home

install_flash_player_ax.exe

Adobe Flash Player Installer/Uninstaller

Adobe Systems Incorporated

This is a setup and installation application. The file has been seen being downloaded from program.avast.com and multiple other hosts.
Publisher:
Adobe Systems Incorporated  (signed and verified)

Product:
Adobe® Flash® Player Installer/Uninstaller

Description:
Adobe® Flash® Player Installer/Uninstaller 11.9 r900

Version:
11,9,900,170

MD5:
9204b6c1497474f9327ed8b6739c4101

SHA-1:
5f660f218131d39a707557218c89fdec36f91c6e

SHA-256:
328496fdb71ddd4aa390f8ab6f458e7411ed089ab70d81b49e2ac173ba6be7a6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 2:36:23 AM UTC  (today)

File size:
16.4 MB (17,248,136 bytes)

Product version:
11,9,900,170

Copyright:
Copyright © 1996 Adobe Systems Incorporated

Trademarks:
Adobe® Flash® Player

Original file name:
FlashUtil.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
Adobe Systems Incorporated

Authority:
VeriSign, Inc.

Valid from:
2/24/2013 5:30:00 AM

Valid to:
2/26/2014 5:29:59 AM

Subject:
CN=Adobe Systems Incorporated, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=Flash Player - Fortnight, O=Adobe Systems Incorporated, L=San Jose, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2136329A167A6FD6BF4BB5E8778E0BFB

File PE Metadata
Compilation timestamp:
12/1/2013 11:38:12 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
393216:E7ra++KqIHEWZPWQ3Kbtj0W/zphY3XBBTIvaHXwNOtElfnvk9:QWzDgrKbtYczLY3x5IvakOtEl/o

Entry address:
0x1CC0C

Entry point:
E8, FB, 5B, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 56, 8B, 75, 0C, F6, 46, 0C, 40, 57, 75, 79, 56, E8, 8D, 09, 00, 00, 59, BA, 98, 15, 43, 00, 83, F8, FF, 74, 1B, 83, F8, FE, 74, 16, 8B, C8, 83, E1, 1F, 8B, F8, C1, FF, 05, C1, E1, 06, 03, 0C, BD, 40, 2D, 43, 00, EB, 02, 8B, CA, F6, 41, 24, 7F, 75, 26, 83, F8, FF, 74, 19, 83, F8, FE, 74, 14, 8B, C8, 83, E0, 1F, C1, F9, 05, C1, E0, 06, 03, 04, 8D, 40, 2D, 43, 00, EB, 02, 8B, C2, F6, 40, 24, 80, 74, 1F, E8, 45, 17, 00, 00, 33, FF, 57, 57, 57, 57, 57...
 
[+]

Entropy:
7.9980  (probably packed)

Code size:
160 KB (163,840 bytes)

The file install_flash_player_ax.exe has been discovered within the following program.

Toolwiz Care  by ToolWiz
Publisher's description - “ToolWiz Care is a set of free-of-charge tools designed to speed up your PC and give your system a full range of care.”
www.Toolwiz.com
4% remove it
 
Powered by Should I Remove It?

The file install_flash_player_ax.exe has been seen being distributed by the following 38 URLs.

http://program.avast.com/.../?action=2&p_aas=0&p_adp=0000&p_age=1&p_bid=60E881FBE60589490FA4C54059BE6F5120AD8D6FA9456DD3EBF6AAAB351D8CF9&p_cid=1&p_cpv=117442018&p_elm=59&p_idw=0&p_iid=0&p_inf=2&p_lan=1033&p_lci=1033&p_let=24&p_lex=7677&p_lic=0&p_lid=en-us&p_lng=en&p_lqa=0&p_lqe=0&p_lst=0&p_lsu=24&p_man=0&p_osv=6.1&p_pro=0&p_rcv=1&p_reh=768&p_rew=1366&p_vbd=1506&p_vep=7&p_ves=0&p_wnf=0

http://www.filepuma.com/file/1389650027c4806/adobe_flash_player_ie_11.9.900.170/.../0/

