home

AcroRd32.exe

Adobe Reader

Adobe Systems, Incorporated

This is a setup program which is used to install the application. It runs as a scheduled task under the Windows Task Scheduler. This is installed with multiple programs including Adobe Reader XI and Adobe Acrobat XI Pro. The file has been seen being downloaded from 3c.web.de and multiple other hosts.
Publisher:
Adobe Systems Incorporated  (signed by Adobe Systems, Incorporated)

Product:
Adobe Reader

Description:
Adobe Reader

Version:
11.0.06.70

MD5:
ccda8e6a2ac68fd417a8bb8d88cbfdac

SHA-1:
1607737dc0ec2d6906519724d4ebe9b3744e4bf1

SHA-256:
ea9226ab7559b9d136566fdf7fceda34d0956e8065c6a3b692c88e2a945136e0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 3:39:14 AM UTC  (today)

File size:
1.4 MB (1,423,224 bytes)

Product version:
11.0.06.70

Copyright:
Copyright 1984-2012 Adobe Systems Incorporated and its licensors. All rights reserved.

Original file name:
AcroRd32.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\adobe\reader 11.0\reader\acrord32.exe

Digital Signature
Signed by:
Adobe Systems, Incorporated

Authority:
Symantec Corporation

Valid from:
7/30/2013 2:00:00 AM

Valid to:
7/26/2014 1:59:59 AM

Subject:
CN="Adobe Systems, Incorporated", OU=Acrobat XI, O="Adobe Systems, Incorporated", L=San Jose, S=California, C=US, SERIALNUMBER=2748129, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US

Issuer:
CN=Symantec Class 3 Extended Validation Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
68ADD7AFFC72183C31865ACD3CB2D70C

File PE Metadata
Compilation timestamp:
12/21/2013 6:36:34 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:JfnmfUU2419GicL0VQV+JnqfVGkvcoxMe6PK5S7mgQoNNK4O8b8ITDnl5Yk:5mfUw1AGBqwkvcoxMpPKI7lQoNNK4O8t

Entry address:
0x1039

Entry point:
E8, FB, 01, 00, 00, E9, 3A, 97, 0C, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 55, 8B, EC, 6A, FE, 68, A8, 5A, 52, 00, 68, 20, C4, 40, 00, 64, A1, 00, 00, 00, 00, 50, 83, EC, 5C, A1, 58, 49, 53, 00, 31, 45, F8, 33, C5, 89, 45, E4, 53, 56, 57, 50, 8D, 45, F0, 64, A3, 00, 00, 00, 00, 89, 65, E8, 8B, 5D, 08, 8B, 45, 0C, 89, 45, A4, 8B, 75, 14, 8B, 4D, 18, 89, 4D, A0, BF, 22, 00, 00, C0, 89, 7D, AC, 85, F6, 74, 21, 8B, 46, 08, 85, C0, 74, 1A, 8B, 48, 04, 85, C9, 74, 13, 66, 83, 38, 08, 72, 0D, 51...
 
[+]

Code size:
971.5 KB (994,816 bytes)

Scheduled Task
Task name:
{C984C6BD-0FC2-42F8-8ED2-FBD9DB53AC37}

Trigger:
Registration (Runs on registration)


The file AcroRd32.exe has been discovered within the following programs.

Adobe Acrobat XI Pro  by Adobe Systems Incorporated
Adobe Acrobat is a set of application software to view, create, manipulate, print and manage files in Portable Document Format (PDF). Acrobat and Reader are widely used as a method of presenting information with a fixed layout similar to a paper publication.
www.adobe.com
6% remove it
Adobe Acrobat XI Standard  by Adobe Systems Incorporated
Publisher's description - “Whether you need to create, edit, or sign PDF documents, you can do it easier with Adobe® Acrobat® XI Standard — the solution that makes PDFs work harder so you don't have to.”
4% remove it
Adobe Reader XI  by Adobe Systems Incorporated
Adobe Acrobat and Adobe Reader XI are a set of applications designed to view, create, manipulate, print and manage files in Portable Document Format (PDF). Acrobat and Reader are widely used as a method of presenting information with a fixed layout similar to a paper publication.
3% remove it
Adobe Reader XI (11.0.02)  by Adobe Systems Incorporated
Publisher's description - “Adobe Reader is a program that is intended to give you the capability to read, edit and print the popular Adobe Portable Document Format (PDF) file type, as well as adding a whole host of functions on top of the basic reader.”
5% remove it
Adobe Reader XI (11.0.05)  by Adobe Systems Incorporated
Publisher's description - “Adobe Reader software is the free trusted standard for reliably viewing, printing, and annotating PDF documents. It’s the only PDF file viewer that can open and interact with all types of PDF content, including forms and multimedia.”
4% remove it
Adobe Reader XI (11.0.06)  by Adobe Systems Incorporated
6% remove it
Extended Asian Language font pack for Adobe Reader XI  by Adobe Systems Incorporated
Publisher's description - “Adobe Reader XI Font Pack enables you to display and interact with documents authored in languages other than those supported in your native Adobe Reader. It is needed to correctly display a document when an author does not embed the appropriate font into the document.”
3% remove it
 
Powered by Should I Remove It?

The file AcroRd32.exe has been seen being distributed by the following 8 URLs.

https://3c.web.de/mail/client/attachment/scratch/smaiadc34a9f-9fe0-456d-8cd4-71a034b07b43/.../OTMyYjE1M2EtMjQ5NC00ZTBiLTk5ZDEtNTU2M2U1Yjg3MGY2;jsessionid=1E25EE00CDBFCDC17E0A2620A3FF57C6-n1.bs07b?nocache=0.1366275436331803

http://www.suizoamericano.edu.gt/moodle/pluginfile.php/16458/mod_assignment/submission/.../AcroRd32.exe

http://alicemail12a.rossoalice.alice.it/cp/ps/Mail/.../AcroRd32.exe

https://k12parentportal.force.com/servlet/servlet.FileDownload?retURL=/.../Portal_UploadDocumentation?StdntId=003U000000x7YzEIAU&oppId=006U000000FBCZ6IAP&file=00PU0000007ykrrMAA

http://www.ebah.com.br/.../ABAAAgUW4AJ

https://drive.google.com/uc?id=0BwyfTmh_2tcXQ29LZ05feHZoU2s&export=download

https://ir2-attach.ymail.com/fr.f1332.mail.yahoo.com/ya/.../TQ&fid=Draft&pid=5&clean=0&appid=YahooMailNeo&cred=FtRZ0Cg8eQPjKBPE7pq2HlONm5ZTzKyBwqH39Fq6fpkfEkY-&ts=1398984202&partner=ymail&sig=SHjHOcX2P9BtmY4LiHyyKg--

https://mg.mail.yahoo.com/ya/.../TQ&fid=Draft&pid=5&clean=0&appid=YahooMailNeo

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.