File details
File name: avgidsagent.exe
Name: AVG Internet Security
Description: AVG Identity Protection Service
Version: 14.0.0.4592
Size: 3.48 MB
Original file name: AVGIDSAgent.exe
Digital certificate
Certificate authority:
VeriSign
Expiration date: 1/5/2015
Resource utilization
 | CPU utilization averages |
Total CPU: 0.0000151676%
Privileged CPU:
0.0000038654%

User CPU:
0.00001130225181%

Privileged CPU time: 123171.88 ms
Privileged CPU time /min: 14 ms
CPU cycle count:
1,657,754,716
CPU cycle count /min: 141,007,356
 | Memory utilization averages |
Committed memory:
279.62 MB
Peak committed memory: 437.19 MB
Paged memory:
19.27 MB
Peak paged memory: 26.15 MB
Paged system memory:
475.96 KB
Non-paged system memory: 31.3 KB
Working set memory:
24.66 MB
Peak working set memory: 32.15 MB
Min working set memory: 17.13 MB
Private memory:
19.27 MB
Page faults:
498,961
Page faults /min: 55
 | Process I/O averages |
Total read operations:
886,324
Read operations /min: 97
Total read transfer: 1.79 GB
Read transfer /min: 206.83 KB
Total write operations:
107,520
Write operations /min: 12
Total write transfer: 52.32 MB
Write transfer /min: 5.89 KB
Total other operations:
2,294,716
Other operations /min: 252
Total other transfer: 33.89 MB
Other Transfer /min: 3.82 KB
Resources
Handle count average: 563
Thread count average: 30
Thread resource averages
Total CPU: 0.003888825027%
Privileged CPU: 0.001060234018%
User CPU: 0.002828591009%
CPU Cycle count /sec: 110,423
Module memory size: 3.5 MB
Process details
Runs as (owner): System
Integrety level: System
Windows platform: 64-bit
Runs as a service: Yes
Process Command
"C:\Program Files\AVG\AVG2014\avgidsagent.exe"
Service details
Name: AVGIDSAgent
Service type:
Win32OwnProcess
Description: “Provides Identity Protection Against Cyber Crime.”
Image hashes
MD5: 561ce09c52f6e945ed4ce7e173d1f542
SHA-1: 3f916bc6474a4197589207663cef446b6a59961a
PE image details
Subsystem: Windows Console
Langauge*: Microsoft Visual C++ 10.0
File packed: No
Import Table
advapi32.dll

RegQueryInfoKeyW
RegOpenKeyExW
UnlockServiceDatabase
LockServiceDatabase
EnumServicesStatusW
QueryServiceConfig2W
DeleteService
RegCloseKey
CreateServiceW
CloseServiceHandle
OpenSCManagerW
ChangeServiceConfig2W
StartServiceW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
OpenServiceW
RegQueryValueExW
RegEnumKeyExW
QueryServiceConfigW
StartServiceCtrlDispatcherW
RegisterServiceCtrlHandlerExW
ChangeServiceConfigW
SetServiceStatus
DuplicateToken
avgntopensslx.dll

