Theme

Welcome · log in · join	food

	All Forums		Hot Topics		Gallery

Search similar:

Forums → Software and Operating Systems →

Security → C:\Windows\AutoKMS.exe a real threat?

uniqs
140412

« Auto update fo MSE • Is Spokeo.com a 'Threat' to Internet Privacy/CyberSecurity? »

cerdan join:2008-01-02	cerdan Member 2011-Jan-5 9:25 pm C:\Windows\AutoKMS.exe a real threat? Malwarebytes found the file and said it's a threat. Ran the file through Jotti's and 7 out of 19 scanners said it's a threat. Any thoughts? Thanks!
	actions · 2011-Jan-5 9:25 pm ·
trparky Premium Member join:2000-05-24 Cleveland, OH 1 recommendation	trparky Premium Member 2011-Jan-5 9:32 pm From a quick Google search I'd say... REMOVE IT!
	actions · 2011-Jan-5 9:32 pm ·
Name Game Premium Member join:2002-07-07 Grand Rapids, MI	Name Game to cerdan Premium Member 2011-Jan-5 9:36 pm to cerdan YUp..remove it then scan your PC again with malwarebytes. Most likely your's is this one.. File Name : AutoKMS.exe File Size : 416522 byte File Type : PE32 executable for MS Windows (GUI) Intel 80386 32-bit MD5 : cad828e8083941389e86f5b791b9031d SHA1 : 6d215f0b8d8cd77007947c447f58a952b931ed45 See also »forums.mydigitallife.inf ··· ./page68
	actions · 2011-Jan-5 9:36 pm ·
cerdan join:2008-01-02	cerdan Member 2011-Jan-5 10:19 pm I have this: Filename: AutoKMS.exe File size: 446258 bytes Filetype: PE32 executable for MS Windows (GUI) Intel 80386 32-bit MD5: a351f99236a011d4027886215b843317 SHA1: 03cac73f60187df5fef3aa71414e3221d65c1892 Packer (Drweb): UPX Packer (Kaspersky): PE_Patch.Upolyx, UPX
	actions · 2011-Jan-5 10:19 pm ·
cerdan	cerdan Member 2011-Jan-6 1:20 am I cleaned it up, rebooted and then rescan. Malwarebytes found 2 more. Are these false alarms? Filename: Msvcrt.dll File size: 116224 bytes Filetype: PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit MD5: b0733802ac603fd955259f42fcb24207 SHA1: a966bf7962f7874ea9892ee9bb9ed334c54276b7 Packer (Drweb): UPX Packer (Kaspersky): UPX Filename: Shfolder.dll File size: 11776 bytes Filetype: PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit MD5: 30a64194e2e4aa356803bc0686aa5463 SHA1: dcb76a28fdcb7a3d88c0e609359d23e6e351acce Packer (Drweb): UPX Packer (Kaspersky): UPX
	actions · 2011-Jan-6 1:20 am ·
dandelion MVM join:2003-04-29 Germantown, TN	dandelion to cerdan MVM 2011-Jan-6 8:08 am to cerdan It wouldn't hurt at all just to make sure no other problems with your computer to go through these steps, then post in the forum for further advise. »Security Cleanup FAQ »Mandatory Steps Before Requesting Assistance
	actions · 2011-Jan-6 8:08 am ·
autokms @arcor-ip.net	autokms to cerdan Anon 2011-Jan-19 2:01 pm to cerdan This is an Office activation crack. All of the viruses report it as a keygen - it's "antipiracy" detection, not malware detection. That's AVs doing the dirty work for Microsoft - that's not security protection. That's why it's detected as a hacktool/keygen and not as a malware (from the horse's mouth).
	actions · 2011-Jan-19 2:01 pm ·

19579823 (banned) An Awesome Dude join:2003-08-04	19579823 (banned) to cerdan Member 2011-Jan-19 8:50 pm to cerdan Filename: Msvcrt.dll (280k) Filename: Shfolder.dll (22k) Those are valid system files! (I have both) I dont know what would happen if ya remove them!
	actions · 2011-Jan-19 8:50 pm ·

Forums → Software and Operating Systems → Security	« Auto update fo MSE • Is Spokeo.com a 'Threat' to Internet Privacy/CyberSecurity? »