How to remove KMSELDI.exe

» File
File Details
Overview
Analysis

KMSELDI.exe

The module KMSELDI.exe has been detected as Crack.AutoKMS

Remove KMSELDI.exe

File Details

Main Info:

Product Name:	KMS GUI ELDI
Company Name:	@ByELDI
MD5:	edb81ac820fcf2b453b14877d15b661a
Size:	899 KB
First Published:	2017-05-21 07:09:01 (8 years ago)
Latest Published:	2024-09-07 23:01:52 (a year ago)

Analysis:

Status:	Crack.AutoKMS (on last analysis)
Analysis Date:	2024-09-07 23:01:52 (a year ago)

Overview

Digital Signature

Signed By:	@ByELDI
Status:	Valid

Common Places:

%programfiles%\kmspico

%sysdrive%\system volume information\systemrestore\frstaging\program files\kmspico

%programfiles%

%sysdrive%

%sysdrive%\windows.old\program files

%programfiles%

Geography:

	16.8%
	15.9%
	9.6%
	7.5%
	5.5%
	5.2%
	4.3%
	4.1%
	3.8%
	2.3%
	2.0%
	2.0%
	1.7%
	1.7%
	1.4%
	1.2%
	1.2%
	1.2%
	0.9%
	0.9%
	0.9%
	0.9%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.6%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%
	0.3%

OS Version:

Windows 10	69.3%
Windows 7	20.5%
Windows 8.1	9.4%
Windows 8	0.6%
Windows Server 2012 R2	0.3%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000dc46e

.NET Info:

MVID:

a2a12777-8fd8-449d-b457-128c08622698

PE Sections:

Name	Size of data	MD5
.text	894464	c6bc35d9218c95612cc9159a10b9552e
.rsrc	20992	3eac120860655210abcd86559d082e75
.reloc	512	ef7f7adb8016651c42042a4d0f012841

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for KMSELDI.exe

copyright for information about KMSELDI.exe