X509_verify_cert_error_string
ERR_error_string
X509_STORE_set_flags
BIO_free
ERR_error_string_n
RAND_status
ASN1_STRING_print
BN_num_bits
X509_EXTENSION_get_critical
X509_get_subject_name
ASN1_STRING_to_UTF8
i2t_ASN1_OBJECT
GENERAL_NAMES_free
X509_NAME_ENTRY_get_data
X509_NAME_print_ex
X509_get_issuer_name
sk_value
sk_num
ERR_peek_error
OPENSSL_add_all_algorithms_noconf
X509_NAME_get_entry
PEM_write_bio_X509
X509V3_EXT_print
CRYPTO_cleanup_all_ex_data
ERR_free_strings
X509_check_issued
X509_get_serialNumber
EVP_PKEY_copy_parameters
X509_NAME_get_index_by_NID
ASN1_STRING_type
ERR_clear_error
CRYPTO_free
X509_get_ext_d2i
X509_EXTENSION_get_object
ERR_remove_state
X509_STORE_add_lookup
ERR_get_error
BN_bn2bin
ASN1_INTEGER_get
ASN1_STRING_length
MD5_Update
MD5_Init
MD5_Final
RSA_generate_key
X509_get_pubkey
X509_free
ASN1_STRING_data
SSL_load_error_strings
X509_STORE_CTX_get_current_cert
EVP_cleanup
EVP_PKEY_free
EVP_bf_ecb
EVP_sha1
BIO_push
EVP_BytesToKey
BIO_puts
BIO_read
BIO_free_all
SHA1
RSA_verify
BN_bin2bn
CRYPTO_malloc
EVP_CIPHER_CTX_set_key_length
EVP_DecryptInit
EVP_CIPHER_CTX_cleanup
EVP_EncryptInit
BIO_new
EVP_DecryptUpdate
BIO_ctrl
EVP_CIPHER_CTX_block_size
EVP_DecryptFinal
BIO_s_mem
BIO_f_base64
RSA_public_decrypt
RSA_size
avgopensslx.dll

SSL_connect
SSL_set_session
SSL_get_peer_cert_chain
SSL_ctrl
SSL_CTX_check_private_key
PEM_read_X509
SSL_set_fd
RAND_load_file
SSL_CTX_set_cipher_list
SSL_peek
SSL_get1_session
SSLv23_client_method
SSL_library_init
SSL_set_connect_state
SSL_get_privatekey
SSL_read
SSL_CTX_free
SSL_free
SSL_write
SSL_CTX_new
RAND_file_name
SSL_CTX_use_certificate_file
SSL_CTX_set_default_passwd_cb_userdata
X509_load_crl_file
SSL_CTX_use_PrivateKey_file
SSL_get_current_cipher
SSL_shutdown
SSL_CTX_set_default_passwd_cb
SSL_pending
SSL_CTX_callback_ctrl
SSL_CTX_use_certificate_chain_file
TLSv1_client_method
SSL_get_certificate
SSL_new
SSL_CTX_load_verify_locations
SSL_CIPHER_get_name
SSL_get_error
X509_LOOKUP_file
SSLv2_client_method
SSL_get_peer_certificate
SSLv3_client_method
SSL_CTX_ctrl
SSL_get_verify_result
SSL_SESSION_free
SSL_CTX_set_verify
avgsysx.dll
iphlpapi.dll

kernel32.dll

SleepEx
GetVersionExA
GetStdHandle
GetFileType
ExpandEnvironmentStringsA
GetSystemDirectoryA
GetTempPathW
GetDriveTypeW
QueryDosDeviceW
GetDiskFreeSpaceExW
HeapCompact
SetProcessWorkingSetSize
LocalReAlloc
MoveFileExW
VirtualQueryEx
GetTickCount
QueryPerformanceCounter
HeapSetInformation
DecodePointer
EncodePointer
FormatMessageA
InterlockedCompareExchange
LoadLibraryA
LCMapStringW
GetStringTypeExW
SetThreadPriority
GetUserDefaultLCID
FileTimeToSystemTime
GetSystemInfo
SetFileAttributesW
FreeLibrary
FlushFileBuffers
ReadFile
WriteFile
WaitNamedPipeW
PeekNamedPipe
InterlockedExchange
GetSystemTimeAsFileTime
SetEvent
SetThreadAffinityMask
GetCurrentThread
GetVersion
LoadLibraryW
GetProcessHeap
HeapFree
BackupRead
GetFileAttributesW
DuplicateHandle
GetVersionExW
GetProcAddress
GetModuleHandleW
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
ReleaseMutex
OpenProcess
WaitForSingleObject
CreateMutexW
GetLocaleInfoW
SetLastError
FindNextFileW
FindClose
FindFirstFileW
ExpandEnvironmentStringsW
LocalAlloc
GetCurrentProcess
MultiByteToWideChar
GetSystemTime
LocalFree
FileTimeToLocalFileTime
BackupWrite
GetLongPathNameW
FormatMessageW
WideCharToMultiByte
SystemTimeToFileTime
GetTempFileNameW
FileTimeToDosDateTime
WaitForMultipleObjectsEx
CancelIo
DeviceIoControl
GetLastError
GetOverlappedResult
CreateFileW
WaitForMultipleObjects
CreateProcessW
GetCurrentProcessId
CloseHandle
GetCurrentThreadId
CreateEventW
SetUnhandledExceptionFilter
QueryPerformanceFrequency
GetProcessTimes
Sleep
IsProcessorFeaturePresent
SetFilePointer
msvcp100.dll
msvcp110.dll
msvcp90.dll
msvcr100.dll
msvcr110.dll
msvcr90.dll
ntdll.dll

