home

bdupdate.exe

百度浏览器更新检查

Baidu (China) Co., Ltd.

It runs as a scheduled task under the Windows Task Scheduler named BaiduBrowserUpdater triggered to execute each time a user logs in.
Publisher:
Baidu.com, Inc.  (signed by Baidu (China) Co., Ltd.)

Product:
百度浏览器更新检查

Version:
6.5.28.50537

MD5:
9de9533183870db180691f510807e8b8

SHA-1:
9306577d76478942ac861bf03823dbe36049b2f0

SHA-256:
1da415708a66a104d9c475403bbbaa843096f0b18f57ff712a560f246ce01b5e

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/23/2024 11:44:51 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Vba32 AntiVirus
Signed-Adware.Hao123.BaiduChinaCo
3.12.26.3

File size:
973.1 KB (996,424 bytes)

Product version:
6.5.28.50537

Copyright:
Copyright (C) 2010 Baidu Inc. All rights reserved.

Original file name:
bdupdate.exe

File type:
Executable application (Win32 EXE)

Language:
Chinese (Simplified, PRC)

Common path:
C:\Program Files\baidu\baidubrowser\bdupdate.exe

Digital Signature
Signed by:
Baidu (China) Co., Ltd.

Authority:
GlobalSign nv-sa

Valid from:
2/22/2012 11:18:27 AM

Valid to:
2/22/2015 11:18:27 AM

Subject:
CN="Baidu (China) Co., Ltd.", O="Baidu (China) Co., Ltd.", L=Shanghai, S=Shanghai, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121DF7675AAA08D1B49A83A480F14855D24

File PE Metadata
Compilation timestamp:
11/27/2014 5:18:09 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:lpj4Eeswbfy4rFqNKP1esT1rTrQLxmb4M6Lzlu0SXWD:lyDbfyiqNKP1eO1rTELxqz6LzHSXWD

Entry address:
0x66E52

Entry point:
E8, FE, E5, 00, 00, E9, 89, FE, FF, FF, 3B, 0D, 50, 84, 4A, 00, 75, 02, F3, C3, E9, 85, E6, 00, 00, 6A, 14, 68, A0, F1, 49, 00, E8, D9, 21, 00, 00, 83, 65, FC, 00, FF, 4D, 10, 78, 3A, 8B, 4D, 08, 2B, 4D, 0C, 89, 4D, 08, FF, 55, 14, EB, ED, 8B, 45, EC, 89, 45, E4, 8B, 45, E4, 8B, 00, 89, 45, E0, 8B, 45, E0, 81, 38, 63, 73, 6D, E0, 74, 0B, C7, 45, DC, 00, 00, 00, 00, 8B, 45, DC, C3, E8, 89, 31, 00, 00, 8B, 65, E8, C7, 45, FC, FE, FF, FF, FF, E8, CF, 21, 00, 00, C2, 10, 00, 6A, 0C, 68, C0, F1, 49, 00, E8, 7B...
 
[+]

Entropy:
7.0404

Code size:
517.5 KB (529,920 bytes)

Scheduled Task
Task name:
BaiduBrowserUpdater

Trigger:
Logon (Runs on logon)


Scan bdupdate.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.