home

setdefault.exe

Avant Force

This is installed with Avant Browser (remove only).
Publisher:
Avant Force  (signed and verified)

MD5:
4506449a4928d3ec07cff333d66be3c1

SHA-1:
f0d5471c01ed6f7e13d751f9ad20f6beaddb87ee

SHA-256:
2a83dd44a153662165a7697e9c66e2b363420e5900927a2957de6632376c954b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/16/2024 6:18:29 AM UTC  (today)

File size:
92.3 KB (94,488 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\avant browser\setdefault.exe

Digital Signature
Signed by:
Avant Force

Authority:
VeriSign, Inc.

Valid from:
4/12/2012 5:30:00 AM

Valid to:
7/4/2014 5:29:59 AM

Subject:
CN=Avant Force, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Avant Force, L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2FC60B240221AF2FD7C73B0BEC20389D

File PE Metadata
Compilation timestamp:
8/19/2013 12:43:20 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
1536:MQQ2nTtU36BQZmgqlQH9UAnfXdCyRuu58AD6rByL4ZZ3liLDs9vQk9b1:MQQ2nxD6Zilm5XdCyRuu5866rAOZViLo

Entry address:
0x127E8

Entry point:
55, 8B, EC, 83, C4, EC, 33, C0, 89, 45, EC, B8, 98, 11, 41, 00, E8, C7, 33, FF, FF, 33, C0, 55, 68, 64, 28, 41, 00, 64, FF, 30, 64, 89, 20, 6A, 00, E8, 92, 35, FF, FF, 8D, 55, EC, B8, 01, 00, 00, 00, E8, 1D, 09, FF, FF, 8B, 45, EC, BA, 78, 28, 41, 00, E8, D8, 1F, FF, FF, 75, 0C, E8, BD, E4, FF, FF, E8, 2C, E6, FF, FF, EB, 0F, E8, 5D, DB, FF, FF, E8, F0, E6, FF, FF, E8, F7, E7, FF, FF, E8, 5E, 35, FF, FF, 33, C0, 5A, 59, 59, 64, 89, 10, 68, 6B, 28, 41, 00, 8D, 45, EC, E8, 9D, 1B, FF, FF, C3, E9, FF, 14, FF...
 
[+]

Entropy:
6.5048

Developed / compiled with:
Microsoft Visual C++

Code size:
67.5 KB (69,120 bytes)

The file setdefault.exe has been discovered within the following program.

Avant Browser (remove only)  by Avant Force
The software is typically bundled with third party installers such as Open Candy. "A free web browser with many built-in features including a video downloader, download accelerator, ad/pop-up blocker, RSS reader, plus much more."
www.avantbrowser.com
30% remove it
 
Powered by Should I Remove It?

Scan setdefault.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.