We Recommend: You Boost your PC today

Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

1, 0, 0, 19 50.00%
1, 0, 0, 19 50.00%
(Note, CA publishes each variation of this file with the same version, but the hashes are unique.)

Relationships

Parent process
Child process
Related files

PE structurePE file structure

Show functions
Import table
advapi32.dll
StartServiceW, RegCreateKeyExW, SetServiceStatus, StartServiceCtrlDispatcherW, RegisterEventSourceW, ReportEventW, DeleteService, CreateServiceW, OpenServiceW, CloseServiceHandle, OpenSCManagerW, DeregisterEventSource, GetUserNameW, ControlService, QueryServiceConfigW, RegOpenKeyExW, RegCloseKey, RegQueryInfoKeyW, RegEnumKeyExW, RegDeleteKeyW, RegEnumValueW, RegQueryValueExW, RegSetValueExW, RegDeleteValueW
comdlg32.dll
GetFileTitleW
kernel32.dll
GetCurrentThread, SetThreadPriority, GetProcAddress, LoadLibraryExW, FreeLibrary, ReleaseMutex, CreateMutexW, GetTickCount, LocalAlloc, lstrlenW, OutputDebugStringA, OutputDebugStringW, CreateFileW, MoveFileW, DeleteFileW, GetVersionExW, WriteFile, FlushFileBuffers, GetThreadTimes, GetCurrentThreadId, SetCurrentDirectoryW, GetFullPathNameW, GetShortPathNameW, FindFirstFileW, GetCurrentDirectoryW, GetModuleFileNameW, GetSystemDirectoryW, GetWindowsDirectoryW, GetTempPathW, GetTimeFormatW, GetDateFormatW, GetLocaleInfoW, SetLastError, Sleep, GetFileAttributesW, GetCurrentProcess, FileTimeToSystemTime, SystemTimeToFileTime, FileTimeToLocalFileTime, GetSystemTimeAsFileTime, GetLocalTime, GetSystemTime, LocalFileTimeToFileTime, GetFileAttributesExW, HeapFree, TerminateProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, IsDebuggerPresent, GetStartupInfoW, RtlUnwind, CreateEventW, SetCurrentDirectoryA, GetFileInformationByHandle, PeekNamedPipe, GetFileType, GetCommandLineW, GetDateFormatA, HeapAlloc, HeapCreate, VirtualFree, VirtualAlloc, HeapReAlloc, GetModuleHandleW, TlsFree, HeapSize, ExitProcess, GetCPInfo, GetACP, GetOEMCP, IsValidCodePage, GetStdHandle, GetModuleFileNameA, FreeEnvironmentStringsW, GetEnvironmentStringsW, SetHandleCount, GetStartupInfoA, QueryPerformanceCounter, GetCurrentProcessId, GetModuleHandleA, SetStdHandle, CreateFileA, WideCharToMultiByte, GetTimeZoneInformation, InitializeCriticalSectionAndSpinCount, GetUserDefaultLCID, GetLocaleInfoA, EnumSystemLocalesA, IsValidLocale, GetStringTypeA, MultiByteToWideChar, GetStringTypeW, InterlockedExchange, LoadLibraryA, LCMapStringA, LCMapStringW, SetFilePointer, GetConsoleCP, GetConsoleMode, SetEndOfFile, GetProcessHeap, ReadFile, WriteConsoleA, GetConsoleOutputCP, WriteConsoleW, CompareStringA, CompareStringW, SetEnvironmentVariableA, SetEvent, CloseHandle, WaitForSingleObject, GetTimeFormatA, GetLastError, FormatMessageW, LocalFree, TlsGetValue, TlsSetValue, TlsAlloc, InterlockedCompareExchange, InterlockedDecrement, InterlockedIncrement, LeaveCriticalSection, EnterCriticalSection, DeleteCriticalSection, RaiseException, InitializeCriticalSection
shell32.dll
CommandLineToArgvW
shfolder.dll
SHGetFolderPathW
user32.dll
UnregisterDeviceNotification, RegisterDeviceNotificationW
version.dll
GetFileVersionInfoSizeW, GetFileVersionInfoW, VerQueryValueW

