home

AVQWinMonEngine.exe

SystemSuite

Avanquest North America Inc.

It runs as a windows Service named “SystemSuite Professional Process Monitor”.
Publisher:
Avanquest Software  (signed by Avanquest North America Inc.)

Product:
SystemSuite

Description:
Avanquest PC Startup Analyzer Monitoring Service

Version:
14.0.2.35

MD5:
d6676a2915c0ba06b05c5304c7bb62ff

SHA-1:
7607a8fad6d550a94a7ce4edb7c54a123242af73

SHA-256:
39ed16a0b08a709baee6dc6d58428440038b25329be8eca8a0dd809bd3aa3cb8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 8:23:08 AM UTC  (today)

File size:
303.7 KB (311,024 bytes)

Product version:
14.0.2.35

Copyright:
Copyright © 1997-2012 Avanquest Publishing USA, Inc.

Trademarks:
SystemSuite is a trademark of Avanquest Software

Original file name:
AVQWinMonEngine.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\avanquest\systemsuite\avqwinmonengine.exe

Digital Signature
Signed by:
Avanquest North America Inc.

Authority:
VeriSign, Inc.

Valid from:
10/30/2012 8:00:00 PM

Valid to:
11/30/2012 6:59:59 PM

Subject:
CN=Avanquest North America Inc., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Avanquest North America Inc., L=Calabasas, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
581CE8FE2163F4207DB01DF0D603A20C

File PE Metadata
Compilation timestamp:
11/2/2012 11:21:46 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:kY4IPp0Ah7hVKR3VhCqwUZhjEablOO4WsBuhvZK2P0O:kY4IB0EdMtCqwUZNlgWnhR1J

Entry address:
0x1E298

Entry point:
E8, E6, 04, 00, 00, E9, 63, FD, FF, FF, FF, 25, 70, 13, 42, 00, 8B, FF, 55, 8B, EC, FF, 75, 14, FF, 75, 10, FF, 75, 0C, FF, 75, 08, 68, 82, DE, 41, 00, 68, 64, E0, 42, 00, E8, 56, 05, 00, 00, 83, C4, 18, 5D, C3, CC, CC, CC, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 0F, 03, C1, 1B, C9, 0B, C1, 59, E9, 4A, 05, 00, 00, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 07, 03, C1, 1B, C9, 0B, C1, 59, E9, 34, 05, 00, 00, FF, 25, 74, 13, 42, 00, FF, 25, 78, 13, 42, 00, CC, CC, CC, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, 81, EC, 28...
 
[+]

Entropy:
6.4444

Code size:
125 KB (128,000 bytes)

Service
Display name:
SystemSuite Professional Process Monitor

Service name:
.AVQWindowsMonitorService

Description:
SystemSuite Professional Process Monitor Service - For boot and shutdown logging, system performance monitoring

Type:
Win32OwnProcess, InteractiveProcess


Scan AVQWinMonEngine.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.