How to remove sfaupdater.exe

sfaupdater.exe

The module sfaupdater.exe has been detected as Adware.Downloader

sfaupdater.exe
Remove sfaupdater.exe

File Details

Product Name:

Smart File Advisor
Company Name:

Filefacts.net
MD5: a54ff3594463b562384aaf98fc72b806
Size: 641 KB
First Published: 2017-06-25 08:04:39 (8 years ago)
Latest Published: 2022-02-03 21:24:26 (3 years ago)
Status: Adware.Downloader (on last analysis)
Analysis Date: 2022-02-03 21:24:26 (3 years ago)

Common Places:

%programfiles%\smart file advisor
%programfiles%
%programfiles%\panda security\panda security protection
%sysdrive%\system volume information\_restore{34e962d2-6650-43fb-b380-a60b0f443bed}
%commonappdata%\symantec
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%

File Names:

SFAUpdater.exe
sfaupdater.exe
SFAUpdater.exe.quarantined
A0110218.exe
A0115360.exe
A0107055.exe
dwhea9c.exe
dwh4519.exe
dwh1759.exe

Geography:

38.0%
11.4%
10.6%
5.4%
3.5%
3.4%
3.2%
2.2%
2.0%
1.5%
1.3%
1.3%
1.3%
1.2%
1.2%
1.0%
0.8%
0.8%
0.7%
0.5%
0.5%
0.5%
0.5%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%

OS Version:

Windows 10 54.6%
Windows 7 39.4%
Windows 8.1 4.2%
Windows XP 1.3%
Windows Server 2016 0.2%
Windows Embedded 8.1 0.2%
Windows 8 0.2%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x001e8980

PE Sections:

Name Size of data MD5
UPX0 0 00000000000000000000000000000000
UPX1 560640 f56a897a2ef24bfb486465d4d3291d1a
.rsrc 89600 1797cd5adad8b890093c5c5aee7ab749

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for sfaupdater.exe
copyright for information about sfaupdater.exe