hlsvc.exe

Highlightly Client Service

Highlightly

This is part of the InfoAtoms browser extension which will display variopus forms of advertising in the web browser by injecting new ads such as banner, text-links and search results. The application hlsvc.exe by Highlightly has been detected as adware by 16 anti-malware scanners. It runs as a separate (within the context of its own process) windows Service named “Highlightly Client Service”. This file is typically installed with the program Highlightly by InfoAtoms, Inc. which is a potentially unwanted software program.
Publisher:
Highlightly  (signed and verified)

Product:
Highlightly Client Service

Version:
1.9.0.2

MD5:
d19706b73259a0fa8aef5ac1479c6062

SHA-1:
3ede5de3ad7b14a3a5a0a70a2b12731382fd52f6

SHA-256:
ebbf375eaa1f4f899b971c514490e365e6d1b28c4dc49d2ca682b6d138cc2d9a

Scanner detections:
16 / 68

Status:
Adware

Analysis date:
12/25/2024 1:54:56 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Adware.AdPage.A
694

AVG
Generic5
2016.0.3172

Bitdefender
Adware.AdPage.A
1.0.20.360

Comodo Security
ApplicUnwnt
19802

Dr.Web
Adware.Plugin.101
9.0.1.072

Emsisoft Anti-Malware
Adware.AdPage
8.15.03.13.01

Fortinet FortiGate
Riskware/Vitruvian
3/13/2015

F-Secure
Adware.AdPage.A
11.2015-13-03_6

G Data
Adware.AdPage
15.3.24

IKARUS anti.virus
AdWare.AdPage
t3scan.1.7.8.0

MicroWorld eScan
Adware.AdPage.A
16.0.0.216

NANO AntiVirus
Trojan.Win32.Plugin.csnyel
0.28.2.62671

nProtect
Adware.AdPage.A
14.10.14.01

Reason Heuristics
PUP.Highlightly.F
14.3.30.0

Sophos
Generic PUA JI
4.98

VIPRE Antivirus
InfoAtoms
33924

File size:
266.6 KB (273,000 bytes)

Product version:
1.9.0.2

Copyright:
Copyright (C) 2014

Original file name:
hlsvc.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\highlightly\service\hlsvc.exe

Digital Signature
Signed by:

Authority:
GlobalSign nv-sa

Valid from:
3/12/2014 1:03:11 PM

Valid to:
7/5/2015 1:25:40 PM

Subject:
E=support@gethighlightly.com, CN=Highlightly, OU=Highlightly, O=Highlightly, L=La Jolla, S=CA, C=US

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11212BBBE8825E5C9A20B6A396BBFD1C37FB

File PE Metadata
Compilation timestamp:
3/17/2014 12:11:00 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
11.0

CTPH (ssdeep):
3072:Un7HQw7vynKshluhIum1zZ/+RYGtw+Kl6hQm0ycmRGpzCQ5f0o15+ROkHCTBfs58:Un8g7Wus/rmoBLss5qHCTBEjV4Uher

Entry address:
0x203B1

Entry point:
E8, E2, 55, 00, 00, E9, 7B, FE, FF, FF, CC, CC, CC, CC, CC, 8B, 4C, 24, 0C, 57, 85, C9, 0F, 84, 92, 00, 00, 00, 56, 53, 8B, D9, 8B, 74, 24, 14, F7, C6, 03, 00, 00, 00, 8B, 7C, 24, 10, 75, 0B, C1, E9, 02, 0F, 85, 85, 00, 00, 00, EB, 27, 8A, 06, 83, C6, 01, 88, 07, 83, C7, 01, 83, E9, 01, 74, 2B, 84, C0, 74, 2F, F7, C6, 03, 00, 00, 00, 75, E5, 8B, D9, C1, E9, 02, 75, 61, 83, E3, 03, 74, 13, 8A, 06, 83, C6, 01, 88, 07, 83, C7, 01, 84, C0, 74, 37, 83, EB, 01, 75, ED, 8B, 44, 24, 10, 5B, 5E, 5F, C3, F7, C7, 03...
 
[+]

Entropy:
6.3173

Code size:
176.5 KB (180,736 bytes)

Service
Display name:
Highlightly Client Service

Service name:
hlsvc

Description:
This service enables Highlightly on HTTP websites

Type:
Win32OwnProcess


The file hlsvc.exe has been discovered within the following program.

Highlightly  by InfoAtoms, Inc.
This web browser plugin injects various forms of advertising in the user's web browsers. Ads appear as popup windows, banner ads and text links.
www.gethighlightly.com
80% remove it
 
Powered by Should I Remove It?

Remove hlsvc.exe - Powered by Reason Core Security