.tmp
%sysdrive%\docume~1\belgam~1\locals~1\temp\nsh250.tmp
%sysdrive%\docume~1\belgam~1\locals~1\temp\oftemp
%windir%\system usb-flash 10\активатор\kmsautonet
%temp%\nswef0f.tmp
%temp%\nsu47d7.tmp

Geography:

45.3%
25.6%
3.8%
3.1%
2.8%
2.8%
2.8%
2.2%
2.2%
1.3%
0.9%
0.9%
0.6%
0.6%
0.6%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%

OS Version:

Windows 7 60.0%
Windows 10 19.1%
Windows 8.1 12.2%
Windows XP 4.7%
Windows 8 3.1%
Windows Server 2012 R2 0.9%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x004d439e

.NET Info:

MVID: 6b4ac013-90fd-4dac-97a7-74652e5cb23c
Typelib ID: fcad9796-cfc1-41fa-93da-378996c2a356

PE Sections:

Name Size of data MD5
.text 5055488 55025b349959f5d508a2db19e28a6c57
.rsrc 48640 6bb401ffa766bf0bb19a2343ebbeffd6
.reloc 512 2ca85343c6f55426dc9339b8348c38f3

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for KMSAuto Net.exe
copyright for information about KMSAuto Net.exe