How to remove KMSSS.EXE

KMSSS.EXE

The module KMSSS.EXE has been detected as PUP.HackKMS

KMSSS.EXE
Remove KMSSS.EXE

File Details

Product Name:

KMS Server Emulator Service (XP)
Company Name:

MDL Forum, mod by Ratiborus
MD5: 074adce00aa8c1a705a28f82f9b8781e
Size: 270 KB
First Published: 2017-05-22 11:11:41 (8 years ago)
Latest Published: 2021-02-09 16:51:19 (4 years ago)
Status: PUP.HackKMS (on last analysis)
Analysis Date: 2021-02-09 16:51:19 (4 years ago)

Common Places:

%commonappdata%\kmsauto\bin
%commonappdata%\kmsautos\bin
%desktop%\мои файлы\проги\activator\bin
%sysdrive%\activator\bin
%desktop%\activator\bin
%commonappdata%\kmsautos
%mydoc%\activator
%desktop%\activator
%commonappdata%\kmsauto
%commonappdata%\mslicense\kms

File Names:

KMSSS.exe
KMSSS.EXE

Geography:

29.4%
10.7%
7.3%
4.5%
4.0%
4.0%
2.8%
2.8%
2.8%
2.3%
1.7%
1.7%
1.7%
1.7%
1.7%
1.7%
1.7%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%

OS Version:

Windows 8.1 39.0%
Windows 10 32.8%
Windows 7 24.3%
Windows Embedded 8.1 4.0%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00014836

PE Sections:

Name Size of data MD5
.text 184320 e6e296a5bfad8fc63c5658a65a4a9cd2
.rdata 68608 6e9479e6ab1b3541ca20f535815e86b7
.data 7680 270d374c059ea82fb1eb658595b9d6ac
.rsrc 1536 a280babd163875692e6eaeeb51eae109
.reloc 13312 cfe83507219f26e55b4fefca8d998be0

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for KMSSS.EXE
copyright for information about KMSSS.EXE