How to remove Patch.exe
Patch.exe
The module Patch.exe has been detected as Hack.AutoKMS
File Details
| Product Name: | KMSnano |
| Company Name: | ByELDI |
| MD5: | 1d4629c9f06925cbde43c72e09ccf7bd |
| Size: | 1 MB |
| First Published: | 2017-11-10 00:02:08 (7 years ago) |
| Latest Published: | 2021-01-01 10:37:19 (4 years ago) |
| Status: | Hack.AutoKMS (on last analysis) | |
| Analysis Date: | 2021-01-01 10:37:19 (4 years ago) |
Common Places:
| %appdata%\idm\microsoft office professional plus 2013 activators\1. kms pico v3.3 |
| %sysdrive%\tj\microsoft office 2013 32 and 64 bit with windows activator\microsoft office 2013\32-bit |
| %sysdrive%\tj\microsoft office 2013 32 and 64 bit with windows activator\microsoft office 2013\64-bit |
| %programfiles%\microsoft office word pro plus 2013\activator\microsoft office professional plus 2013 activators\microsoft office professional plus 2013 activators |
| %sysdrive%\office 2013\microsoft office professional plus 2013 activators |
| %sysdrive%\برامج\برامج\microsoft office professional plus 2010 |
File Names:
| Setup.exe |
| Patch.exe |
Geography:
| 28.6% | ||
| 28.6% | ||
| 14.3% | ||
| 14.3% | ||
| 14.3% |
OS Version:
| Windows 10 | 42.9% | |
| Windows Server 2008 R2 | 28.6% | |
| Windows 8.1 | 14.3% | |
| Windows 7 | 14.3% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x000168cf |
PE Sections:
| Name | Size of data | MD5 |
| .text | 90624 | 4794b31aa8ab9b337e775f7340a2271d |
| .rdata | 14336 | 4db2dba763a9460e4543f48d7929b457 |
| .data | 2048 | 948353a21f43eb6ad7b646bc00bb4688 |
| .rsrc | 372224 | 96640076b64aa94fe35c30a0dd7032ec |
More information:
Download GridinSoft
Anti-Malware - Removal tool for Patch.exe
