How to remove kmseldi.exe
- File Details
- Overview
- Analysis
kmseldi.exe
The module kmseldi.exe has been detected as Suspicious Object
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
f0280de3880ef581bf14f9cc72ec1c16 |
| Size: |
921 KB |
| First Published: |
2017-05-21 06:07:21 (8 years ago) |
| Latest Published: |
2024-03-11 23:33:05 (a year ago) |
| Status: |
Suspicious Object (on last analysis) |
|
| Analysis Date: |
2024-03-11 23:33:05 (a year ago) |
Overview
| %programfiles%\kmspico |
| %desktop%\kmspico 10.2 final by gdaily\kmspico 10.2 final\kmspico portable |
| %temp%\rar$exa0.516\bkshare.com-kmspico 10.2.0\kmspico portable |
| %profile%\downloads\[phanmemaz.com].kmspico 10.2.0\kmspico portable |
| %appdata%\zhp\quarantine\kmspico portable\kmspico portable |
| %sysdrive%\activators\kmspico v10.2.0 portable |
| %mydoc%\kmspico portable |
| %desktop%\tool\kmspico portable v10.2.0 final\kmspico portable |
| %temp%\rar$exa0.027\[khukho.com]kmspico.v10.2.0.portable |
| %profile%\downloads\kmspico 10.2.0 final + portable (office and windows 10 activator) [techtools]\kmspico 10.2.0 final + portable (office and windows 10 activator) [techtools.net]\kmspico portable |
| KMSELDI.exe |
| kmseldi.exe |
| vKMSELDI.exe |
| KMSELDI (1).exe |
| KMSELDI (2017_09_11 13_07_55 UTC).exe |
| KMSELDI (2017_08_10 13_53_02 UTC).exe |
| KMSELDI.exe.quarantined |
| Happy.exe |
| KMSELDI(1).exe |
| Vietnam |
13.5% |
|
| Thailand |
12.1% |
|
| Spain |
9.0% |
|
| Turkey |
8.3% |
|
| Taiwan |
7.5% |
|
| France |
3.6% |
|
| Italy |
2.6% |
|
| United States |
2.6% |
|
| Brazil |
2.5% |
|
| Netherlands |
2.2% |
|
| Greece |
1.8% |
|
| Japan |
1.8% |
|
| Poland |
1.8% |
|
| Israel |
1.8% |
|
| United Kingdom |
1.7% |
|
| Mexico |
1.6% |
|
| Indonesia |
1.5% |
|
| Germany |
1.3% |
|
| Hungary |
1.2% |
|
| Argentina |
1.1% |
|
| Hong Kong |
1.1% |
|
| China |
1.0% |
|
| Czech Republic |
0.9% |
|
| Iran |
0.9% |
|
| South Korea |
0.9% |
|
| Peru |
0.9% |
|
| Australia |
0.8% |
|
| Serbia |
0.7% |
|
| Canada |
0.7% |
|
| Bulgaria |
0.7% |
|
| Saudi Arabia |
0.6% |
|
| Croatia |
0.6% |
|
| Algeria |
0.6% |
|
| Colombia |
0.6% |
|
| New Zealand |
0.6% |
|
| Nicaragua |
0.6% |
|
| Romania |
0.4% |
|
| Chile |
0.4% |
|
| Morocco |
0.4% |
|
| India |
0.4% |
|
| Austria |
0.3% |
|
| Philippines |
0.3% |
|
| South Africa |
0.3% |
|
| Slovakia |
0.2% |
|
| Ukraine |
0.2% |
|
| Russia |
0.2% |
|
| Portugal |
0.2% |
|
| Sweden |
0.2% |
|
| Qatar |
0.2% |
|
| Ecuador |
0.2% |
|
| Malaysia |
0.2% |
|
| Guatemala |
0.2% |
|
| Egypt |
0.2% |
|
| Venezuela |
0.2% |
|
| Bolivia |
0.2% |
|
| Bosnia and Herzegovina |
0.2% |
|
| Iraq |
0.2% |
|
| Denmark |
0.2% |
|
| Pakistan |
0.2% |
|
| Tunisia |
0.2% |
|
| Costa Rica |
0.1% |
|
| Mauritius |
0.1% |
|
| Tanzania |
0.1% |
|
| Armenia |
0.1% |
|
| Switzerland |
0.1% |
|
| Singapore |
0.1% |
|
| Mongolia |
0.1% |
|
| Bangladesh |
0.1% |
|
| Azerbaijan |
0.1% |
|
| Lithuania |
0.1% |
|
| Palestine |
0.1% |
|
| El Salvador |
0.1% |
|
| Uganda |
0.1% |
|
| Ireland |
0.1% |
|
| Norway |
0.1% |
|
| Belarus |
0.1% |
|
| Kuwait |
0.1% |
|
| Uruguay |
0.1% |
|
| Belgium |
0.1% |
|
| United Arab Emirates |
0.1% |
|
| Former Yugoslav Republic of Macedonia |
0.1% |
|
| Bahrain |
0.1% |
|
| Panama |
0.1% |
|
| Paraguay |
0.1% |
|
| Georgia |
0.1% |
|
| Burkina Faso |
0.1% |
|
| Cuba |
0.1% |
|
| Windows 10 |
69.5% |
|
| Windows 7 |
18.3% |
|
| Windows 8.1 |
10.5% |
|
| Windows 8 |
1.0% |
|
| Windows XP |
0.4% |
|
| Windows Embedded 8.1 |
0.2% |
|
| Windows Vista |
0.1% |
|
| Windows Server 2012 |
0.1% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000e1e8e |
| MVID: |
fb786781-bb6e-4788-b6fc-5c1e5cbbfad6 |
| Name |
Size of data |
MD5 |
| .text |
917504 |
170cafa364c3f012edc6cfc39114912f |
| .rsrc |
20992 |
aa3247d901ae5d369bee5a66ac3de307 |
| .reloc |
512 |
33dee5dbd9b3ae9b070060031d8fa474 |
