Versions
(Note, Bit Cocktail Ltd. publishes each variation of this file with the same version, but the hashes are unique.)
Relationships
extensionupdaterservice.exe
By Bit Cocktail Ltd. (Signed)
Warning 28 antivirus scanners has detected malware in various versions of extensionupdaterservice.exe.
Overview
There are 17 versions of extensionupdaterservice.exe in the wild, the latest version being . It is started as a Windows Service called 'Web Assistant' with the name 'Updater By SweetPacks'. In addition, it is run under the context of the SYSTEM account with extensive privileges (the administrator accounts have the same privileges). The average file size is about 182.21 KB. The file is a digitally signed and issued to Bit Cocktail Ltd. by Thawte. The programs Updater By SweetPacks 2.0.0.566, Updater By SweetPacks 2.0.0.583 and Web Assistant 2.0.0.457 have been observed as installing specific variations of extensionupdaterservice.exe. During the process's lifecycle, the typical CPU resource utilization is less than 0.01%, the average private memory consumption is about 9.27 MB and write I/O transfers are about 0 Bytes per minute.
What is extensionupdaterservice.exe?
Plazy Updater is the software updater program which runs in the background of Windows and automatically starts up when your PC boots. It checks for software udpates and automatically downloads and installs them if found.
 Details
|
| File name: | extensionupdaterservice.exe |
| Typical file path: | C:\Program Files\plazy\extensionupdaterservice.exe |
| Certificate |
| Issued to: | Bit Cocktail Ltd. |
| Authority (CA): | Thawte |
| Expiration date: | Thursday, January 16, 2014 |
| Windows Service |
| Service name: | Updater By SweetPacks |
| Display name: | Web Assistant |
| Type: | Win32OwnProcess |
Programs installed in
(Note, the programs listed below are for all versions of extensionupdaterservice.exe.)
FBFlicker displays advertising in the user's Internet browser by running as an extension and/or add-on. Ads are delivered in the form of search-related ads, banner and video ads, and text-links (roll-...
Web Assistant installs into the IE and Firefox web browsers and provides advertisier supported searchs that changes and redircts default search results as well as DNS errors. Web Assistant becomes the...
|
SweetIM Technologies Ltd. |
|
Updater By SweetPacks (from Perion) is designed to monitor and keep the SweetPacks programs automatically up to date. It checks for software updates and automatically downloads and installs them if fo...
Behaviors
(Note, the behaviors below are for all versions of extensionupdaterservice.exe, select a unique version for details.)
Services
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
- Web Assistant
- 'Updater By SweetPacks'
- 'Web Assistant Updater'
Malware detections
Based on 40+ industry antivirus scanners, 28 of them detected the following malware.
All file variations of extensionupdaterservice.exe
Distribution by Windows OS
| OS version | distribution |
| Windows 7 Home Premium |
26.67% |
|
| Windows Vista Home Premium |
23.33% |
|
| Windows 8 |
16.67% |
|
| Windows 7 Ultimate N |
13.33% |
|
| Microsoft Windows XP |
6.67% |
|
| Windows 8 Pro |
3.33% |
|
| Windows 7 Ultimate |
3.33% |
|
| Windows 7 Starter |
3.33% |
|
| Windows 7 Professional |
3.33% |
|
Distribution by country
United States installs about 73.33% of extensionupdaterservice.exe.
Distribution by PC manufacturer
| PC Manufacturer | distribution |
| Toshiba |
51.85% |
|
| Hewlett-Packard |
25.93% |
|
| Gateway |
7.41% |
|
| Sony |
7.41% |
|
| ASUS |
7.41% |
|
