hlsvc.exe

Highlightly Client Service

Highlightly

This is part of the InfoAtoms browser extension which will display variopus forms of advertising in the web browser by injecting new ads such as banner, text-links and search results. The application hlsvc.exe by Highlightly has been detected as adware by 16 anti-malware scanners. It runs as a separate (within the context of its own process) windows Service named “Highlightly Client Service”. This file is typically installed with the program Highlightly by InfoAtoms, Inc. which is a potentially unwanted software program.
Publisher:
Highlightly  (signed and verified)

Product:
Highlightly Client Service

Version:
1.9.0.1

MD5:
2bd05beb0f04393b2f3a169cbf59ed91

SHA-1:
9482fef6890593b22bd8be5c9826f9d6f280c42d

SHA-256:
c1797a35d8c5c7b43255e73d0f18b6320658e3254277a2792b8e86cc92d9b6c5

Scanner detections:
16 / 68

Status:
Adware

Analysis date:
12/24/2024 11:30:28 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Adware.AdPage.A
694

AVG
Generic5
2016.0.3172

Bitdefender
Adware.AdPage.A
1.0.20.360

Comodo Security
ApplicUnwnt
19802

Dr.Web
Adware.Plugin.101
9.0.1.072

Emsisoft Anti-Malware
Adware.AdPage
8.15.03.13.01

Fortinet FortiGate
Riskware/Vitruvian
3/13/2015

F-Secure
Adware.AdPage.A
11.2015-13-03_6

G Data
Adware.AdPage
15.3.24

IKARUS anti.virus
AdWare.AdPage
t3scan.1.7.8.0

MicroWorld eScan
Adware.AdPage.A
16.0.0.216

NANO AntiVirus
Trojan.Win32.Plugin.csnyel
0.28.2.62671

nProtect
Adware.AdPage.A
14.10.14.01

Reason Heuristics
PUP.Service.Highlightly.F
14.3.14.0

Sophos
Generic PUA JI
4.98

VIPRE Antivirus
InfoAtoms
33924

File size:
266.6 KB (273,000 bytes)

Product version:
1.9.0.1

Copyright:
Copyright (C) 2014

Original file name:
hlsvc.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\highlightly\service\hlsvc.exe

Digital Signature
Signed by:

Authority:
GlobalSign nv-sa

Valid from:
6/3/2013 1:25:40 PM

Valid to:
6/4/2014 1:25:40 PM

Subject:
E=support@gethighlightly.com, CN=Highlightly, OU=Highlightly, O=Highlightly, L=La Jolla, S=CA, C=US

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121971480A12BD051AA09DCE9072375C4F7

File PE Metadata
Compilation timestamp:
2/5/2014 3:10:13 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
11.0

CTPH (ssdeep):
3072:Wn7Hgg7vynKshluhIum1zZ/+RYGtw+Kl6hQm0ycmBGpzbQ4/t1N5+ZC/bCTBfOb7:Wnsw7Wus/rm4B7lv5FbCTBaVFUheLX

Entry address:
0x203B1

Entry point:
E8, E2, 55, 00, 00, E9, 7B, FE, FF, FF, CC, CC, CC, CC, CC, 8B, 4C, 24, 0C, 57, 85, C9, 0F, 84, 92, 00, 00, 00, 56, 53, 8B, D9, 8B, 74, 24, 14, F7, C6, 03, 00, 00, 00, 8B, 7C, 24, 10, 75, 0B, C1, E9, 02, 0F, 85, 85, 00, 00, 00, EB, 27, 8A, 06, 83, C6, 01, 88, 07, 83, C7, 01, 83, E9, 01, 74, 2B, 84, C0, 74, 2F, F7, C6, 03, 00, 00, 00, 75, E5, 8B, D9, C1, E9, 02, 75, 61, 83, E3, 03, 74, 13, 8A, 06, 83, C6, 01, 88, 07, 83, C7, 01, 84, C0, 74, 37, 83, EB, 01, 75, ED, 8B, 44, 24, 10, 5B, 5E, 5F, C3, F7, C7, 03...
 
[+]

Entropy:
6.3174

Code size:
176.5 KB (180,736 bytes)

Service
Display name:
Highlightly Client Service

Service name:
hlsvc

Description:
This service enables Highlightly on HTTP websites

Type:
Win32OwnProcess


The file hlsvc.exe has been discovered within the following program.

Highlightly  by InfoAtoms, Inc.
This web browser plugin injects various forms of advertising in the user's web browsers. Ads appear as popup windows, banner ads and text links.
www.gethighlightly.com
80% remove it
 
Powered by Should I Remove It?

Remove hlsvc.exe - Powered by Reason Core Security