» SuiteService.exe
Overview
Analysis
File Details
Behaviors (1)
Programs (1)
Network (2)

SuiteService.exe

Solvusoft Suite

Installer Wizard

The application SuiteService.exe, “Solvusoft Suite Service” by Installer Wizard has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It runs as a separate (within the context of its own process) windows Service named “Solvusoft Suite Service”. This file is typically installed with the program DriverDoc by Solvusoft Corporation. While running, it connects to the Internet address web40.cluster.spamfighter.com on port 80 using the HTTP protocol.

File name:

SuiteService.exe

Publisher:

Solvusoft Corporation (signed by Installer Wizard)

Product:

Solvusoft Suite

Description:

Solvusoft Suite Service

Version:

3.1.292.0

MD5:

efa395302af4baaa83c2506337093505

SHA-1:

3b9dd0ce95c708ddd818fcb9a5a885f6dfd5bd5e

SHA-256:

1eacac87b7bd40fa0ae22c2b0b89da8c660198e5fdb926506b5ea6bb30d810e5

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

12/25/2025 1:54:53 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Solvusoft.Installer.Meta (L)

15.10.1.1

File size:

1.2 MB (1,284,168 bytes)

Product version:

3.1.292.0

Original file name:

SuiteService.exe

File type:

Executable application (Win32 EXE)

Language:

Ucraniano (Ucrania)

Common path:

C:\Program Files\solvusoft\suiteservice.exe

Digital Signature

Signed by:

Installer Wizard

Authority:

COMODO CA Limited

Valid from:

8/26/2013 7:30:00 PM

Valid to:

8/26/2016 7:29:59 PM

Subject:

CN=Installer Wizard, O=Installer Wizard, STREET=848 N. Rainbow Blvd., STREET="#3321", L=Las Vegas, S=NV, PostalCode=89107, C=US

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00936840633163DBE99483CEE1F9B95E45

File PE Metadata

Compilation timestamp:

11/4/2014 5:20:06 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

9.0

CTPH (ssdeep):

24576:pk5PJF2gTlEemz+N0ZZVfhnxNJ97pXlTRvNLZH1SUZwfqMFwIpcw:6Gem40HppxNJ97pXlTRvNLZH1SUG/FwC

Entry address:

0x95EF7

Entry point:

E8, 54, DA, 00, 00, E9, A5, FE, FF, FF, 6A, 0C, 68, 08, 3D, 4F, 00, E8, B7, 07, 00, 00, 83, 65, E4, 00, 8B, 75, 08, 3B, 35, B8, 79, 52, 00, 77, 22, 6A, 04, E8, 11, 96, 00, 00, 59, 83, 65, FC, 00, 56, E8, 18, 9E, 00, 00, 59, 89, 45, E4, C7, 45, FC, FE, FF, FF, FF, E8, 09, 00, 00, 00, 8B, 45, E4, E8, C3, 07, 00, 00, C3, 6A, 04, E8, 0C, 95, 00, 00, 59, C3, 8B, FF, 55, 8B, EC, 56, 8B, 75, 08, 83, FE, E0, 0F, 87, A1, 00, 00, 00, 53, 57, 8B, 3D, 0C, A2, 4D, 00, 83, 3D, 0C, 6B, 52, 00, 00, 75, 18, E8, A8, B4, 00... 
[+]

Code size:

864.5 KB (885,248 bytes)

Service

Display name:

Solvusoft Suite Service

Type:

Win32OwnProcess

The file SuiteService.exe has been discovered within the following program.

DriverDoc by Solvusoft Corporation

www.solvusoft.com

About 4% of users remove it

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):

Connects to web40.cluster.spamfighter.com (91.192.52.195:80)

TCP (HTTP):

Connects to web30.cluster.spamfighter.com (91.192.52.205:80)

Remove SuiteService.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.