How to remove saupdate.exe

saupdate.exe

The module saupdate.exe has been detected as Hijack.IE

saupdate.exe
Remove saupdate.exe

File Details

MD5: 20a96e792c99e071aac891d06ebc8d9d
Size: 158 KB
First Published: 2017-05-25 08:02:24 (8 years ago)
Latest Published: 2024-02-11 23:03:06 (a year ago)
Status: Hijack.IE (on last analysis)
Analysis Date: 2024-02-11 23:03:06 (a year ago)

Common Places:

%programfiles%\ask.com
%sysdrive%\adwcleaner\quarantine\files\goygghwslhwhawuhwadsrziajhvzuwzs
%sysdrive%\wd smartware.swstor\y4lwjkrxvalxs0g\volume.1feeb636.d4d4.11e3.912c.806e6f6e6963\program files (x86)
%programfiles%
%sysdrive%\system volume information\_restore{6e7ee800-5c19-4415-888a-7b0735b252b5}
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%

File Names:

SaUpdate.exe
saupdate.exe
A0124361.exe

Geography:

8.7%
8.1%
7.5%
6.2%
5.6%
5.6%
5.0%
5.0%
4.3%
3.7%
3.7%
3.7%
3.7%
3.1%
2.5%
1.9%
1.9%
1.9%
1.9%
1.9%
1.9%
1.9%
1.9%
1.2%
1.2%
1.2%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%

OS Version:

Windows 7 46.0%
Windows 10 44.7%
Windows 8.1 9.3%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000135d4

PE Sections:

Name Size of data MD5
.text 119808 9bda47f7d904e344007d8405474548bd
.rdata 18432 85f80c483ca1715ab4d8f3da0446e563
.data 6656 c5d488a537f5ad1b3b3e2d835798d431
.rsrc 512 3a4fdc31bb49b29d6f19b94641d14ee8
.reloc 10240 856a2acfa7466a8d6e050b78ba4c0917

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for saupdate.exe
copyright for information about saupdate.exe