We received the file NETWORKWIDGETSERVICE.EXE and detected that NETWORKWIDGETSERVICE.EXE is not good.
NETWORKWIDGETSERVICE.EXE is Adware. You should remove the file NETWORKWIDGETSERVICE.EXE.
Kill the process NETWORKWIDGETSERVICE.EXE and remove NETWORKWIDGETSERVICE.EXE from Windows.
Malware Analysis of NETWORKWIDGETSERVICE.EXE
Full path on a computer: %Common Appdata%\NetworkWidget\NetworkWidgetService.exe
Detected by UnHackMe:
NETWORKWIDGETSERVICE.EXE
Default location: %Common Appdata%\NetworkWidget\NetworkWidgetService.exe
Removal Results: Success
Number of reboot: 1
NETWORKWIDGETSERVICE.EXE is known as:
Adware.Agent.71248
NETWORKWIDGETSERVICE.EXE hash:
- MD5: 4733d74e4ac4a258cd695a26d8f96d57
How to quickly detect NETWORKWIDGETSERVICE.EXE presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKLM\Software\Microsoft\Windows\CurrentVersion\Run\NetworkWidget: “%Common Appdata%\NetworkWidget\NetworkWidget.exe”
- HKLM\System\CurrentControlSet\Services\NetworkWidgetService\Security\Security: 01 00 14 80 90 00 00 00 9C 00 00 00 14 00 00 00 30 00 00 00 02 00 1C 00 01 00 00 00 02 80 14 00 FF 01 0F 00 01 01 00 00 00 00 00 01 00 00 00 00 02 00 60 00 04 00 00 00 00 00 14 00 FD 01 02 00 01 01 00 00 00 00 00 05 12 00 00 00 00 00 18 00 FF 01 0F 00 01 02 00 00 00 00 00 05 20 00 00 00 20 02 00 00 00 00 14 00 8D 01 02 00 01 01 00 00 00 00 00 05 0B 00 00 00 00 00 18 00 FD 01 02 00 01 02 00 00 00 00 00 05 20 00 00 00 23 02 00 00 01 01 00 00 00 00 00 05 12 00 00 00 01 01 00 00 00 00 00 05 12 00 00 00
- HKLM\System\CurrentControlSet\Services\NetworkWidgetService\Type: 0×00000010
- HKLM\System\CurrentControlSet\Services\NetworkWidgetService\Start: 0×00000002
- HKLM\System\CurrentControlSet\Services\NetworkWidgetService\ErrorControl: 0×00000001
- HKLM\System\CurrentControlSet\Services\NetworkWidgetService\ImagePath: “%Common Appdata%\NetworkWidget\NetworkWidgetService.exe”
- HKLM\System\CurrentControlSet\Services\NetworkWidgetService\DisplayName: “NetworkWidgetService”
- HKLM\System\CurrentControlSet\Services\NetworkWidgetService\DependOnService: ‘RPCSS’
- HKLM\System\CurrentControlSet\Services\NetworkWidgetService\DependOnGroup: 00
- HKLM\System\CurrentControlSet\Services\NetworkWidgetService\ObjectName: “LocalSystem”
- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\NetworkWidget: “”%Common Appdata%\NetworkWidget\NetworkWidget.exe”"
- HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\NetworkWidget\UninstallString: “”%Common Appdata%\NetworkWidget\NetworkWidget.exe” -uninstall”
- HKLM\System\CurrentControlSet\Services\BITS\Start: 0×00000003
Folders:- %Common Appdata%\NetworkWidget
Files:- %Common Appdata%\NetworkWidget\NetworkWidget.exe
- %Common Appdata%\NetworkWidget\NetworkWidgetService.exe