home

AnVir.exe

AnVir Task Manager Free

Ilya Kheifets

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘AnVir Task Manager Free’.
Publisher:
AnVir Software  (signed by Ilya Kheifets)

Product:
AnVir Task Manager Free

Version:
6.1.3.0

MD5:
2ed2f828195a1aad0346b02780e93365

SHA-1:
041cfcf89f1a5913f3bda196de470e57c6d5120b

SHA-256:
7d5e49cf45f8177901607d5c2c7990089ea310f87d649f734874c63ecac3a48c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 2:28:11 PM UTC  (today)

File size:
1.6 MB (1,690,336 bytes)

Product version:
6.1.3.0

Copyright:
Copyright (c) 2000-2009. AnVir Software

Trademarks:
AnVir Task Manager Free

Original file name:
AnVir.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\anvir task manager free\anvir.exe

Digital Signature
Signed by:
Ilya Kheifets

Authority:
The USERTRUST Network

Valid from:
9/10/2008 9:00:00 PM

Valid to:
9/11/2011 8:59:59 PM

Subject:
CN=Ilya Kheifets, O=Ilya Kheifets, STREET="Altayskaya, 29", L=Moscow, S=-, PostalCode=107589, C=RU

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00C2E4DD6035D0C7DCAE689D0526EFF2C7

File PE Metadata
Compilation timestamp:
11/8/2009 1:01:41 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:XjLrPgmb9gb//FBWqb6K+qG993BYs+sYW+2P4ixi+kmNEsW19Zow:z/+b//mqbvG993BYs+sYW+2P4iBPNAn

Entry address:
0x1000

Entry point:
68, 01, D0, 68, 00, E8, 01, 00, 00, 00, C3, C3, 17, C9, BA, B7, F2, 4D, D9, D1, 81, A1, 24, FF, AE, 7C, BA, E0, 17, B4, 71, D0, 38, B1, D4, 53, 66, 3B, 7C, E5, B1, F2, 7F, CA, E5, 9C, 2D, 6D, 26, 29, 5A, A4, 7D, 26, 3A, C8, 88, 71, 43, A9, B8, AB, E6, DC, A6, F0, A0, 49, 41, 6F, 6E, BA, EB, 3F, 53, C9, A3, 83, 31, B7, A9, 62, 68, 5F, 09, DC, 2D, 60, 16, 31, 38, 31, 36, 8B, FE, 32, 28, 54, F5, 6E, 25, 92, FE, 11, 41, 09, BD, 46, BB, 28, D3, 8E, 4F, 3C, DB, 94, AB, D1, 2D, 2A, 54, 8E, 55, 0B, 79, 65, 61, F0...
 
[+]

Packer / compiler:
ASProtect v1.2x (New Strain)

Code size:
724 KB (741,376 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
AnVir Task Manager Free

Command:
"C:\Program Files\anvir task manager free\anvir.exe" minimized


Scan AnVir.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.