home

qimlsrv.exe

IM Lock Professional

Comvigo, Inc

Publisher:
Comvigo, Inc.  (signed by Comvigo, Inc)

Product:
IM Lock Professional

Description:
Service Monitor

Version:
3.00.0001

MD5:
71a6080ac03c5bacfe3cbb6303b52396

SHA-1:
5f9b1db334605f2f824d5f0f1cf20f6c85c7227f

SHA-256:
a2fd0e67f209a65636da92ee284689f7fbe5afbc5f076d11d5fa7f7674df4607

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/27/2024 1:14:03 AM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
BACKDOOR.Trojan
9.0.1.0160

Trend Micro House Call
Suspicious_GEN.F47V1106
7.2.160

File size:
238.1 KB (243,776 bytes)

Product version:
3.00.0001

Copyright:
Comvigo, Inc. 2007 All Rights Reserved

Trademarks:
Comvigo IM Lock

Original file name:
qimlsrv.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Windows\System32\qimlsrv.exe

Digital Signature
Signed by:
Comvigo, Inc

Authority:
The USERTRUST Network

Valid from:
3/17/2011 6:00:00 PM

Valid to:
3/17/2012 5:59:59 PM

Subject:
CN="Comvigo, Inc", O="Comvigo, Inc", STREET=15W675 82nd Street, L=Willowbrook, S=IL, PostalCode=60527, C=US

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
6A7D21383E6AAA46E879744AE74FB140

File PE Metadata
Compilation timestamp:
3/19/2011 6:57:29 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3072:SryGXzyk+6O+Erwltw43LDyv+AqvtYzl5gQZLB+yYXEVPOYdN21c:SryGOt+zw43L5AqvtIlXZl+3X4OYj7

Entry address:
0x365C

Entry point:
68, E0, 36, 40, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 38, 00, 00, 00, 00, 00, 00, 00, 48, 2B, BB, BE, 30, 10, 1A, 4E, 9F, 92, B8, D0, 95, 36, 34, 1C, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 42, 2D, 41, 46, 43, 30, 6D, 73, 6E, 71, 70, 00, 30, 32, 00, 00, 00, 00, 01, 00, 06, 00, 08, 5A, 40, 00, 00, 00, 00, 00, FF, FF, FF, FF, FF, FF, FF, FF, 00, 00, 00, 00, 7C, 5B, 40, 00, BC, BB, 44, 00, 01, 00, 00, 00, DC, 36, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, DC, 36, 40, 00...
 
[+]

Entropy:
5.8744

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
220 KB (225,280 bytes)

Scan qimlsrv.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.