iMesh.exe

iMesh

iMesh Inc.

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘iMesh’. This is installed with iMesh.
Publisher:
iMesh, Inc  (signed by iMesh Inc.)

Product:
iMesh

Version:
12.0.0.0

MD5:
aaa601693cf90203f6531ee2156c987f

SHA-1:
28c2e0e0932331fd2d67f205a208b551112e2510

SHA-256:
f41ac6b8ab7f6ec73f799a68476c90e80ea91ce7baf831b8fcb718661405b5f5

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 5:21:41 PM UTC  (today)

File size:
29.6 MB (31,020,056 bytes)

Product version:
12.0.0.133391

Copyright:
Copyright (c) 2005 - 2013

Original file name:
iMesh.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\imesh applications\imesh\imesh.exe

Digital Signature
Signed by:

Authority:
Thawte, Inc.

Valid from:
9/19/2012 2:00:00 AM

Valid to:
10/20/2014 1:59:59 AM

Subject:
CN=iMesh Inc., OU=SECURE APPLICATION DEVELOPMENT, O=iMesh Inc., L=New York, S=New York, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
2646E896402D759E5F88860208638F62

File PE Metadata
Compilation timestamp:
6/24/2013 3:29:47 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
786432:g15EvXUnNaQDLPtwvC2QJxMZ/N5cNYE+AJXI+cns5UWFm01:g15EvXUnNaQDLPtwvC2QMZ/N5cN9+AJx

Entry address:
0xFACC36

Entry point:
E8, 39, D8, B2, FF, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 18, 53, 8B, 5D, 0C, 56, 8B, 73, 08, 33, 35, 24, 40, E2, 01, 57, 8B, 06, C6, 45, FF, 00, C7, 45, F4, 01, 00, 00, 00, 8D, 7B, 10, 83, F8, FE, 74, 0D, 8B, 4E, 04, 03, CF, 33, 0C, 38, E8, 66, D8, B2, FF, 8B, 4E, 0C, 8B, 46, 08, 03, CF, 33, 0C, 38, E8, 56, D8, B2, FF, 8B, 45, 08, F6, 40, 04, 66, 0F, 85, 19, 01, 00, 00, 8B, 4D, 10, 8D, 55, E8, 89, 53, FC, 8B, 5B, 0C, 89, 45, E8, 89, 4D, EC, 83, FB, FE, 74, 5F, 8D, 49, 00, 8D, 04, 5B, 8B, 4C, 86...
 
[+]

Code size:
18.8 MB (19,764,736 bytes)

3 Autoplay Handlers
Display name:
IMShowCDAudioOnArrival

Display name:
IMShowVolumeOnArrival

Display name:
IMPlayCDAudioOnArrival

CLSID name:
YouTubeUploaderLib.YouTubeUploaderLib


Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
iMesh

Command:
"C:\Program Files\imesh applications\imesh\imesh.exe" --lightmode


The file iMesh.exe has been discovered within the following programs.

iMesh  by iMesh Inc.
iMesh is a media and file sharing client that's available in 9 languages. It uses a proprietary, centralized, P2P network (IM2Net) operating on ports 80, 443 and 1863.
www.imesh.com
24% remove it
 
Powered by Should I Remove It?

Scan iMesh.exe - Powered by Reason Core Security