Should I block it?
Yes, 98% block recommendation.
Possible reasons:
Multiple malware detections
Performance resource utilization
Additional versions
(Note, Volonet Ltd publishes each variation of this file with the same version, but the hashes are unique.)
Relationships
updatetask.exe
By Volonet Ltd (Signed)
| MD5: | b352141bc9ca645f7c72b00fad5dea27 |
| SHA1: | 48102831cbc5efe6d1eb4b98a239f77c59da19ba |
| SHA256: | 904cb0c4122c1e9c435c5c52a81e3cf21fb4eb6be55141e0155786758f9182e3 |
Warning 4 antivirus scanners has detected malware.
What is updatetask.exe?
updatetask.exe for Funmoods is the software updater program which runs in the background of Windows and automatically starts up when your PC boots. It checks for software udpates and automatically downloads and installs them if found. The updater will check for updates remotely and install them based on an internal schedule.
Overview
updatetask.exe is malware that executes as a process with the local user's privileges. This is typically installed with the program SearchYa! published by SearchYa! and is most likely removed by most users once installed (84% removed). The file is digitally signed by Volonet Ltd which was issued by the COMODO CA Limited certificate authority (CA).
Details
| File name: | updatetask.exe |
| Typical file path: | C:\users\user\appdata\roaming\funmoods\updateproc\updatetask.exe |
| Size: | 189.95 KB (194,512 bytes) |
| Certificate |
| Issued to: | Volonet Ltd |
| Authority (CA): | COMODO CA Limited |
| Expiration date: | Monday, November 25, 2013 |
| Digital DNA |
| File packed: | No |
| .NET CLR: | No |
More details
Programs
The following program will install this file
SearchYa! is an ad-supported program installed into Internet Explorer, Firefox and Chrome. The programs collects and stores information about web browsing habits and sends this information to its remote servers in order to provide injected advertising in search results and various other places. It will also modify the browser's home page and search provider. It displays various pop-up advertisements and tracks and reports your web surfi...
Behaviors
Scheduled tasks
- The job 'At2' runs weekly in the path 'D:\WINDOWS\Tasks\At2.job'
- The job 'At5' runs weekly in the path 'C:\WINDOWS\Tasks\At5.job'
- The job 'At1' runs weekly in the path 'C:\WINDOWS\Tasks\At1.job'
- The job 'Funmoods' runs daily in the path '\Funmoods'
- The job 'DSite' runs daily in the path '\DSite'
- The job 'Searchya' runs daily in the path '\Searchya'
- Entry path 'C:\WINDOWS\Tasks\At1.job'
- Entry path '\DSite'
- Entry path 'C:\WINDOWS\Tasks\At2.job'
- Entry path '\Funmoods'
Malware detections
Based on 40+ industry antivirus scanners, 4 of them detected the following malware.
| Antivirus engine | Engine version | Detection |
| Dr.Web |
8.13.7.10 |
Adware.Funmoods.1 |
| ESET NOD32 |
7.8114 |
a variant of Win32/InstallCore.BD |
| PC Tools |
9.0.0.2 |
Suspicious.Cloud.7.L |
| Trend Micro HouseCall |
9.700.0.1001 |
TROJ_GEN.F47V0214 |
Distribution by Windows OS
| OS version | distribution |
| Windows 7 Home Premium |
31.58% |
|
| Windows Vista Home Premium |
15.79% |
|
| Microsoft Windows XP |
15.79% |
|
| Windows 7 Ultimate |
13.16% |
|
| Windows 7 Professional |
10.53% |
|
| Windows 7 Enterprise |
5.26% |
|
| Windows 7 Starter |
2.63% |
|
| Windows 8 Pro |
2.63% |
|
| Windows 8 |
2.63% |
|
Distribution by country
United States installs about 39.47% of updatetask.exe.
Distribution by PC manufacturer
| PC Manufacturer | distribution |
| Dell |
27.78% |
|
| Hewlett-Packard |
22.22% |
|
| Toshiba |
16.67% |
|
| Gateway |
11.11% |
|
| Acer |
8.33% |
|
| ASUS |
5.56% |
|
| Samsung |
2.78% |
|
| GIGABYTE |
2.78% |
|
| American Megatrends |
2.78% |
|
