How to remove KMSELDI.exe

KMSELDI.exe

The module KMSELDI.exe has been detected as Crack.AutoKMS

KMSELDI.exe
Remove KMSELDI.exe

File Details

Product Name:

KMS GUI ELDI
Company Name:

@ByELDI
MD5: edb81ac820fcf2b453b14877d15b661a
Size: 899 KB
First Published: 2017-05-21 07:09:01 (6 years ago)
Latest Published: 2022-06-04 23:32:01 (2 years ago)
Status: Crack.AutoKMS (on last analysis)
Analysis Date: 2022-06-04 23:32:01 (2 years ago)

Overview

Signed By: @ByELDI
Status: Valid

Common Places:

%programfiles%\kmspico
%sysdrive%\system volume information\systemrestore\frstaging\program files\kmspico
%programfiles%
%sysdrive%
%sysdrive%\windows.old\program files
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%

Geography:

16.9%
16.0%
9.6%
7.6%
5.5%
5.2%
4.4%
4.1%
3.8%
2.3%
2.0%
2.0%
1.7%
1.7%
1.5%
1.2%
1.2%
1.2%
0.9%
0.9%
0.9%
0.9%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%

OS Version:

Windows 10 69.5%
Windows 7 20.2%
Windows 8.1 9.4%
Windows 8 0.6%
Windows Server 2012 R2 0.3%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000dc46e

.NET Info:

MVID: a2a12777-8fd8-449d-b457-128c08622698

PE Sections:

Name Size of data MD5
.text 894464 c6bc35d9218c95612cc9159a10b9552e
.rsrc 20992 3eac120860655210abcd86559d082e75
.reloc 512 ef7f7adb8016651c42042a4d0f012841

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for KMSELDI.exe
copyright for information about KMSELDI.exe