How to remove service_kms.exe

service_kms.exe

The module service_kms.exe has been detected as Crack.AutoKMS

service_kms.exe
Remove service_kms.exe

File Details

Product Name:

Service_KMS
Company Name:

@ByELDI
MD5: cc2e0177cb3c17d67c4e2342e0bcd5e5
Size: 717 KB
First Published: 2017-05-21 07:08:39 (8 years ago)
Latest Published: 2022-12-29 23:14:01 (2 years ago)
Status: Crack.AutoKMS (on last analysis)
Analysis Date: 2022-12-29 23:14:01 (2 years ago)

Overview

Signed By: @ByELDI
Status: Valid

Common Places:

%programfiles%\kmspico
%sysdrive%\system volume information\systemrestore\frstaging\program files\kmspico
%programfiles%
%sysdrive%\$recycle.bin\s-1-5-21-770298753-76689684-351536536-1000
%desktop%
%sysdrive%\windows.old\program files
%programfiles%
%programfiles%
%programfiles%
%programfiles%

File Names:

Service_KMS.exe
service_kms.exe

Geography:

22.5%
15.9%
12.3%
9.8%
6.6%
4.0%
2.8%
2.7%
2.7%
1.7%
1.7%
1.5%
1.3%
1.1%
0.9%
0.9%
0.9%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%

OS Version:

Windows 10 65.3%
Windows 7 26.7%
Windows 8.1 7.1%
Windows 8 0.7%
Windows Server 2012 R2 0.2%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000b312e

.NET Info:

MVID: 5f144f3b-e574-49b1-9558-5a28ee1597e3

PE Sections:

Name Size of data MD5
.text 725504 672d6d236ad1f1270131b7ab3a50546a
.rsrc 4096 a80f22215d1ee06ce66b99b050b3f794
.reloc 512 6f3fb6dd4d47116c4b63b734587360fa

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for service_kms.exe
copyright for information about service_kms.exe