How to remove idman.exe
idman.exe
The module idman.exe has been detected as Trojan.Presenoker
File Details
| Product Name: | Internet Download Manager (IDM) |
| Company Name: | Tonec Inc. |
| MD5: | 53e80cbd4c740d85b8262023d49e80e6 |
| Size: | 3 MB |
| First Published: | 2019-10-29 19:02:05 (6 years ago) |
| Latest Published: | 2021-11-10 21:19:32 (4 years ago) |
| Status: | Trojan.Presenoker (on last analysis) | |
| Analysis Date: | 2021-11-10 21:19:32 (4 years ago) |
Overview
| Signed By: | Tonec Inc. |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
Geography:
| 30.0% | ||
| 9.1% | ||
| 9.1% | ||
| 5.5% | ||
| 4.5% | ||
| 4.5% | ||
| 4.5% | ||
| 3.6% | ||
| 3.6% | ||
| 2.7% | ||
| 2.7% | ||
| 2.7% | ||
| 2.7% | ||
| 2.7% | ||
| 2.7% | ||
| 2.7% | ||
| 2.7% | ||
| 1.8% | ||
| 0.9% | ||
| 0.9% |
OS Version:
| Windows 10 | 70.3% | |
| Windows 7 | 27.1% | |
| Windows 8 | 2.5% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00209e7f |
PE Sections:
| Name | Size of data | MD5 |
| .text | 2433024 | 009d35d3601344c26f1d64557eaced79 |
| .rdata | 462848 | 7de5a38ed8e10f88ff5dc58470423338 |
| .data | 212992 | 28066063d584570a813aaed690fdbc08 |
| .rsrc | 995328 | 2c667e5be45e0654c10584dbdb894ea3 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for idman.exe
