» avs media player.exe
Overview
Analysis
File Details

avs media player.exe

avs-media-player

Solimba Aplicaciones S.L.

This is the Solimba installer program that will bundle additional offers mostly including adware and various unwanted PC utilities. The application avs media player.exe by Solimba Aplicaciones S.L has been detected as adware by 36 anti-malware scanners. The program is a setup application that uses the Solimba DownloadMR installer. During install, it bundles potentially unwanted software on a user's computer at the same time without adequate consent.

File name:

Publisher:

Solimba Aplicaciones S.L. (signed and verified)

Product:

avs-media-player

Version:

2.2.61.1

MD5:

b86c67fbc45b14467f9ed689e16abbbd

SHA-1:

6a8b50c35492ba56aeace7569f31f904e2912374

SHA-256:

3e909427bfeab88079dc9849166d3d22dc40ba1597b6047c153d6386464b4b43

Scanner detections:

36 / 68

Status:

Adware

Explanation:

May bundle additional potentially unwanted software such as adware during setup.

Description:

This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:

4/20/2024 12:17:20 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.Solimba.1

651

Agnitum Outpost

Trojan.Adware

7.1.1

AhnLab V3 Security

Trojan/Win32.Agent

2013.07.31

Avira AntiVirus

APPL/Solimba.Gen

7.11.148.146

avast!

MSIL:Solimba-Q [PUP]

2014.9-150425

AVG

AdInstaller.Q

2016.0.3129

Bitdefender

Gen:Variant.Adware.Solimba.1

1.0.20.575

Bkav FE

W32.Clod2a8.Trojan

1.3.0.4959

Clam AntiVirus

WIN.Adware.Solimba-3

0.98/21155

Comodo Security

Application.Win32.Solimba.H

18243

Dr.Web

Adware.Downware.798

9.0.1.0115

Emsisoft Anti-Malware

Gen:Variant.Adware.Solimba

8.15.04.25.01

ESET NOD32

MSIL/Solimba.K.Gen

9.9778

Fortinet FortiGate

Adware/Solimba

4/25/2015

F-Prot

W32/Solimba.B.gen

v6.4.7.1.166

F-Secure

Gen:Variant.Adware.Solimba.1

11.2015-25-04_7

G Data

Gen:Variant.Adware.Solimba

15.4.24

IKARUS anti.virus

APPL

t3scan.1.3.5.0

K7 AntiVirus

Unwanted-Program

13.177.12041

Kaspersky

not-a-virus:AdWare.MSIL.Solimba

14.0.0.2140

Malwarebytes

PUP.BundleInstaller.SOL

v2015.04.25.01

McAfee

Artemis!EA10C569C548

5600.6785

MicroWorld eScan

Gen:Variant.Adware.Solimba.1

16.0.0.345

NANO AntiVirus

Riskware.Win32.Solimba.cudvtq

0.28.0.60253

Norman

Solimba.DIMI

11.20150425

nProtect

Trojan/W32.Agent.178536.B

13.04.19.03

Panda Antivirus

Adware/Solimba

15.04.25.01

Quick Heal

AdWare.MSIL.r3 (Not a Virus)

4.15.14.00

Reason Heuristics

Threat.Solimba.Bundler

15.4.24.21

Rising Antivirus

PE:PUF.FirseriaInstaller@CV!1.5C42

23.00.65.15423

Sophos

Solimba Installer

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Solimba

9915

Trend Micro House Call

TROJ_GEN.FCBCBKK

7.2.115

Trend Micro

TROJ_GEN.FCBCBKK

10.465.25

Vba32 AntiVirus

Downware.Morstar

3.12.26.0

VIPRE Antivirus

DownloadMR

29026

File size:

178.9 KB (183,160 bytes)

File type:

Executable application (Win32 EXE)

Bundler/Installer:

Solimba DownloadMR

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\avs media player.exe

Digital Signature

Signed by:

Solimba Aplicaciones S.L.

Authority:

VeriSign, Inc.

Valid from:

5/15/2011 8:00:00 PM

Valid to:

5/15/2013 7:59:59 PM

Subject:

CN=Solimba Aplicaciones S.L., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Solimba Aplicaciones S.L., L=Badalona, S=Barcelona, C=ES

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

450EE582E26020D5F7632F2BECC6C5BD

File PE Metadata

Compilation timestamp:

8/30/2011 11:46:24 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.21

CTPH (ssdeep):

3072:WnOn7t7XpdpCCTg/sxFgJTAG7uvC+LpdK+OL5jh8zV6sK/iWdMFAVYWh5d/GBcuR:WKpdcCrT4AGrqdK+G5tNeFAVYWPKcuSW

Entry address:

0x4327

Entry point:

55, 89, E5, 57, 56, 53, 81, EC, AC, 01, 00, 00, FF, 15, 74, 83, 42, 00, C7, 04, 24, 01, 80, 00, 00, FF, 15, 58, 84, 42, 00, 53, C7, 04, 24, 00, 00, 00, 00, FF, 15, 98, 84, 42, 00, 56, A3, 40, 6B, 42, 00, C7, 04, 24, 08, 00, 00, 00, E8, 8D, 3B, 00, 00, A3, 9C, 6B, 42, 00, 8D, 85, 84, FE, FF, FF, 57, C7, 44, 24, 10, 00, 00, 00, 00, C7, 44, 24, 0C, 60, 01, 00, 00, 89, 44, 24, 08, C7, 44, 24, 04, 00, 00, 00, 00, C7, 04, 24, 01, B3, 40, 00, FF, 15, AC, 84, 42, 00, 83, EC, 14, C7, 44, 24, 04, 02, B3, 40, 00, C7... 
[+]

Entropy:

7.4883

Code size:

34.5 KB (35,328 bytes)

Remove avs media player.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.