home

adwcleaner.exe

AdwCleaner from Xplode is a free application designed to search for and remove adware such as browser toolbars and other potentially unwanted programs and specifically targets software that is bundled with free programs that you download from the web. This is a setup program which is used to install the application. The file has been seen being downloaded from toolslib.net and multiple other hosts.
Version:
3.2.1.4

MD5:
3f98e2e1032eb50d927dfbf82c59214b

SHA-1:
ec18d13579e0d36f1d0cfa6274fa5220851c93c1

SHA-256:
f40867c0ca494fa1ff98b81b35d1b2636712b4050e3abc61ef9c6a07bc3030a9

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/25/2024 4:45:15 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.CDB
1.3.0.4959

Comodo Security
Packed.Win32.MUPX.Gen
18786

K7 AntiVirus
Trojan
13.180.12626

File size:
1.3 MB (1,346,519 bytes)

Product version:
3.3.8.1

File type:
Executable application (Win32 EXE)

Language:
French (France)

Common path:
C:\users\{user}\downloads\adwcleaner.exe

File PE Metadata
Compilation timestamp:
1/29/2012 11:32:28 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:6thEVaPqLG2dwW8o+eDWXnoXVcjAzNgdp93/jB/ws7GkyI/cQ:SEVUcGK8Veai3gdpd/jqhQ

Entry address:
0xC4E80

Entry point:
60, BE, 00, 30, 48, 00, 8D, BE, 00, E0, F7, FF, 57, EB, 0B, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89, C5, EB, 0B, 01, DB, 75, 07, 8B...
 
[+]

Packer / compiler:
UPX v0.89.6 - v1.02 / v1.05 -v1.24

Code size:
268 KB (274,432 bytes)

The file adwcleaner.exe has been seen being distributed by the following 50 URLs.

https://toolslib.net/downloads/finish/1/get/.../

https://toolslib.net/downloads/finish/1/get/.../

https://toolslib.net/downloads/finish/1/get/.../

https://toolslib.net/downloads/finish/1/get/.../

http://download.bleepingcomputer.com/dl/2423966730dbf6f8e77ed823a85e839b/53b51202/windows/security/security-utilities/a/.../AdwCleaner.exe

https://toolslib.net/downloads/finish/1/get/.../

http://download.bleepingcomputer.com/dl/1df0d3919f4f70a45cd2a6b228e53cd5/53b2bfd4/windows/security/security-utilities/a/.../AdwCleaner.exe

https://toolslib.net/downloads/finish/1/get/.../

https://toolslib.net/downloads/finish/1/get/.../

http://www.afterdawn.com/software/.../download.cfm?version_id=84099&software_id=7904&mirror_id=0&installer=0&perion=0&air_installer=0

http://download.bleepingcomputer.com/dl/985d78ffd2adb3daf9a44a6daa418529/53bb5397/windows/security/security-utilities/a/.../AdwCleaner.exe

http://download.bleepingcomputer.com/dl/8d0236338fc2fd9a5505c5d68872c1bf/53baa359/windows/security/security-utilities/a/.../AdwCleaner.exe

https://toolslib.net/downloads/finish/1/get/.../

https://toolslib.net/downloads/finish/1/get/.../

https://toolslib.net/downloads/finish/1/get/.../

https://toolslib.net/downloads/finish/1/get/.../

https://toolslib.net/downloads/finish/1/get/.../

https://toolslib.net/downloads/finish/1/get/.../

http://download.bleepingcomputer.com/dl/4bb169f68d416c47fd6f158fdb4603a3/53b9c7af/windows/security/security-utilities/a/.../AdwCleaner.exe

http://download.bleepingcomputer.com/dl/ec19073edfec6ba96790fb4c927850ea/53b3683d/windows/security/security-utilities/a/.../AdwCleaner.exe

https://toolslib.net/downloads/finish/1/get/.../

https://toolslib.net/downloads/finish/1/get/.../

https://toolslib.net/downloads/finish/1/get/.../

https://toolslib.net/downloads/finish/1/get/.../

http://dc496.4shared.com/download/.../adwcleaner_3214.exe

https://toolslib.net/downloads/finish/1/get/.../

http://general-changelog-team.fr/en/downloads/finish/.../2-adwcleaner

http://download.bleepingcomputer.com/dl/19be97e8977ab11f311b998b14865bb5/53bac88d/windows/security/security-utilities/a/.../AdwCleaner.exe

https://toolslib.net/downloads/finish/1/get/.../

http://download.bleepingcomputer.com/dl/e01297b9dc09cd69361bcb4de1a56c03/53b3b7c7/windows/security/security-utilities/a/.../AdwCleaner.exe

Latest 30 of 393 download URLs

Scan adwcleaner.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.