Should I block it?

60%
60% of PCs block this file from running.
Possible reason:
Performance resource utilization

VersionsAdditional versions

05b13 14.08%
68839 1.41%
11c3a 8.45%
52c18 12.68%
89238 1.41%
be4d9 2.82%
f85eb 1.41%
872f6 1.41%
8ac7e 9.86%
6caf3 4.23%
0ec38 7.04%
c7007 4.23%
81eac 1.41%
bd893 2.82%
a3224 1.41%
08e67 1.41%
99da6 4.23%
60981 7.04%
9b67a 4.23%
45f31 1.41%
199a8 1.41%
ce882 1.41%
36c55 1.41%
382f8 1.41%
418c5 1.41%
(Note, Perion Network Ltd. publishes each variation of this file with the same version, but the hashes are unique.)

Relationships

Parent process
Child process
Related files

dmwu.exe

By Perion Network Ltd. (Signed)

Remove dmwu.exe
MD5:   f85eb9654b4c771470cd13a0a170d3b9
SHA1:   81a5dcbfe2305d75eb40667e482150411e20502a
SHA256:   d14ef833bf2678c29d60c26b366823f12c6ca09fb1f355c53f80e617885d5489

What is dmwu.exe?

dmwu.exe is the installation service for Web Optimizer, an ad-supported program. Web Optimizer by Perion Network Ltd. is a web browser extension and browser helper object (BHO) for Internet Explorer and Firefox (extension) and distributed through Perion Networks. The Web Optimizer extension includes a search bar which provides modified search redirection results and a search provider. Web Optimizer will attempt to change the default home page of the user's web browser as well.

Overview

dmwu.exe runs as a service under the name Updater Service (IBUpdaterService) with extensive SYSTEM privileges (full administrator access). It has been configured with a firewall exception which allows both inbound and outbound network communication without being blocked. The file is digitally signed by Perion Network Ltd. which was issued by the VeriSign certificate authority (CA).

DetailsDetails

File name:dmwu.exe
Typical file path:C:\Windows\System32\dmwu.exe
Size:1.39 MB (1,455,408 bytes)
Build date:4/7/2013 9:54 AM
Certificate
Issued to:Perion Network Ltd.
Authority (CA):VeriSign
Effective date:Tuesday, April 24, 2012
Expiration date:Friday, April 24, 2015
Digital DNA
PE subsystem:Windows GUI
File packed:No
Code language:Microsoft Visual C++ 10.0
.NET CLR:No
More details

BehaviorsBehaviors

Services
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
  • 'IBUpdaterService' (Updater Service)
  • WebOptimizer
Windows firewall allowed programs
Exceptions allow programs to access to the Internet through an outbound connections
  • Firewall exception for 'C:\WINDOWS\system32\dmwu.exe'
Network connections
Access through an approved Windows firewall exception
  • [UDP] listens on port 64047

  • ResourcesResource utilization

    (Note: statistics below are averages based on a minimum sample size of 200 unique participants)
    Averages
     
    CPU
    Total CPU:0.02478849%
    0.028634%
    Kernel CPU:0.01184463%
    0.013761%
    User CPU:0.01294385%
    0.014873%
    Kernel CPU time:1,529 ms/min
    100,923,805ms/min
    Context switches:3/sec
    284/sec
    Memory
    Private memory:6.89 MB
    21.59 MB
    Private (maximum):13.73 MB
    Private (minimum):13.64 MB
    Non-paged memory:6.89 MB
    21.59 MB
    Virtual memory:82.22 MB
    140.96 MB
    Virtual memory (peak):85.22 MB
    169.69 MB
    Working set:13.68 MB
    18.61 MB
    Working set (peak):13.88 MB
    37.95 MB
    Resource allocations
    Threads:12
    12
    Handles:204
    600

    BehaviorsProcess properties

    Integrety level:System
    Platform:64-bit
    Command line:C:\Windows\System32\dmwu.exe
    Owner:SYSTEM
    Windows Service
    Service name:IBUpdaterService
    Display name:Updater Service
    Description:“Updater Service”
    Type:Win32OwnProcess
    Parent process:services.exe (Services and Controller app by Microsoft)

    ResourcesThreads

    Averages
     
    sechost.dll (Host for SCM/SDDL/LSA Lookup APIs by Microsoft)
    Total CPU:0.09151293%
    0.272967%
    Kernel CPU:0.06706291%
    0.107585%
    User CPU:0.02445002%
    0.165382%
    CPU cycles:2,222,909/sec
    5,741,424/sec
    Context switches:3/sec
    79/sec
    Memory:124 KB
    1.16 MB
    dmwu.exe (main module)
    Total CPU:0.00104795%
    Kernel CPU:0.00069867%
    User CPU:0.00034928%
    CPU cycles:18,680/sec
    Memory:1.4 MB
    ntdll.dll
    Total CPU:0.00069868%
    Kernel CPU:0.00000000%
    User CPU:0.00069868%
    CPU cycles:7,038/sec
    Memory:1.66 MB

    Windows OS versionsDistribution by Windows OS

    OS versiondistribution
    Windows 7 Ultimate 30.00%
    Windows 7 Home Premium 24.29%
    Microsoft Windows XP 17.14%
    Windows 7 Professional 10.00%
    Windows 8 5.71%
    Windows Vista Home Premium 5.71%
    Windows 8 Single Language 2.86%
    Windows 8.1 Pro with Media Center 1.43%
    Windows 8 Pro 1.43%
    Windows 8 Release Preview 1.43%

    Distribution by countryDistribution by country

    United States installs about 34.29% of dmwu.exe.

    OEM distributionDistribution by PC manufacturer

    PC Manufacturerdistribution
    Hewlett-Packard 28.81%
    Acer 23.73%
    Toshiba 16.95%
    Sony 10.17%
    Dell 10.17%
    MSI 3.39%
    ASUS 3.39%
    GIGABYTE 3.39%
    Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

    Download it for FREE