home

AVScanningService.exe

Preventon AV Scanning Service

Preventon Technologies Limited

It runs as a separate (within the context of its own process) windows Service named “AV Engine Scanning Service”.
Publisher:
Preventon Technologies Limited  (signed and verified)

Product:
Preventon AV Scanning Service

Version:
1.4.137

MD5:
02cfdc7228c36e2adec2f4352a60872a

SHA-1:
118c784e622981e63290f5d4e5f518baa4a7b61d

SHA-256:
756fd27f74588feffd75570ce07dbf23c3766cbd75bc9f7e04a3deeabd66b819

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 5:26:56 AM UTC  (today)

File size:
738.9 KB (756,648 bytes)

Product version:
1.4.137

Copyright:
Preventon Technologies Limited Copyright (C) 2010

Original file name:
AVScanningService.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\common files\common toolkit suite\avengine\avscanningservice.exe

Digital Signature
Signed by:
Preventon Technologies Limited

Authority:
VeriSign, Inc.

Valid from:
5/31/2010 7:00:00 PM

Valid to:
6/10/2011 6:59:59 PM

Subject:
CN=Preventon Technologies Limited, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Preventon Technologies Limited, L=Mayfair, S=London, C=GB

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
062F0E79D429C502E50777927CA18174

File PE Metadata
Compilation timestamp:
6/21/2010 6:08:41 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
8.0

CTPH (ssdeep):
12288:xKtuDf3bOTTNaQD8Kcmp9WWk9aeWmrC1EdnGJUq6VPnrE8L4rrk:wtuDf33mjWWqLdGqq6Vjv4/k

Entry address:
0x70D68

Entry point:
E8, CB, 06, 00, 00, E9, 42, FD, FF, FF, FF, 25, AC, F5, 4A, 00, FF, 25, B0, F5, 4A, 00, FF, 25, B4, F5, 4A, 00, FF, 25, B8, F5, 4A, 00, FF, 25, BC, F5, 4A, 00, FF, 25, C0, F5, 4A, 00, FF, 25, C4, F5, 4A, 00, FF, 25, C8, F5, 4A, 00, FF, 25, CC, F5, 4A, 00, FF, 25, D0, F5, 4A, 00, FF, 25, D4, F5, 4A, 00, FF, 25, D8, F5, 4A, 00, FF, 25, DC, F5, 4A, 00, FF, 25, E0, F5, 4A, 00, FF, 25, E4, F5, 4A, 00, FF, 25, E8, F5, 4A, 00, FF, 25, EC, F5, 4A, 00, FF, 25, F0, F5, 4A, 00, FF, 25, F4, F5, 4A, 00, FF, 25, F8, F5...
 
[+]

Entropy:
5.6865

Code size:
568 KB (581,632 bytes)

Service
Display name:
AV Engine Scanning Service

Type:
Win32OwnProcess


Scan AVScanningService.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.