AvastUi.exe
avast! Antivirus by AVAST Software (Signed)
Version: | 7.0.1466.549 |
MD5: | bad0d303ef0a519409c625738f3e10a3 |
SHA1: | 94e7f605443469cf82d243b74b1e733fb6f64d59 |
SHA256: | 13921c0e9cd8c40899a090d4f46f81b6ae2244d402fffa30ff7e88a9a58fa063 |
What is AvastUi.exe?
avast! Antivirus is a full-featured antivirus and anti-spyware scanning and removal product. Avast offers a web-reputation browser extension as well as virtualization technology. Accurate threat updates via avast updates are delivered automatically using PUSH update technology in Avast! Antivirus.
About AvastUi.exe (from AVAST Software)
“Free antivirus with anti-spyware protection for Windows. AVAST Software leads the security software industry – protecting 160 million PCs, Macs and Mobiles around the globe – by distributing FREE anti”
Details
File name: | avastui.exe |
Publisher: | AVAST Software |
Product name: | avast! Antivirus |
Typical file path: | C:\Program Files\avast software\avast\avastui.exe |
File version: | 7.0.1466.549 |
Size: | 4.08 MB (4,282,728 bytes) |
Certificate |
Issued to: | AVAST Software |
Authority (CA): | VeriSign |
Expiration date: | Friday, January 31, 2014 |
Digital DNA |
PE subsystem: | Windows GUI |
File packed: | No |
Code language: | Microsoft Visual C++ 9.0 |
.NET CLR: | No |
More details
Behaviors
Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
- 'avast5' → C:\Program Files1\ALWILS~1\Avast5\avastUI.exe /nogui
- 'avast' → "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
Scheduled tasks
- Entry path '\{BE644B67-0FC9-4E09-8921-3C92C4187F59}'
- Entry path '\{A2010245-7908-40CE-A115-79DFB422FB5C}'
- Entry path '\{83E22DC4-C629-429D-A5B9-3DBF2B43476D}'
- Entry path '\{59B20A91-C364-4477-841A-79D826383F80}'
- Entry path '\{D9C949DF-1FF9-49D3-92E4-FF09ADEE4B9E}'
Windows firewall allowed programs
Exceptions allow programs to access to the Internet through an outbound connections
- Firewall exception for 'C:\Program Files\AVAST Software\Avast\AvastUI.exe'
- Firewall exception for 'C:\Programmer\Alwil Software\Avast5\AvastUI.exe'
Network connections
Access through an approved Windows firewall exception
[TCP] iad23s07-in-f6.1e100.net (74.125.228.70:80)
[TCP] a23-3-254-13.deploy.akamaitechnologies.com (23.3.254.13:80)
[TCP] LB140.LOND.COTENDO.net (94.127.74.190:80)
[TCP] a309he.avast.com (46.4.28.78:80)
[TCP] LB140.SANJ.COTENDO.net (208.93.137.190:80)
[TCP] LB140.NYNY.COTENDO.net (208.93.143.190:80)
Resource utilization
(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
CPU |
Total CPU: | 0.05295960% | |
Kernel CPU: | 0.00685782% | |
User CPU: | 0.04610178% | |
Kernel CPU time: | 10,224,829 ms/min | |
CPU cycles: | 6,760,243/sec | |
Context switches: | 44/sec | |
Memory |
Private memory: | 9.13 MB | |
Private (maximum): | 11.07 MB | |
Private (minimum): | 4.77 MB | |
Non-paged memory: | 9.13 MB | |
Virtual memory: | 126.16 MB | |
Virtual memory (peak): | 141.61 MB | |
Working set: | 8.16 MB | |
Working set (peak): | 15.5 MB | |
Page faults: | 78,329/min | |
I/O |
