How to remove KMSELDI.exe

KMSELDI.exe

The module KMSELDI.exe has been detected as Hack.KMS

KMSELDI.exe
Remove KMSELDI.exe

File Details

Product Name:

KMS GUI ELDI
Company Name:

@ByELDI
MD5: 9ed5cd0d3aa2837ba3fc6fcc712dfb92
Size: 1 MB
First Published: 2017-06-14 06:07:02 (8 years ago)
Latest Published: 2022-06-04 23:29:48 (3 years ago)
Status: Hack.KMS (on last analysis)
Analysis Date: 2022-06-04 23:29:48 (3 years ago)

Common Places:

%temp%\kmsnano
%temp%

Geography:

50.0%
50.0%

OS Version:

Windows 8.1 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000d69ce

.NET Info:

MVID: d1265450-85a8-4a5b-b421-a2bacc81cb00
Typelib ID: 863d9135-9365-4bee-95bf-0d83ded34d9f

PE Sections:

Name Size of data MD5
.text 870912 8fee3f2c21ba679809640812fd01876d
.sdata 512 76b6e0b16497e4b4c546f2a231874d2f
.rsrc 374272 5dcef2d4bbd48a604c7e0aac717992e4
.reloc 512 48e1a04826698e6f117573ae9020ab05

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for KMSELDI.exe
copyright for information about KMSELDI.exe