We received the file UPDATE_CHECKER.EXE and detected that UPDATE_CHECKER.EXE is not good.
UPDATE_CHECKER.EXE is Adware. You should remove the file UPDATE_CHECKER.EXE.
Kill the process UPDATE_CHECKER.EXE and remove UPDATE_CHECKER.EXE from Windows.
Malware Analysis of UPDATE_CHECKER.EXE
Full path on a computer: %Local Appdata%\FilesFrog Update Checker\update_checker.exe
Detected by UnHackMe:
UPDATE_CHECKER.EXE
Default location: %Local Appdata%\FilesFrog Update Checker\update_checker.exe
Removal Results: Success
Number of reboot: 1
UPDATE_CHECKER.EXE is known as:
Adware.Somoto.20, PUP.MultiToolbar.A, a variant of Win32.Somoto.D
UPDATE_CHECKER.EXE hash:
- MD5: cbb55c7bed11fe4f995159bca9904a29
The file is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
How to quickly detect UPDATE_CHECKER.EXE presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKLM\Software\Classes\sdp\shell\open\command\: “”%Local Appdata%\FilesFrog Update Checker\update_checker.exe” /protocol %1″
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker\DisplayName: “FilesFrog Update Checker”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker\UninstallString: “%Local Appdata%\FilesFrog Update Checker\uninstall.exe”
- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\SDP: “%Local Appdata%\FilesFrog Update Checker\update_checker.exe /auto ”
Folders:- %Local Appdata%\FilesFrog Update Checker
- %Programs%\FilesFrog Update Checker
- %Common Appdata%\Microsoft\Dr Watson
Files:- %Desktop%\Check for Updates.lnk
- %Local Appdata%\Google\Chrome\User Data\Default\Cache\f_000092
- %Local Appdata%\Google\Chrome\User Data\Default\Cache\f_000093
- %Local Appdata%\Google\Chrome\User Data\Default\Extension Rules\000032.log
- %Local Appdata%\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-000031
- %Local Appdata%\Google\Chrome\User Data\Default\Extension State\000018.ldb
- %Local Appdata%\Google\Chrome\User Data\Default\Extension State\000019.log
- %Local Appdata%\Google\Chrome\User Data\Default\Extension State\MANIFEST-000017
- %Local Appdata%\Google\Chrome\User Data\Default\Local Extension Settings\pafkbggdmjlpgkdkcbjmhmfcdpncadgh\000005.ldb
- %Local Appdata%\Google\Chrome\User Data\Default\Local Extension Settings\pafkbggdmjlpgkdkcbjmhmfcdpncadgh\000006.log
- %Local Appdata%\Google\Chrome\User Data\Default\Local Extension Settings\pafkbggdmjlpgkdkcbjmhmfcdpncadgh\LOG.old
- %Local Appdata%\Google\Chrome\User Data\Default\Local Extension Settings\pafkbggdmjlpgkdkcbjmhmfcdpncadgh\MANIFEST-000004
- %Local Appdata%\Google\Chrome\User Data\Default\Session Storage\000041.log
- %Local Appdata%\Google\Chrome\User Data\Default\Session Storage\000042.ldb
- %Local Appdata%\Google\Chrome\User Data\Default\Session Storage\MANIFEST-000039
- %Local Appdata%\FilesFrog Update Checker\TempWmicBatchFile.bat
- %Local Appdata%\FilesFrog Update Checker\uninstall.exe
- %Local Appdata%\FilesFrog Update Checker\update_checker.exe
- %Temp%\flashplayer_ie.gif
- %Temp%\winrar_32.png
- %Programs%\FilesFrog Update Checker\Check for Updates.lnk
- %Programs%\FilesFrog Update Checker\Uninstall.lnk
- %Common Appdata%\Microsoft\Dr Watson\drwtsn32.log
- %SysDir%\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %SysDir%\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof