How to remove idman.exe
idman.exe
The module idman.exe has been detected as PUP.Presenoker
File Details
| Product Name: | Internet Download Manager (IDM) |
| Company Name: | Tonec Inc. |
| MD5: | 716ecdb00abe3c5567e401934f50a308 |
| Size: | 3 MB |
| First Published: | 2019-11-23 16:22:14 (5 years ago) |
| Latest Published: | 2021-02-09 16:24:56 (4 years ago) |
| Status: | PUP.Presenoker (on last analysis) | |
| Analysis Date: | 2021-02-09 16:24:56 (4 years ago) |
Overview
| Signed By: | Tonec Inc. |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
Geography:
| 12.8% | ||
| 11.5% | ||
| 10.3% | ||
| 9.0% | ||
| 9.0% | ||
| 5.1% | ||
| 3.8% | ||
| 3.8% | ||
| 3.8% | ||
| 3.8% | ||
| 3.8% | ||
| 3.8% | ||
| 2.6% | ||
| 2.6% | ||
| 2.6% | ||
| 2.6% | ||
| 2.6% | ||
| 1.3% | ||
| 1.3% | ||
| 1.3% | ||
| 1.3% | ||
| 1.3% |
OS Version:
| Windows 10 | 76.1% | |
| Windows 7 | 17.4% | |
| Windows 8.1 | 3.3% | |
| Windows Server 2008 R2 | 3.3% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0020c54f |
PE Sections:
| Name | Size of data | MD5 |
| .text | 2441216 | d1a6b3ae1bff3bd66acef1fcc8c241a9 |
| .rdata | 462848 | 77844a6ccbded88a206d6182faded240 |
| .data | 217088 | af1aead26ac4218dccadc1c10c134a3d |
| .rsrc | 995328 | 9854dc2c616d8f045e04855aa1c7acbb |
More information:
Download GridinSoft
Anti-Malware - Removal tool for idman.exe
