home

adownloader.exe

Avant Force

This is installed with Avant Browser (remove only).
Publisher:
Avant Force  (signed and verified)

MD5:
437e56eab1b121b4d785c8ff18c02f6d

SHA-1:
e928a26fcb0eeb0827cfdb3b7b2a840eaca902fd

SHA-256:
40e3df4cbc3906812d3db19ee9794f559604a70f05b1dd3b8d464e6bb0e0e32b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 4:50:45 PM UTC  (today)

File size:
1.9 MB (2,001,216 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\avant browser\adownloader.exe

Digital Signature
Signed by:
Avant Force

Authority:
VeriSign, Inc.

Subject:
CN=Avant Force, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Avant Force, L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7889DA453F6021C450B095A9E8F6EB2C

File PE Metadata
Compilation timestamp:
9/14/2011 8:03:41 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:IEkr/jkQ8k4DOaQx0E/svL2WVOJrfDUKVVnCvLh2KFsFEbnJqFRDfGT5T8zGSTCV:IPgP+CE/qkJrfDL7k20jJqjuT5TWJW

Entry address:
0x185848

Entry point:
55, 8B, EC, 83, C4, E4, 33, C0, 89, 45, E4, 89, 45, E8, 89, 45, EC, B8, 00, 36, 58, 00, E8, BD, 1D, E8, FF, 33, C0, 55, 68, 4F, 59, 58, 00, 64, FF, 30, 64, 89, 20, 8D, 55, EC, B8, 01, 00, 00, 00, E8, C2, DB, E7, FF, 8B, 45, EC, BA, 64, 59, 58, 00, E8, DD, 44, E8, FF, 85, C0, 0F, 95, C0, E8, D7, B7, FF, FF, 84, C0, 0F, 85, 97, 00, 00, 00, 8D, 45, E8, E8, AB, 7D, FF, FF, 8B, 55, E8, A1, F8, 24, 59, 00, E8, FE, F6, E7, FF, A1, AC, 23, 59, 00, C6, 00, 02, A1, 44, 28, 59, 00, 8B, 00, E8, 4E, 79, ED, FF, A1, 44...
 
[+]

Entropy:
6.7735

Developed / compiled with:
Microsoft Visual C++

Code size:
1.5 MB (1,591,296 bytes)

The file adownloader.exe has been discovered within the following program.

Avant Browser (remove only)  by Avant Force
The software is typically bundled with third party installers such as Open Candy. "A free web browser with many built-in features including a video downloader, download accelerator, ad/pop-up blocker, RSS reader, plus much more."
www.avantbrowser.com
30% remove it
 
Powered by Should I Remove It?

Scan adownloader.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.