I/O read transfer: | 208.27 KB/sec | |
I/O read operations: | 30/sec | |
I/O write transfer: | 10 Bytes/sec | |
I/O write operations: | 1/sec | |
I/O other transfer: | 9.63 KB/sec | |
I/O other operations: | 751/sec | |
Resource allocations |
Threads: | 17 | |
Handles: | 302 | |
GUI GDI count: | 155 | |
GUI GDI peak: | 211 | |
GUI USER count: | 33 | |
GUI USER peak: | 36 | |
Process properties
Tray notification: | Yes |
Integrety level: | Medium |
Platform: | 32-bit |
Command lines: |
- "C:\Program Files\avast software\avast\avastui.exe" /nogui
- "C:\Program Files\alwil software\avast5\avastui.exe" /nogui
- "C:\?????\avastui.exe" /nogui
- "C:\Program Files\avast software\avast\avastui.exe"
|
Owner: | User |
Parent process: | explorer.exe (Windows Explorer by Microsoft Corporation) |
Threads
Averages
AvastUI.exe (main module) |
Total CPU: | 0.45124435% | |
Kernel CPU: | 0.17743259% | |
User CPU: | 0.27381176% | |
CPU cycles: | 12,490,743/sec | |
Context switches: | 7/sec | |
Memory: | 4.08 MB | |
WINMM.dll |
Total CPU: | 0.02374629% | |
Kernel CPU: | 0.02374629% | |
User CPU: | 0.00000000% | |
CPU cycles: | 443,701/sec | |
Context switches: | 1/sec | |
Memory: | 200 KB | |
WININET.dll |
Total CPU: | 0.00795859% | |
Kernel CPU: | 0.00000000% | |
User CPU: | 0.00795859% | |
CPU cycles: | 260,676/sec | |
Context switches: | 1/sec | |
Memory: | 980 KB | |
ntdll.dll |
Total CPU: | 0.00795853% | |
Kernel CPU: | 0.00000000% | |
User CPU: | 0.00795853% | |
CPU cycles: | 190,258/sec | |
Memory: | 1.23 MB | |
MSVCR90.dll |
Total CPU: | 0.00030166% | |
Kernel CPU: | 0.00002564% | |
User CPU: | 0.00027602% | |
CPU cycles: | 757/sec | |
Memory: | 652 KB | |
aavm4h.dll (avast! Antivirus by AVAST Software) |
Total CPU: | 0.00010812% | |
Kernel CPU: | 0.00009650% | |
User CPU: | 0.00001162% | |
CPU cycles: | 91,785/sec | |
Context switches: | 2/sec | |
Memory: | 368 KB | |
RPCRT4.dll |
Total CPU: | 0.00003001% | |
Kernel CPU: | 0.00000000% | |
User CPU: | 0.00003001% | |
CPU cycles: | 576/sec | |
Memory: | 776 KB | |
Common loaded modules
These are modules that are typiclaly loaded within the context of this process.
Distribution by Windows OS
OS version | distribution |
Windows 7 Home Premium |
29.00% |
|
Windows 7 Ultimate |
23.50% |
|
Microsoft Windows XP |
17.00% |
|
Windows 7 Professional |
10.00% |
|
Windows Vista Home Premium |
5.50% |
|
Windows 8 |
4.00% |
|
Windows 8 Pro |
3.00% |
|
Windows Vista Home Basic |
2.00% |
|
Windows 7 Home Basic |
2.00% |
|
Windows Vista Business |
1.00% |
|
Windows 7 Enterprise |
1.00% |
|
Windows Seven Black Edition |
1.00% |
|
Windows 7 Starter |
1.00% |
|
Distribution by country
United States installs about 31.66% of avast! Antivirus.
Distribution by PC manufacturer
PC Manufacturer | distribution |
Dell |
21.29% |
|
Toshiba |
15.97% |
|
Hewlett-Packard |
13.69% |
|
Acer |
12.93% |
|
ASUS |
10.65% |
|
Intel |
7.60% |
|
Lenovo |
4.56% |
|
Samsung |
3.80% |
|
American Megatrends |
2.28% |
|
GIGABYTE |
1.90% |
|
Sony |
1.52% |
|
MSI |
1.52% |
|
Medion |
1.52% |
|
Packard Bell |
0.76% |
|