We received the file UPDATERSERVICE.EXE and detected that UPDATERSERVICE.EXE is not good.
UPDATERSERVICE.EXE is Adware. You should remove the file UPDATERSERVICE.EXE.
Kill the process UPDATERSERVICE.EXE and remove UPDATERSERVICE.EXE from Windows.
Malware Analysis of UPDATERSERVICE.EXE
Full path on a computer: %Appdata%\UpdateServ\UpdaterService.exe
Detected by UnHackMe:
UPDATERSERVICE.EXE
Default location: %Appdata%\UpdateServ\UpdaterService.exe
Removal Results: Success
Number of reboot: 1
UPDATERSERVICE.EXE is known as:
Adware.Conduit.47
UPDATERSERVICE.EXE hash:
- MD5: c724d62f49e5c8f35efd86edde1146cd
How to quickly detect UPDATERSERVICE.EXE presence?
Registry:
- HKLM\System\CurrentControlSet\Services\WinDevSrv\ImagePath: “”%Appdata%\UpdateServ\UpdaterService.exe”"
- HKLM\System\CurrentControlSet\Services\WinDevSrv\DisplayName: “WinDevSrv”
Folders:
- %Appdata%\UpdateServ
- %Common Appdata%\UpdateCommon
Files:
- %Appdata%\UpdateServ\download.dat
- %Appdata%\UpdateServ\UpdaterService.exe
- %Common Appdata%\UpdateCommon\updaterinfo