How to remove KMSELDI.exe

» File
File Details
Overview
Analysis

KMSELDI.exe

The module KMSELDI.exe has been detected as Hack.KMS

KMSELDI.exe

Remove KMSELDI.exe

File Details

Main Info:

Product Name:	KMS GUI ELDI
MD5:	7268addfe8866f30e2aaf8ff6bcefc0d
Size:	728 KB
First Published:	2018-03-29 10:12:29 (7 years ago)
Latest Published:	2022-07-23 23:20:37 (3 years ago)

Analysis:

Status:	Hack.KMS (on last analysis)
Analysis Date:	2022-07-23 23:20:37 (3 years ago)

Common Places:

%programfiles%

%programfiles%

%programfiles%

%programfiles%

Geography:

	50.0%
	16.7%
	16.7%
	16.7%

OS Version:

Windows 7	66.7%
Windows 8	16.7%
Windows 8.1	16.7%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000b251e

.NET Info:

MVID:	41cf58a6-9a82-427c-a7de-ba49f40eb900
Typelib ID:	863d9135-9365-4bee-95bf-0d83ded34d9f

PE Sections:

Name	Size of data	MD5
.text	722432	a7737b6646269e584165fcbffcd74e49
.sdata	512	10e87900a0e404dc847d04164c35980c
.rsrc	20992	7533531c07068e776bdf2d01a39a0a45
.reloc	512	60cb70b905693e549a624fae2774842c

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for KMSELDI.exe

copyright for information about KMSELDI.exe