How to remove KMSELDI.exe

» File
File Details
Overview
Analysis

KMSELDI.exe

The module KMSELDI.exe has been detected as General Threat

KMSELDI.exe

Remove KMSELDI.exe

File Details

Main Info:

Product Name:	KMS GUI ELDI
MD5:	5c409fed8c40986ba7fe1eb66189b41e
Size:	799 KB
First Published:	2017-05-28 19:05:44 (7 years ago)
Latest Published:	2024-08-29 23:01:37 (9 months ago)

Analysis:

Status:	General Threat (on last analysis)
Analysis Date:	2024-08-29 23:01:37 (9 months ago)

Common Places:

%programfiles%\kmspico

%programfiles%

%sysdrive%

%sysdrive%\juju-pc\backup set 2018-02-20 040002\backup files 2018-02-20 040002\backup files 13.zip\c\program files

%programfiles%

%programfiles%

%programfiles%

%programfiles%

%programfiles%

%programfiles%

Geography:

Vietnam	22.9%
Algeria	8.3%
Indonesia	7.6%
South Korea	5.6%
Iran	5.6%
Taiwan	5.6%
Turkey	4.2%
Hungary	4.2%
Egypt	2.8%
United Kingdom	2.8%
Iraq	2.1%
Saudi Arabia	2.1%
Colombia	2.1%
Brazil	2.1%
Mexico	2.1%
Italy	1.4%
France	1.4%
Sri Lanka	1.4%
Australia	1.4%
Thailand	1.4%
Malaysia	1.4%
Ecuador	1.4%
Romania	0.7%
China	0.7%
Morocco	0.7%
Palestine	0.7%
Russia	0.7%
Dominican Republic	0.7%
Greece	0.7%
Argentina	0.7%
Peru	0.7%
Jordan	0.7%
Philippines	0.7%
Slovakia	0.7%
Libya	0.7%
Kuwait	0.7%
Syria	0.7%

OS Version:

Windows 7	34.5%
Windows 8.1	33.1%
Windows 10	27.0%
Windows 8	4.1%
Windows Server 2012 R2	1.4%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000c416e

.NET Info:

MVID:	770875ae-f721-4cb0-9dc2-f9dfd5a132db
Typelib ID:	863d9135-9365-4bee-95bf-0d83ded34d9f

PE Sections:

Name	Size of data	MD5
.text	795136	b4cef69d5b5d4a800c34ca5acad9ca10
.sdata	512	4ca1cf1115973ecafc248917b652a5c9
.rsrc	20992	20bb07dbf133939ca9bc7b2fdc5bfbd9
.reloc	512	55d3df0fb0497010a302c4ce7e7d810b

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for KMSELDI.exe

copyright for information about KMSELDI.exe