home

setdefault.exe

Avant Force

This is installed with Avant Browser (remove only).
Publisher:
Avant Force  (signed and verified)

MD5:
bc829e717364b97c46f8e906f882f005

SHA-1:
ed5d0b93f6f7f396615fecb485427e3cd6743942

SHA-256:
e0c01221d19d7bd655b250d653e6be3303b0ec2d17595b460d7912dc99c709b6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 12:28:53 PM UTC  (today)

File size:
92.3 KB (94,488 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\avant browser\setdefault.exe

Digital Signature
Signed by:
Avant Force

Authority:
VeriSign, Inc.

Valid from:
4/11/2012 8:00:00 PM

Valid to:
7/3/2014 7:59:59 PM

Subject:
CN=Avant Force, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Avant Force, L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2FC60B240221AF2FD7C73B0BEC20389D

File PE Metadata
Compilation timestamp:
3/10/2013 5:23:00 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
1536:mQQ2nTtU36BQZmgqlQH9UAnfXdCyRuu58AD6rByL4ZZ3liLDs9vQj9bs2:mQQ2nxD6Zilm5XdCyRuu5866rAOZViL1

Entry address:
0x127E8

Entry point:
55, 8B, EC, 83, C4, EC, 33, C0, 89, 45, EC, B8, 98, 11, 41, 00, E8, C7, 33, FF, FF, 33, C0, 55, 68, 64, 28, 41, 00, 64, FF, 30, 64, 89, 20, 6A, 00, E8, 92, 35, FF, FF, 8D, 55, EC, B8, 01, 00, 00, 00, E8, 1D, 09, FF, FF, 8B, 45, EC, BA, 78, 28, 41, 00, E8, D8, 1F, FF, FF, 75, 0C, E8, BD, E4, FF, FF, E8, 2C, E6, FF, FF, EB, 0F, E8, 5D, DB, FF, FF, E8, F0, E6, FF, FF, E8, F7, E7, FF, FF, E8, 5E, 35, FF, FF, 33, C0, 5A, 59, 59, 64, 89, 10, 68, 6B, 28, 41, 00, 8D, 45, EC, E8, 9D, 1B, FF, FF, C3, E9, FF, 14, FF...
 
[+]

Entropy:
6.5047

Developed / compiled with:
Microsoft Visual C++

Code size:
67.5 KB (69,120 bytes)

The file setdefault.exe has been discovered within the following program.

Avant Browser (remove only)  by Avant Force
The software is typically bundled with third party installers such as Open Candy. "A free web browser with many built-in features including a video downloader, download accelerator, ad/pop-up blocker, RSS reader, plus much more."
www.avantbrowser.com
30% remove it
 
Powered by Should I Remove It?

Scan setdefault.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.