datamngr.dll.952464

Bandoo Media, Inc

The file datamngr.dll.952464 by Bandoo Media, Inc has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program Windows iLivid Toolbar by Bandoo Media Inc which is a potentially unwanted software program.
Publisher:
Bandoo Media, Inc  (signed and verified)

MD5:
5630a23def18e06152d00c81629097ec

SHA-1:
14f01394a440a2f6a783eb5bc008619bf9a012b3

SHA-256:
7de053d3952491eab1de759a61af89154ab944fbc81af3b64019a2441c642648

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/24/2024 12:46:34 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.Bandoo
16.10.13.3

File size:
1.2 MB (1,236,368 bytes)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\datamngr.dll.952464

Digital Signature
Authority:
Thawte, Inc.

Valid from:
11/3/2010 12:00:00 AM

Valid to:
11/2/2012 11:59:59 PM

Subject:
CN="Bandoo Media, Inc", O="Bandoo Media, Inc", L=Panama City, S=Panama, C=PA

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
7AD02DB75E76EA8D8CF4A4D1C2591229

File PE Metadata
Compilation timestamp:
3/6/2012 8:35:07 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:ghnWPQbsj9NuwKiRwFvJFTHgRWlznlGDa52yBdV8fh:qNITSgoGDI2yXV8p

Entry address:
0xDB102

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, A9, 81, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8B, 54, 24, 0C, 8B, 4C, 24, 04, 85, D2, 74, 69, 33, C0, 8A, 44, 24, 08, 84, C0, 75, 16, 81, FA, 00, 01, 00, 00, 72, 0E, 83, 3D, 24, 3B, 12, 10, 00, 74, 05, E9, 4C, 82, 00, 00, 57, 8B, F9, 83, FA, 04, 72, 31, F7, D9, 83, E1, 03, 74, 0C, 2B, D1, 88, 07, 83, C7, 01, 83, E9, 01, 75, F6, 8B, C8, C1, E0, 08, 03, C1, 8B, C8, C1, E0...
 
[+]

Entropy:
6.5841

Code size:
999.5 KB (1,023,488 bytes)

The file datamngr.dll.952464 has been discovered within the following program.

Windows iLivid Toolbar  by Bandoo Media Inc
This toolbar is typiclaly bundled with the installation of the free iLivid software. Windows iLivid Toolbar by Bandoo for Intenet Explorer collects and stores information about your web browsing habits in order to suggest services or provide advertising via the toolbar.
www.ilivid.com
79% remove it
 
Powered by Should I Remove It?

Remove datamngr.dll.952464 - Powered by Reason Core Security