updatetask.exe

By Volonet Ltd (Signed)

Remove updatetask.exe
Warning 16 antivirus scanners has detected malware in various versions of updatetask.exe.

Overview

There are 4 versions of updatetask.exe in the wild, the latest version being . updatetask.exe is run as a standard windows process with the logged in user's account privileges. A job within the Windows Task Scheduler is added to execute this process of a specific schedule during installation of the program. The average file size is about 113.46 KB. The file is a digitally signed and issued to Volonet Ltd by COMODO CA Limited. The programs Funmoods, SearchYa! and DealPly have been observed as installing specific variations of updatetask.exe. During the process's lifecycle, the typical CPU resource utilization is about 0.0000% including both foreground and background operations with the maximum memory reaching around 4.24 MB.

What is updatetask.exe?

updatetask.exe for Funmoods is the software updater program which runs in the background of Windows and automatically starts up when your PC boots. It checks for software udpates and automatically downloads and installs them if found. The updater will check for updates remotely and install them based on an internal schedule.

DetailsDetails

File name:updatetask.exe
Typical file path:C:\users\user\appdata\roaming\funmoods\updateproc\updatetask.exe
Certificate
Issued to:Volonet Ltd
Authority (CA):COMODO CA Limited
Expiration date:Monday, November 25, 2013

ResourcesPrograms installed in

(Note, the programs listed below are for all versions of updatetask.exe.)
DealPly Technologies Ltd
  81% remove
DealPly installs a web browser extension such as an Internet Explorer Browser Helper Object (BHO) to view web pages loaded and look for affiliated merchants in order to possibly provide better pricing...
installCore
  83% remove
Update for PDF Creator uses the InstallCore Click run software which is an installer that bundles legitimate applications that may also offer additional third party applications that may be unwanted b...
installCore
  58% remove
Update for PDF Reader uses the InstallCore Click run software which is an installer that bundles legitimate applications that may also offer additional third party applications that may be unwanted by...
installCore
  72% remove
Update for Mipony Download Manager is the update mechanism for the Install Core software which is an installer which bundles legitimate applications with offers for additional third party applications...
installCore
  88% remove
This uses the InstallCore download Manager. Install Core Click run software is an installer which bundles applications with offers for additional third party programs that may be unwanted by the user ...
installCore
  86% remove
This uses the Install Core download Manager. Install Core Click run software is an installer which bundles applications with offers for additional third party programs that may be unwanted by the user...
SearchYa!
  84% remove
SearchYa! is an ad-supported program installed into Internet Explorer, Firefox and Chrome. The programs collects and stores information about web browsing habits and sends this information to its remo...
Volonet Ltd
  70% remove
FunMoods toolbar gives no or little satisfaction to its users, but a profound desire to get rid of FunMoods browser extension is in place. The toolbar is but a part of the problem as occasional but in...
Volonet Ltd
  69% remove
This is installed with the Funmoods toolbar and web browser extension and designed to keep the product updated. From the EULA: "In order to provide you with the most up-to-date version of the Software...

BehaviorsBehaviors

(Note, the behaviors below are for all versions of updatetask.exe, select a unique version for details.)
Scheduled tasks
  • The job 'At2' runs weekly in the path 'D:\WINDOWS\Tasks\At2.job'
  • The job 'At5' runs weekly in the path 'C:\WINDOWS\Tasks\At5.job'
  • The job 'At1' runs weekly in the path 'C:\WINDOWS\Tasks\At1.job'
  • The job 'Funmoods' runs daily in the path '\Funmoods'
  • The job 'DSite' runs daily in the path '\DSite'
  • The job 'Searchya' runs daily in the path '\Searchya'
  • Entry path 'C:\WINDOWS\Tasks\At1.job'
  • Entry path '\DSite'
  • Entry path 'C:\WINDOWS\Tasks\At2.job'
  • Entry path '\Funmoods'

MalwareMalware detections

Based on 40+ industry antivirus scanners, 16 of them detected the following malware.
Antivirus engineEngine versionDetectionFile version
Avira AntiVir 7.11.89.150 Adware/InstallCore.E cd043eb9f60a095302936524ae86a5e9
avast! 8.0.1489.320 Win32:Downloader-SPD [PUP] f8981a707176c89162202985f45a5947
Comodo Internet Security 16572 Application.Win32.InstallCore.k cd043eb9f60a095302936524ae86a5e9
Dr.Web 8.13.7.10 Adware.Funmoods.1 b352141bc9ca645f7c72b00fad5dea27
ESET NOD32 7.8233 a variant of Win32/InstallCore.BD 3448e0ccc4b4b4aa91ed8402415ad8d7
ESET NOD32 7.8546 Win32/InstallCore.BD cd043eb9f60a095302936524ae86a5e9
ESET NOD32 7.8114 a variant of Win32/InstallCore.BD b352141bc9ca645f7c72b00fad5dea27
ESET NOD32 8.9185 a variant of Win32/DealPly.H f8981a707176c89162202985f45a5947
Fortinet 5.1.146.0 Riskware/InstallCore cd043eb9f60a095302936524ae86a5e9
Kingsoft 2013.4.9.267 Win32.Troj.Generic.a.(kcloud) cd043eb9f60a095302936524ae86a5e9
PC Tools 9.0.0.2 Suspicious.Cloud.7.L b352141bc9ca645f7c72b00fad5dea27
Sophos 4.90.0 Install Core cd043eb9f60a095302936524ae86a5e9
Trend Micro 9.740.0.1012 ADW_DWNWARE cd043eb9f60a095302936524ae86a5e9
Trend Micro HouseCall 9.700.0.1001 ADW_DWNWARE cd043eb9f60a095302936524ae86a5e9
Trend Micro HouseCall 9.700.0.1001 TROJ_GEN.F47V0214 b352141bc9ca645f7c72b00fad5dea27
ViRobot 2011.4.7.4223 Trojan.Win32.A.NSAnti.84992.F cd043eb9f60a095302936524ae86a5e9

VersionsAll file variations of updatetask.exe

MD5SHA-1File size
3448e0ccc4b4b4aa91ed8402415ad8d7 2dd65997d4a4c11d4aaa5aa93374c7798f9c246b 83.5 KB
cd043eb9f60a095302936524ae86a5e9 6fe956ce33a890840cba478346a10f0959c34afb 83 KB
b352141bc9ca645f7c72b00fad5dea27 48102831cbc5efe6d1eb4b98a239f77c59da19ba 189.95 KB
f8981a707176c89162202985f45a5947 ab73a5bd6ff0dd23a53dbb93ae57670e46576bd7 97.37 KB

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Home Premium 31.58%
Windows Vista Home Premium 15.79%
Microsoft Windows XP 15.79%
Windows 7 Ultimate 13.16%
Windows 7 Professional 10.53%
Windows 7 Enterprise 5.26%
Windows 7 Starter 2.63%
Windows 8 Pro 2.63%
Windows 8 2.63%

Distribution by countryDistribution by country

United States installs about 39.47% of updatetask.exe.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Dell 27.78%
Hewlett-Packard 22.22%
Toshiba 16.67%
Gateway 11.11%
Acer 8.33%
ASUS 5.56%
Samsung 2.78%
GIGABYTE 2.78%
American Megatrends 2.78%
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE