home

updatedetectorsetup.exe

Filepuma International

The program is a setup application that uses the Nullsoft Scriptable Install System installer. The file has been seen being downloaded from www.filepuma.com and multiple other hosts.
Publisher:
Filepuma International  (signed and verified)

MD5:
f49ba28e3b41519f24fb478a60b1757e

SHA-1:
3af256dedf81dbaa828278cd0134623ea26ceb37

SHA-256:
0ba7f077ddd25cfc607376853e1aa1c1d2f4b3476ad54d4f1199277b2f9813ac

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
1/12/2025 9:27:16 AM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
TROJ_GEN.F47V0808
7.2.329

File size:
811.6 KB (831,072 bytes)

File type:
Executable application (Win32 EXE)

Installer:
Nullsoft Scriptable Install System

Common path:
C:\users\{user}\downloads\updatedetectorsetup.exe

Digital Signature
Signed by:
Filepuma International

Authority:
COMODO CA Limited

Valid from:
1/6/2013 7:00:00 PM

Valid to:
1/7/2014 6:59:59 PM

Subject:
CN=Filepuma International, OU=Provided by GoTrust, O=Filepuma International, STREET="Room 809,Tower 4,Fuhai Plaza,", STREET="Daliushu Road,Haidian District,Beijing", L=Beijing, S=Beijing, PostalCode=100081, C=CN

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
6477E3103C0CD514834040EF9F96B9E7

File PE Metadata
Compilation timestamp:
12/5/2009 5:50:41 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:+xOHFzw6CWmMpnHXoQtzDj3nJdXWPOoeDgVu0DogdDBPfZfGQMctyS:++FU6C7MF4Q95dsOoDVu073fGQM

Entry address:
0x30CB

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 38, 3F, 42, 00, E8, F1, 2B, 00, 00, A3, 84, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 30, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 80, 36, 42, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, 92, 28, 00, 00...
 
[+]

Code size:
22.5 KB (23,040 bytes)

The file updatedetectorsetup.exe has been discovered within the following program.

360Amigo System Speedup Free  by 360Amigo
360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
 
Powered by Should I Remove It?

The file updatedetectorsetup.exe has been seen being distributed by the following 50 URLs.

http://www.filepuma.com/file2/1404834625c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1400445980c3457/update_detector_2.6.0.703/.../

http://files.downloadnow.com/s/software/13/43/51/.../updatedetectorsetup.exe

http://www.filepuma.com/file2/1385164625c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1405705486c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1401930293c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1404904657c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1400969621c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1397778370c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1404691426c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1404142467c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1404316440c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1402053851c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1401939407c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1401466778c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1398981444c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1398832093c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1403784652c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1400576297c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1399477213c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1399491038c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1396165665c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1399737903c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1396868937c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1394976217c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1396441800c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1395423559c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1395255409c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1394696616c3457/update_detector_2.6.0.703/.../

http://www.filepuma.com/file2/1396603603c3457/update_detector_2.6.0.703/.../

Latest 30 of 56 download URLs

Scan updatedetectorsetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.