Should I block it?

98%
Yes, 98% block recommendation.
Possible reasons:
Multiple malware detections
Performance resource utilization

VersionsAdditional versions

3.26.5.0 10.00%
3.21.2.1 10.00%
3.14.1.3 10.00%
3.4.5.2 10.00%
3.1.0.3 50.00%
3.0.0.7 10.00%

Relationships

umbrella.exe

Iminent Protection by Iminent (Signed)

Remove umbrella.exe
Version:   3.4.5.2
MD5:   791227582a5070bd78b7e05285d13446
SHA1:   c6179024480270544c0380c0dcfcc10d55bcba64
SHA256:   0539d3d434e1743bb0b3caea14fbfd5c62a8e38e5ca1fb8dc3bd7cb36ca68002
Warning 3 antivirus scanners has detected malware.

Overview

umbrella.exe is malware that runs as a service under the name SProtection with extensive SYSTEM privileges (full administrator access). The file is digitally signed by Iminent which was issued by the GlobalSign nv-sa certificate authority (CA).

DetailsDetails

File name:umbrella.exe
Publisher:Iminent
Product name:Iminent Protection
Typical file path:C:\Program Files\common files\umbrella\umbrella.exe
File version:3.4.5.2
Size:2.54 MB (2,663,976 bytes)
Certificate
Issued to:Iminent
Authority (CA):GlobalSign nv-sa
Digital DNA
File packed:No
.NET CLR:No
More details

BehaviorsBehaviors

Service
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
  • 'SProtection'

MalwareMalware detections

Based on 40+ industry antivirus scanners, 3 of them detected the following malware.
Antivirus engineEngine versionDetection
Dr.Web 8.13.9.26 Adware.BGuard.13
Malwarebytes 1.75.0.1 PUP.Optional.Iminent
VIPRE Antivirus 22588 Iminent (fs)

ResourcesResource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
 
CPU
Total CPU:0.00018191%
0.028634%
Kernel CPU:0.00011902%
0.013761%
User CPU:0.00006288%
0.014873%
Kernel CPU time:265 ms/min
100,923,805ms/min
CPU cycles:115,147/sec
17,470,203/sec
Memory
Private memory:3.67 MB
21.59 MB
Private (maximum):2.77 MB
Private (minimum):248 KB
Non-paged memory:3.67 MB
21.59 MB
Virtual memory:70.25 MB
140.96 MB
Virtual memory (peak):75.98 MB
169.69 MB
Working set:340 KB
18.61 MB
Working set (peak):7.66 MB
37.95 MB
Page faults:15,106/min
2,039/min
I/O
I/O read transfer:0 Bytes/sec
1.02 MB/min
I/O read operations:1/sec
343/min
I/O write transfer:0 Bytes/sec
274.99 KB/min
I/O write operations:1/sec
227/min
I/O other transfer:25 Bytes/sec
448.09 KB/min
I/O other operations:1/sec
1,671/min
Resource allocations
Threads:5
12
Handles:160
600

BehaviorsProcess properties

Integrety level:System
Platform:32-bit
Command line:"C:\Program Files\common files\umbrella\umbrella.exe"
Owner:SYSTEM
Windows Service
Service name:SProtection
Type:Win32OwnProcess, InteractiveProcess
Parent process:services.exe (Services and Controller app by Microsoft)

ResourcesThreads

Averages
 
sechost.dll
Total CPU:0.00022421%
0.272967%
Kernel CPU:0.00012612%
0.107585%
User CPU:0.00009809%
0.165382%
CPU cycles:84,291/sec
5,741,424/sec
Memory:100 KB
1.16 MB
umbrella.exe (main module)
Total CPU:0.00005605%
Kernel CPU:0.00005605%
User CPU:0.00000000%
CPU cycles:1,234/sec
Memory:2.58 MB

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Home Premium 40.00%
Windows 7 Ultimate 30.00%
Windows Vista Home Premium 10.00%
Windows 8 Pro 10.00%
Microsoft Windows XP 10.00%

Distribution by countryDistribution by country

United States installs about 50.00% of Iminent Protection.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
ASUS 40.00%
Toshiba 20.00%
Dell 20.00%
Acer 10.00%
Hewlett-Packard 10.00%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE