» cmdidx.exe
Overview
Analysis
File Details
Behaviors (1)

cmdidx.exe

The application cmdidx.exe has been detected as a potentially unwanted program by 22 anti-malware scanners. It runs as a separate (within the context of its own process) windows Service named “cmdidx”. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install.

File name:

cmdidx.exe

Version:

1.0.0.695

MD5:

4115060ca0b2692e710a841426618923

SHA-1:

ea97b48fd0e7544c1cbff9fbc368c97f092eab7f

SHA-256:

c2adfee917ab954722cdf2e8dddb778a192f6d80bacf97faf6e1b1b64f8a0405

Scanner detections:

22 / 68

Status:

Potentially unwanted

Analysis date:

7/27/2025 11:01:03 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.468628

393

Agnitum Outpost

PUA.Amonetize

7.1.1

Avira AntiVirus

ADWARE/Amonetize.Gen7

8.3.2.4

Arcabit

Trojan.Adware.D72694

1.0.0.642

avast!

Win32:Malware-gen

2014.9-160107

Baidu Antivirus

PUA.MSIL.Amonetize

4.0.3.1617

Bitdefender

Gen:Variant.Adware.468628

1.0.20.35

Emsisoft Anti-Malware

Gen:Variant.Adware.468628

8.16.01.07.12

ESET NOD32

MSIL/Amonetize.AA potentially unwanted (variant)

10.12825

F-Prot

W32/S-6c257e9b

v6.4.7.1.166

F-Secure

Gen:Variant.Adware.468628

11.2016-07-01_5

G Data

Gen:Variant.Adware.468628

16.1.25

IKARUS anti.virus

PUA.MSIL.Amonetize

t3scan.1.9.5.0

K7 AntiVirus

Adware

13.212.18331

Kaspersky

not-a-virus:AdWare.Win32.Amonetize

14.0.0.852

Malwarebytes

PUP.Optional.Amonetize

v2016.01.07.12

MicroWorld eScan

Gen:Variant.Adware.468628

17.0.0.21

Panda Antivirus

Trj/CI.A

16.01.07.12

Qihoo 360 Security

HEUR/QVM03.0.Malware.Gen

1.0.0.1077

Rising Antivirus

MSIL:Malware.Generic(Thunder)!1.A1C4 [F]

23.00.65.16105

Sophos

Generic PUA OK (PUA)

4.98

VIPRE Antivirus

Trojan.Win32.Generic

46298

File size:

371.5 KB (380,416 bytes)

Product version:

1.0.0.695

Original file name:

cmdidx.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\Program Files\cmdidx\cmdidx.exe

File PE Metadata

Compilation timestamp:

12/29/2015 4:07:45 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

6144:qoiPPHLAZi7IgUhwTW16Q+ZsOP7ri8SQJ9zI9zpcSZlC/aQxvd5ooAndMbXQ:xkPHtI/CcY7rgppXjCSEvj

Entry address:

0x5E24E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

369 KB (377,856 bytes)

Service

Display name:

cmdidx

Type:

Win32OwnProcess

Remove cmdidx.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.