http://www.avast.com/program/.../?action=2&p_age=1832&p_bld=cnet2011&p_cid=1&p_cpv=100664663&p_elm=59&p_eml=chancedaniels31@yahoo.com&p_idw=0&p_iid=0&p_inf=0&p_lan=1033&p_lci=1033&p_let=24&p_lex=90&p_lic=0&p_lid=en-us&p_lit=3776776&p_lng=en&p_lqa=0&p_lqe=0&p_lst=0&p_lsu=24&p_man=0&p_osv=6.1&p_pro=0&p_rcv=1&p_reh=768&p_rew=1366&p_tri=0&p_uid=8adf&p_vbd=1367&p_vep=6&p_ves=0&p_wnf=0

https://program.avast.com/.../?action=2&p_aas=0&p_adp=0000&p_age=144&p_cid=1&p_cnm=HADJI-PC&p_cpv=117441986&p_elm=59&p_idw=0&p_iid=0&p_inf=50013&p_lan=1036&p_lci=1036&p_let=24&p_lex=29&p_lic=0&p_lid=fr-fr&p_lng=fr&p_lqa=0&p_lqe=0&p_lst=1&p_lsu=24&p_man=0&p_osv=6.1&p_pro=0&p_rcv=1&p_reh=900&p_rew=1600&p_vbd=1474&p_vep=7&p_ves=0&p_wnf=1

https://program.avast.com/.../?action=2&p_aas=0&p_adc=0&p_adp=0000&p_age=0&p_cid=1&p_cnm=REMUS-PC&p_cpv=134219210&p_elm=59&p_hid=2bfcf58f-a8b3-4801-b752-ea758b2d24ea&p_idw=0&p_iid=0&p_inf=0&p_lan=1048&p_lci=1048&p_let=24&p_lex=365&p_lic=0&p_lid=ro-ro&p_lng=ro&p_lqa=0&p_lqe=0&p_lst=0&p_lsu=24&p_man=0&p_mdc=0&p_osv=6.1&p_pro=0&p_reh=864&p_rew=1152&p_vbd=1482&p_vep=8&p_ves=0&p_wdc=0&p_wnf=0

http://program.avast.com/.../?action=2&p_aas=0&p_adp=0000&p_age=0&p_cid=0&p_cpv=117441986&p_elm=59&p_ext=chrome&p_idw=0&p_iid=0&p_inf=0&p_lan=3082&p_lci=3082&p_let=24&p_lex=172&p_lic=0&p_lid=es-es&p_lit=0&p_lng=es&p_lqa=0&p_lqe=0&p_lst=0&p_lsu=24&p_man=0&p_osv=6.1&p_pro=1&p_rcv=1&p_reh=768&p_rew=1280&p_vbd=1474&p_vep=7&p_ves=0&p_wnf=0

https://program.avast.com/.../?action=2&p_aas=0&p_adp=0000&p_age=8&p_cid=1&p_cnm=USER-PC&p_cpv=117441986&p_elm=59&p_idw=0&p_iid=0&p_inf=2&p_lan=1028&p_lci=1028&p_let=24&p_lex=8319&p_lic=0&p_lid=zh-tw&p_lng=tw&p_lqa=0&p_lqe=0&p_lst=0&p_lsu=24&p_man=0&p_osv=6.1&p_pro=0&p_rcv=1&p_reh=1050&p_rew=1680&p_vbd=1474&p_vep=7&p_ves=0&p_wnf=0

http://program.avast.com/.../?action=2&p_aas=0&p_adp=0000&p_age=18&p_bid=2B4A1CD5659E8C50E19A1F9633E8EBB1C2032AB13FF0F9C593E2F2A5A95A96EC&p_cid=1&p_cpv=117442792&p_elm=59&p_idw=0&p_iid=0&p_inf=3&p_lan=1046&p_lci=1046&p_let=24&p_lex=7755&p_lic=0&p_lid=pt-br&p_lng=pt&p_lqa=0&p_lqe=0&p_lst=0&p_lsu=24&p_man=0&p_osv=6.1&p_pro=0&p_rcv=1&p_reh=768&p_rew=1360&p_vbd=2280&p_vep=7&p_ves=0&p_wnf=0

