How to remove KMSELDI.exe

KMSELDI.exe

The module KMSELDI.exe has been detected as General Threat

KMSELDI.exe
Remove KMSELDI.exe

File Details

Product Name:

KMS GUI ELDI
MD5: 5c409fed8c40986ba7fe1eb66189b41e
Size: 799 KB
First Published: 2017-05-28 19:05:44 (7 years ago)
Latest Published: 2024-08-29 23:01:37 (6 months ago)
Status: General Threat (on last analysis)
Analysis Date: 2024-08-29 23:01:37 (6 months ago)

Common Places:

%programfiles%\kmspico
%programfiles%
%sysdrive%
%sysdrive%\juju-pc\backup set 2018-02-20 040002\backup files 2018-02-20 040002\backup files 13.zip\c\program files
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%

Geography:

22.9%
8.3%
7.6%
5.6%
5.6%
5.6%
4.2%
4.2%
2.8%
2.8%
2.1%
2.1%
2.1%
2.1%
2.1%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%

OS Version:

Windows 7 34.5%
Windows 8.1 33.1%
Windows 10 27.0%
Windows 8 4.1%
Windows Server 2012 R2 1.4%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000c416e

.NET Info:

MVID: 770875ae-f721-4cb0-9dc2-f9dfd5a132db
Typelib ID: 863d9135-9365-4bee-95bf-0d83ded34d9f

PE Sections:

Name Size of data MD5
.text 795136 b4cef69d5b5d4a800c34ca5acad9ca10
.sdata 512 4ca1cf1115973ecafc248917b652a5c9
.rsrc 20992 20bb07dbf133939ca9bc7b2fdc5bfbd9
.reloc 512 55d3df0fb0497010a302c4ce7e7d810b

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for KMSELDI.exe
copyright for information about KMSELDI.exe