How to remove WinServicesUpdater.exe.vir

WinServicesUpdater.exe.vir

The module WinServicesUpdater.exe.vir has been detected as Adware.SweetIM

WinServicesUpdater.exe.vir
Product Name:

Win Services

Company Name:

Win Services

MD5: aa45d5cc6d87e6405deea96472bb7cc5
Size: 2 MB
First Published: 2017-05-22 10:22:11 (7 years ago)
Latest Published: 2020-11-13 18:48:21 (4 years ago)
Status: Adware.SweetIM (on last analysis)
Analysis Date: 2020-11-13 18:48:21 (4 years ago)
Signed By: Win Services
Status: Valid
%localappdata%\sweetlabs app platform\setup\opera
%localappdata%\pokki\setup\opera
%sysdrive%\$recycle.bin\s-1-5-21-3823139480-1466416006-378270670-1001\$r1xahud\setup\opera
%sysdrive%\adwcleaner\quarantine\files\gyuulajafllofiajmgmghijjawpuxduh\setup\opera
%sysdrive%\adwcleaner\quarantine\idcdjoyapn\setup\opera
%localappdata%\sweetlabs app platform\setup
%localappdata%\pokki\setup
%sysdrive%\back\karin backup\karin\appdata\local\sweetlabs app platform\setup
%sysdrive%\windows 10 files copied\os\windows.old.000\users\barry\appdata\local\pokki\setup
%sysdrive%\adwcleaner\quarantine\files\tfhqiciphnrqrvinyohkoijsjcqqmkoe\setup
WinServicesUpdater.exe
WinServicesUpdater.exe.vir
38.8%
9.6%
6.2%
4.8%
4.8%
4.3%
3.3%
2.4%
2.4%
2.4%
2.4%
1.9%
1.4%
1.4%
1.4%
1.4%
1.4%
1.0%
1.0%
1.0%
1.0%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
Windows 8.1 57.1%
Windows 10 38.1%
Windows 7 3.8%
Windows 8 1.0%
Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00003415

PE Sections:

Name Size of data MD5
.text 26624 cb807804553819b70f6e16b8a094d327
.rdata 6656 161b329b4c70ce4fbd9c1143e738896b
.data 512 140876ba314e7bc36379ee5c6db80876
.ndata 0 00000000000000000000000000000000
.rsrc 49664 c060539417869edff81bf950e8dc3514

More information:

Download GridinSoft Anti-Malware - Removal tool for WinServicesUpdater.exe.vir