https://program.avast.com/.../?action=2&p_aam=i8jsJjY6yOzMwQvi&p_aas=1&p_adp=0000&p_age=5037&p_cid=0&p_cnm=ADMIN-KOMPUTER&p_cpv=117442757&p_elm=59&p_idw=0&p_iid=0&p_inf=4&p_lan=1045&p_lci=1045&p_let=24&p_lex=346&p_lic=0&p_lid=pl-pl&p_lit=0&p_lng=pl&p_lqa=0&p_lqe=0&p_lst=0&p_lsu=24&p_man=0&p_osv=6.1&p_pro=2&p_rcv=1&p_reh=1050&p_rew=1680&p_tra=723&p_vbd=1506&p_vep=7&p_ves=0&p_wnf=0

http://program.avast.com/.../?action=2&p_aas=0&p_adp=0000&p_age=6&p_bid=374CCF03CE0AA178C7D5E209907125F70E83F2B7109E2EA1C3DD3AE077EF7D3F&p_cid=1&p_cis=0&p_cpv=117441978&p_elm=59&p_idw=0&p_iid=0&p_inf=2&p_lan=3082&p_lci=11274&p_let=24&p_lex=7872&p_lic=0&p_lid=es-ar&p_lng=es&p_lqa=0&p_lqe=0&p_lst=0&p_lsu=24&p_man=0&p_osv=5.1&p_pro=0&p_rcv=1&p_reh=600&p_rew=1024&p_vbd=1466&p_vep=7&p_ves=0&p_wnf=0

http://program.avast.com/.../?action=2&p_aas=0&p_age=28&p_bid=C8B7F2CE1D8596C3A14DFDDCDA12DDCEF0DBA5C9BA7ACF36CCEC0648E32668E9&p_cid=1&p_cpv=117441938&p_elm=59&p_idw=0&p_iid=0&p_inf=13&p_lan=3082&p_lci=3082&p_let=24&p_lex=8069&p_lic=0&p_lid=es-es&p_lit=0&p_lng=es&p_lqa=0&p_lqe=0&p_lst=0&p_lsu=24&p_man=0&p_osv=6.1&p_pro=0&p_rcv=1&p_reh=1080&p_rew=1920&p_uid=b943&p_vbd=1426&p_vep=7&p_ves=0&p_wnf=0

https://program.avast.com/.../?action=2&p_aas=0&p_age=423&p_cid=1&p_cnm=RICHARD-PC&p_cpv=117441938&p_elm=59&p_ext=chrome&p_idw=0&p_iid=0&p_inf=2&p_lan=3082&p_lci=12298&p_let=24&p_lex=0&p_lic=0&p_lid=es-ec&p_lng=es&p_lqa=0&p_lqe=0&p_lst=3&p_lsu=24&p_man=0&p_osv=6.1&p_pro=0&p_rcv=1&p_reh=800&p_rew=1280&p_uid=6dcf&p_vbd=1426&p_vep=7&p_ves=0&p_wnf=0

http://www.avast.com/program/.../?action=2&p_aas=0&p_adp=0000&p_age=0&p_cid=3&p_cis=T-000-564-C&p_cpv=117442018&p_elm=59&p_ext=chrome&p_idw=0&p_iid=0&p_inf=0&p_lan=1025&p_lci=3073&p_let=20&p_lex=20&p_lic=0&p_lid=ar-eg&p_lit=8&p_lng=ar&p_lqa=0&p_lqe=0&p_lst=3&p_lsu=0&p_man=0&p_osv=6.1&p_pro=2&p_rcv=1&p_reh=768&p_rew=1024&p_tra=0&p_vbd=1506&p_vep=7&p_ves=0&p_wnf=0

http://jezykiobce.net/install_flash_player_11_active_x.exe

ftp://drivers/Programs/.../install_flash_player_11.exe

http://dl.filehorse.com/win/browsers-and-plugins/.../Flash-Player-11.9.900.170-(IE).exe

