home

adaware_installer.exe

Ad-Aware Antivirus Installer

Lavasoft Limited

This is a setup and installation application. The file has been seen being downloaded from lavasoft.com and multiple other hosts.
Publisher:
Lavasoft Limited  (signed and verified)

Product:
Ad-Aware Antivirus Installer

Description:
AdAware Installer

Version:
10,5,3,4405

MD5:
36ae9d1b7962a064c41f3c086b6d6ed7

SHA-1:
4729e7fac07ce46755c8b999b0f2319ccd705884

SHA-256:
86971844757fcdbdddd4608b64bbdf5cfb9be762dc009f50b030dc5bf231c65c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 9:31:53 PM UTC  (today)

File size:
5.4 MB (5,616,264 bytes)

Product version:
10,5,3,4405

Copyright:
© Lavasoft Limited. All Rights Reserved.

Original file name:
AdAware Installer.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\adaware_installer.exe

Digital Signature
Signed by:
Lavasoft Limited

Authority:
VeriSign, Inc.

Valid from:
1/30/2013 2:00:00 AM

Valid to:
2/19/2015 1:59:59 AM

Subject:
CN=Lavasoft Limited, OU=Director, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Lavasoft Limited, L=Sliema, S=SLM, C=MT

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0151F1A5A7DA24B1AA3000EE3B4DD7FF

File PE Metadata
Compilation timestamp:
6/13/2013 12:20:07 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
98304:EdcUX+3IGL66A1fMg717FSnVzv9GA3w+/xA2QBH5jN:acSUy1Ilv9GAf5A2455

Entry address:
0x1BFE40

Entry point:
E8, 55, 33, 01, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 10, 8B, 4D, 08, 53, 8B, 5D, 0C, 56, 57, 8B, 7D, 10, 89, 4D, F8, 89, 5D, FC, 85, FF, 74, 1A, 83, 7D, 14, 00, 74, 14, 85, C9, 75, 17, E8, C5, E7, FF, FF, C7, 00, 16, 00, 00, 00, E8, BB, BD, 00, 00, 33, C0, 5F, 5E, 5B, C9, C3, 8B, 75, 18, 85, F6, 74, 0C, 83, C8, FF, 33, D2, F7, F7, 39, 45, 14, 76, 21, 83, FB, FF, 74, 0C, 53, 6A, 00, 51, E8, 16, 18, 00, 00, 83, C4, 0C, 85, F6, 74, C1, 83, C8, FF, 33, D2, F7, F7, 39, 45, 14, 77, B5, 0F, AF, 7D...
 
[+]

Entropy:
7.2179

Code size:
2.2 MB (2,323,456 bytes)

The file adaware_installer.exe has been discovered within the following program.

360Amigo System Speedup Free  by 360Amigo
360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
 
Powered by Should I Remove It?

The file adaware_installer.exe has been seen being distributed by the following 10 URLs.

http://lavasoft.com/.../adaware_download.php?internal=true&type=prospect&action=update&source=app_old&from=free_updates2_products

http://download.heise.de/software/440787ac7f51e4cd0431e9c4bb5c9ab6/525182b8/.../adaware_installer.exe

http://lavasoft.com/.../adaware_download.php?internal=true&source=windows&type=7

http://download.forest.impress.co.jp/pub/win/a/.../Adaware_Installer.exe

http://lavasoft.com/.../adaware_download.php?internal=true&

http://lavasoft.com/.../adaware_download.php?internal=true&type=prospect&action=update&source=app_old&from=free_updates3_products

http://download.pcwelt.de/area_release/files/42/85/.../Adaware10534405_Installer.exe

http://lavasoft.com/.../adaware_download.php?internal=true&p=adaware_free&appkind=aafree&type=free&source=inapp&mvt-inter=update

http://lavasoft.com/.../adaware_download.php?internal=true&p=adaware_free

http://downloads8.lavasoft.com/.../download.ashx?productcode=adaware$params=http://lavasoft.com/products/ad_aware_update.php?source=inappupdate&mvt-inter=homepage&toolbar=yes$dwld=http://downloads8.lavasoft.com/.../download.asp

Scan adaware_installer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.