How to remove KMSSS.exe
KMSSS.exe
The module KMSSS.exe has been detected as Trojan.Agent
File Details
| Product Name: | KMS Server Emulator Service (XP) |
| Company Name: | MDL Forum, mod by Ratiborus |
| MD5: | 144cf3238e59f210646bdc6dd2ba631f |
| Size: | 296 KB |
| First Published: | 2017-05-21 21:04:55 (8 years ago) |
| Latest Published: | 2022-02-02 21:33:29 (3 years ago) |
| Status: | Trojan.Agent (on last analysis) | |
| Analysis Date: | 2022-02-02 21:33:29 (3 years ago) |
Common Places:
| %commonappdata%\kmsautos\bin |
| %commonappdata%\kmsauto\bin |
| %appdata%\zhp\quarantine |
| %commonappdata%\kmsautos |
| %commonappdata%\kmsauto |
| %commonappdata%\kmsautos |
| %commonappdata%\kmsautos |
| %commonappdata%\kmsautos |
| %commonappdata%\kmsautos |
| %commonappdata%\kmsauto |
Geography:
| 28.1% | ||
| 16.3% | ||
| 6.7% | ||
| 5.9% | ||
| 3.7% | ||
| 3.0% | ||
| 3.0% | ||
| 2.2% | ||
| 2.2% | ||
| 2.2% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% | ||
| 0.7% |
OS Version:
| Windows 7 | 45.3% | |
| Windows 8.1 | 25.2% | |
| Windows 10 | 23.7% | |
| Windows Embedded 8.1 | 1.4% | |
| Windows Server 2008 R2 | 1.4% | |
| Windows 8 | 1.4% | |
| Windows Vista | 0.7% | |
| Windows XP | 0.7% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x000190a4 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 207360 | 730c3f059939073b960d1f3b6efb917a |
| .rdata | 70656 | 7717224bd0b60b92631fcd6151cd40ad |
| .data | 8704 | e1190a8b076a8d320c8601999534de0a |
| .rsrc | 1536 | d795f66e4f895c70e4da0f118365e8e3 |
| .reloc | 14336 | 2a8f534958bd10e0eba70c5dd06fdba9 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for KMSSS.exe