http://www.avast.com/program/.../?action=2&p_aas=0&p_age=3344&p_cid=3&p_cpv=117442001&p_dst=301215&p_elm=59&p_ext=chrome&p_idw=0&p_iid=0&p_inf=0&p_lan=1036&p_lci=1036&p_let=20&p_lex=-942&p_lic=0&p_lid=fr-fr&p_lit=8&p_lng=fr&p_lqa=0&p_lqe=0&p_lst=5&p_lsu=0&p_man=0&p_osv=5.1&p_pro=2&p_rcv=1&p_reh=768&p_rew=1024&p_tra=961&p_uid=4901&p_vbd=1489&p_vep=7&p_ves=0&p_wnf=0

https://program.avast.com/api/?action=2&p_aam=K5Z8cAzsb7W2hYDe&p_aas=1&p_adc=0&p_adi=-1&p_adp=0000&p_age=64&p_chr=0&p_cid=106553822&p_cnm=OWNER-PC&p_cpu=5.6&p_cpv=150996962&p_elm=59&p_fib=-1&p_geo=us&p_hid=acac5945-e8d5-4804-96f5-10eb972174e5&p_inf=2&p_int=int-rnw-gf&p_elm=141&p_var=/is/en-us/.../results-improve-gf_non-licensed_90r3_default_fallback.html&p_jbw=3&p_jcr=0&p_jfs=0&p_jgb=781&p_jid=806b8cea-777b-df11-aa29-00266c58761b-00266c58761b&p_jka=14&p_jls=0&p_jlt=GF_SRV&p_jsw=1&p_jtb=0&p_jth=0&p_jts=1&p_jtw=9&p_lan=1033&p_lci=1033&p_let=24&p_lex=41&p_lic=c107df2c-d2eb-4c9e-a66b-4e4325fac305&p_lid=en-us&p_lit=10&p_lng=en&p_lqa=1&p_lqe=1&p_lst=0&p_lsu=12&p_man=0&p_mdc=0&p_midex=EB7DB4248F97C7B751C63F16F7568CD07944377FD49A8E811822C6207AF3&p_osv=6.1&p_pro=2&p_pup=0&p_ram=3963&p_reh=768&p_rew=1366&p_rid=312&p_slcs=0&p_sllex=-7&p_sllp=0&p_sllst=1&p_sllt=0&p_sts=0&p_tra=22&p_vbd=2018&p_vep=9&p_ves=0&p_wdc=0&p_wei=2.0&p_wnf=1&p_idl=0

http://fpdownload.macromedia.com/get/flashplayer/current/licensing/.../install_flash_player_11_active_x.exe

http://www.filepuma.com/file/1389390236c4806/adobe_flash_player_ie_11.9.900.170/.../0/

http://www.gezginler.net/indir/v/.../

http://www.filepuma.com/down/1387455235c4806/adobe_flash_player_ie_11.9.900.170/.../0/

http://www.filepuma.com/file/1387455235c4806/adobe_flash_player_ie_11.9.900.170/.../0/

http://files.avast.com/files/.../fl32.exe

http://program.avast.com/.../?action=2&p_aas=0&p_adp=0000&p_age=492&p_cid=1&p_cpv=117441978&p_elm=59&p_idw=0&p_iid=0&p_inf=52&p_lan=1036&p_lci=2060&p_let=24&p_lex=230&p_lic=0&p_lid=fr-be&p_lng=fr&p_lqa=0&p_lqe=0&p_lst=0&p_lsu=24&p_man=0&p_osv=6.1&p_pro=0&p_rcv=1&p_reh=1050&p_rew=1680&p_vbd=1466&p_vep=7&p_ves=0&p_wnf=6

https://program.avast.com/api/.../budapest&p_vbd=2013&p_vep=9&p_ves=0&p_wdc=0&p_wei=-1,0&p_wnf=2

http://www.filepuma.com/file/1388033790c4806/adobe_flash_player_ie_11.9.900.170/.../0/

http://www.filepuma.com/down/1388033790c4806/adobe_flash_player_ie_11.9.900.170/.../0/

http://www.filepuma.com/file/1388739907c4806/adobe_flash_player_ie_11.9.900.170/.../0/

http://www.filepuma.com/down/1388739907c4806/adobe_flash_player_ie_11.9.900.170/.../0/

Latest 30 of 38 download URLs

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.