LdrLoadDll
LdrGetProcedureAddress
RtlInitAnsiString
LdrUnloadDll
islower
isupper
isprint
isgraph
isalpha
isalnum
RtlAcquirePebLock
ZwAllocateVirtualMemory
ZwFreeVirtualMemory
ZwQueryVirtualMemory
ZwTerminateProcess
ZwCreateFile
RtlFreeUnicodeString
RtlNtStatusToDosError
ZwSetEvent
ZwWaitForSingleObject
RtlAllocateHeap
RtlReAllocateHeap
RtlFreeHeap
RtlAddVectoredExceptionHandler
RtlRemoveVectoredExceptionHandler
ZwWaitForMultipleObjects
ZwDuplicateObject
ZwClose
RtlInitUnicodeString
ZwCreateEvent
RtlCreateUserProcess
ZwResumeThread
memmove
isdigit
qsort
strncmp
strrchr
strncpy
_stricmp
strtol
strstr
sscanf
isxdigit
strtoul
ZwOpenSection
RtlReleasePebLock
ZwFsControlFile
ZwReadFile
ZwMapViewOfSection
ZwFlushVirtualMemory
ZwQuerySystemInformation
ZwSetInformationFile
ZwUnmapViewOfSection
ZwFlushBuffersFile
ZwCreateSection
ZwQueryInformationFile
_aullrem
_alldiv
_chkstk
_aulldvrm
_allrem
ZwWriteFile
ZwQueryInformationProcess
ZwReadVirtualMemory
RtlUpcaseUnicodeChar
ZwOpenFile
ZwOpenProcess
RtlCreateUnicodeString
ZwCreateNamedPipeFile
ZwSetInformationThread
ZwDeviceIoControlFile
ZwCancelIoFile
ZwReleaseMutant
ZwReleaseSemaphore
ZwCreateSemaphore
ZwOpenSymbolicLinkObject
ZwQuerySymbolicLinkObject
LdrShutdownThread
CsrClientCallServer
ZwTerminateThread
ZwOpenKey
ZwQueryKey
RtlOpenCurrentUser
ZwEnumerateKey
ZwDeleteKey
ZwQueryInformationToken
ZwLoadKey
ZwEnumerateValueKey
ZwQueryValueKey
ZwSaveKey
ZwAdjustPrivilegesToken
ZwSetValueKey
ZwDeleteValueKey
ZwCreateKey
ZwRestoreKey
ZwQueryInformationThread
RtlCreateUserThread
ZwDelayExecution
ZwResetEvent
_allshr
psapi.dll

EnumProcesses
GetModuleFileNameExW
EnumProcessModules
user32.dll

version.dll

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
wininet.dll

ws2_32.dll

WSCEnumProtocols
WSAEnumNameSpaceProvidersW
WSCUnInstallNameSpace
WSCDeinstallProvider
WSCGetProviderPath