UmxEngine.exe

CA Threat Management Engine by CA (Signed)

Version:   1, 0, 0, 19
MD5:   a6d4800135180ebb6582768c4981a193
SHA1:   9c96de3329e296f60839b2151fc41219f673b5e4
SHA256:   772187a79b2913905502a7879a5fa92865a31b0341fd4c8d7404dd0dab493321

Overview

umxengine.exe runs as a service under the name TM Engine (UmxEngine) with extensive SYSTEM privileges (full administrator access). The file is digitally signed by CA which was issued by the VeriSign certificate authority (CA).

DetailsDetails

File name:umxengine.exe
Publisher:CA
Product name:CA Threat Management Engine
Description:CA Threat Management Engine Service
Typical file path:C:\Program Files\ca\sharedcomponents\tmengine\umxengine.exe
File version:1, 0, 0, 19
Product version:2, 0, 0, 1
Size:646.58 KB (662,096 bytes)
Certificate
Issued to:CA
Authority (CA):VeriSign
Digital DNA
PE subsystem:Windows GUI
File packed:No
.NET CLR:No
More details

BehaviorsBehaviors

Service
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
  • 'UmxEngine' (TM Engine)

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00082692%
0.028634%
Kernel CPU:0.00056140%
0.013761%
User CPU:0.00026553%
0.014873%
Kernel CPU time:99,891 ms/min
100,923,805ms/min
Memory
Private memory:129.04 MB
21.59 MB
Private (maximum):134.61 MB
Private (minimum):13.79 MB
Non-paged memory:129.04 MB
21.59 MB
Virtual memory:263.66 MB
140.96 MB
Virtual memory (peak):273.51 MB
169.69 MB
Working set:41.1 MB
18.61 MB
Working set (peak):137.91 MB
37.95 MB
Resource allocations
Threads:38
12
Handles:781
600

BehaviorsProcess properties

Integrety level:System
Platform:32-bit
Command line:"C:\Program Files\ca\sharedcomponents\tmengine\umxengine.exe"
Owner:SYSTEM
Windows Service
Service name:UmxEngine
Display name:TM Engine
Description:“TM Engine Common Components Service”
Type:Win32OwnProcess
Parent process:services.exe (Services and Controller app by Microsoft)

ResourcesThreads

Averages
 
umxfwhlp.dll (Host Intrusion Prevention System by CA)
Total CPU:0.02909064%
0.272967%
Kernel CPU:0.02380951%
0.107585%
User CPU:0.00528113%
0.165382%
CPU cycles:4,844,185/sec
5,741,424/sec
Memory:260 KB
1.16 MB
umxagent.dll (Host Intrusion Prevention System by CA)
Total CPU:0.00987004%
Kernel CPU:0.00483380%
User CPU:0.00503624%
CPU cycles:312,917/sec
Memory:1.34 MB
umxcfg.dll (Threat Management Engine by CA)
Total CPU:0.00585086%
Kernel CPU:0.00436169%
User CPU:0.00148917%
CPU cycles:183,387/sec
Memory:3.3 MB
UmxEngine.exe (main module)
Total CPU:0.00035536%
Kernel CPU:0.00026652%
User CPU:0.00008884%
CPU cycles:9,290/sec
Memory:664 KB
tmengine.dll (Threat Management Engine by CA)
Total CPU:0.00005949%
Kernel CPU:0.00005949%
User CPU:0.00000000%
CPU cycles:6,546/sec
Memory:5.13 MB
sechost.dll
Total CPU:0.00002961%
Kernel CPU:0.00002961%
User CPU:0.00000000%
CPU cycles:667/sec
Memory:100 KB

Common loaded modules

These are modules that are typiclaly loaded within the context of this process.

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Home Premium 50.00%
Windows 7 Ultimate 50.00%

Distribution by countryDistribution by country

United States installs about 100.00% of CA Threat Management Engine.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Sony 100.00%
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE