home

iceshutdown.exe

Comnso Inc.

This file is installed with the program ComnsoBackup.
Publisher:
Comnso Inc.  (signed and verified)

MD5:
4455c6d9ab31059ecd7b953b6e0350ed

SHA-1:
50cd43dc3ad7a4b252693d567c32fe26e1cebc54

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/25/2024 11:45:36 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Agnitum Outpost
Packed/PECompact
7.1.1

Clam AntiVirus
PUA.Packed.PECompact-1
0.98/17211

Quick Heal
(Suspicious) - DNAScan
6.14.11.00

File size:
106 KB (108,544 bytes)

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\comnso\common\iceshutdown.exe

Digital Signature
Signed by:
Comnso Inc.

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
4/22/2009 3:22:24 AM

Valid to:
4/28/2010 8:24:42 AM

Subject:
CN=Comnso Inc., OU=Software Development Department, O=Comnso Inc., L=Guro-gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
41730CE474D47D26CBC7287644AD0C65

File PE Metadata
Compilation timestamp:
10/7/2009 10:41:28 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
3072:4oEn8MoeZEbNF5AAarxJPidSOdMmQxOH8n3I5LUM2ShJnE4:PEn8deqJvB6ndOdMBkH83Wr+4

Entry address:
0xBF22

Entry point:
B8, 08, C2, 43, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, A4, 86, BD, DC, E7, 0A, 00, C5, 0E, A7, B6, 5E, AA, EB, 0D, EC, E1, A5, E4, CC, 27, 76, 43, 19, 4F, 98, 70, CB, 20, 60, 59, B9, 15, A6, 6B, EC, 36, CE, C9, A4, D9, 93, 5D, 1A, 7E, 1F, 30, 41, 45, B1, 76, E6, DB, 2A, 63, 3C, 06, 76, A0, 67, 92, EE, 02, 61, 47, 20, 10, DB, 19, D3, 43, 66, 5C, 16, 03, A0, 8A, 73, 9C, CE, D9, E7, 45, AE, 71, E5, F9, CA, 7F, D4, 90, 88, 60...
 
[+]

Packer / compiler:
PECompact v2

Code size:
144 KB (147,456 bytes)

The file iceshutdown.exe has been discovered within the following program.

ComnsoBackup  by Comnso Inc.
www.comnso.com
About 5% of users remove it
 
Powered by Should I Remove It?

Scan iceshutdown.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.