UpdateStar GmbH

Publisher Information

UpdateStar GmbH is a software developer located in Berlin, Germany*. The publisher primarily developes software that can be classified as adware. Thre are 8 additional code signing certificates issued to this publisher.
Remove UpdateStar GmbH Malware - Powered by Reason Core Security
Authority:
COMODO CA Limited

Valid from:
12/1/2011 1:00:00 AM

Valid to:
12/1/2012 12:59:59 AM

Subject:
CN=UpdateStar GmbH, O=UpdateStar GmbH, STREET=Hauptstrasse 20, L=Berlin, S=Berlin, PostalCode=10827, C=DE

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
4c04d272caaef51d5786ca84d80cfb98

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.UpdateStarGmbH.R, PUP.UpdateStarGmbH.K, PUP.Installer.UpdateStarGmbH.I, PUP.Installer.UpdateStarGmbH.F, PUP.UpdateStarGmbH.U, PUP.Installer.UpdateStarGmbH.U, PUP.UpdateStarGmbH.S, PUP.Installer.UpdateStarGmbH.J, PUP.Installer.UpdateStarGmbH.L, PUP.UpdateStarGmbH.H, PUP.UpdateStarGmbH.X, PUP.UpdateStarGmbH.F, PUP.installCore.UpdateStar (M)
100.00%

Dr.Web
Adware.InstallCore.72, Trojan.InstallCore.789, Trojan.InstallCore.885, Adware.InstallCore.75, Adware.InstallCore.68
10.00%

Avira AntiVirus
ADWARE/InstallCore.Gen, PUA/InstallCore.Gen, Adware/InstallCor.G
10.00%

Vba32 AntiVirus
BScope.Malware-Cryptor.InstallCore.2691, Malware-Cryptor.InstallCore.9
10.00%

ESET NOD32
Win32/InstallCore.AW (variant), Win32/InstallCore.AY (variant), Win32/InstallCore.AC (variant)
8.00%

Trend Micro House Call
TROJ_GEN.RCBH1KK, TROJ_GEN.F47V1008, TROJ_GEN.F47V0104, TROJ_GEN.F47V0914
8.00%

VIPRE Antivirus
InstallCore.b, Threat.4788237, Trojan.Win32.Generic
6.00%

F-Prot
W32/InstallCore.P.gen, W32/InstallCore.G.gen
6.00%

NANO AntiVirus
Riskware.Win32.InstallCore.cxdxbq, Riskware.Win32.InstallCore.dehxrz, Trojan.Win32.InstallCore.cqoyap
6.00%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
6.00%

1 / 68      (PUP)
vdownloader.exe  (e59f6a6448e308cebb00ca79aed55bfe)

1 / 68      (PUP)
wireless-wep-key-password-spy.exe  (404003254e3aa195d68882bfe4e8a1fc)

1 / 68      (PUP)
updatestar.exe  (2ace6929ff734fd82481854fa1aef5be)

1 / 68      (PUP)
icreinstall_bluetooth-stack-for-windows-by-toshiba.exe  (43c3245a1ab7e307e27aaba284574acc)

1 / 68      (PUP)
icreinstall_gps.exe  (7de1d754c2f94e57949d8ae5fda63b17)

1 / 68      (PUP)
updatestar_enu.msi  (b70e8fcb3432c2afa9a5c7484209ef53)

1 / 68      (PUP)
adobe-flash-player-activex.exe  (193318e5425fc889e0cac8c534b1d2e6)

8 / 68      (PUP)
avm-fritz-box-usb-fernanschluss.exe  (8cea0e20a0d39e4254db34a53b70a0c6)

1 / 68      (PUP)
Cleaner.Win.exe (AppCleaner by UpdateStar GmbH)  (bf80343b210a72027011b4606122891f)

1 / 68      (PUP)
Cleaner.Lib.dll (AppCleaner by UpdateStar GmbH)  (e512a95c35c520f6ae3d8f39a19ee86d)

1 / 68      (PUP)
updatestar_enu.msi  (7720111e4d0ed18b13ccf416478f4f43)

16 / 68    (PUP)
icreinstall_nokia-pc-suite.exe  (a445cae25f36e6a677566ae303302698)

3 / 68      (PUP)
appcleanersetup.exe (AppCleaner by UpdateStar GmbH)  (b98682ecc378520b4475b117d0126cb1)

4 / 68      (PUP)
microsoft-net-framework-client-profile.exe  (dbde6a3feaac147960dd43ed5987182a)

11 / 68    (PUP)
avisynth.exe  (1529643e489b393fcad59209327da7a2)

2 / 68      (PUP)
keyfinder64.exe (UpdateStar KeyFinder by UpdateStar)  (28271ff029ba38cad8722509587b900c)

1 / 68      (PUP)
Cleaner.Win.exe (AppCleaner by UpdateStar GmbH)  (bb9c927316c81cf779225504ded290c9)

1 / 68      (PUP)
Cleaner.Lib.dll (AppCleaner by UpdateStar GmbH)  (99db7bc31bb331ef486628ec2676a7d0)

1 / 68      (PUP)
Cleaner.Win.exe (AppCleaner by UpdateStar GmbH)  (deb61ee9051bc81b29e07dd533ce79f8)

1 / 68      (PUP)
Cleaner.Lib.dll (AppCleaner by UpdateStar GmbH)  (aaa1acfb2a1eaa8945f3e7a1a7050903)

1 / 68      (PUP)
Cleaner.Win.exe (AppCleaner by UpdateStar GmbH)  (35c0b355d6c76d83446b55897aad885e)

1 / 68      (PUP)
Cleaner.Lib.dll (AppCleaner by UpdateStar GmbH)  (d550799c34c5ebc28dc8ce18a0c31d83)

1 / 68      (PUP)
ustarrs.dll (UpdateStar by UpdateStar GmbH)  (c0e50c95cde15f5c9dc6b92fa3a0ed7a)

1 / 68      (PUP)
ustarrs.dll (UpdateStar by UpdateStar GmbH)  (dffa43648632937170565274820eb64b)

1 / 68      (PUP)
Cleaner.Win.exe (AppCleaner by UpdateStar GmbH)  (0c316714c604d676de7cec06eb0a5375)

1 / 68      (PUP)
Cleaner.Lib.dll (AppCleaner by UpdateStar GmbH)  (92b536e67a9c556b8b8be4cc00f9045f)

15 / 68    (PUP)
7-zip.exe  (3c18faf87ae64005f8a8c7692052618f)

1 / 68      (PUP)
usonlinebackup64_ger.msi  (7f15b513f094cfb4cf9ac5eacd5268de)

1 / 68      (PUP)
ustarrs.dll (UpdateStar by UpdateStar GmbH)  (5f3ed02752c4d53c8f44d0ed6e8bf359)

1 / 68      (PUP)
keyfinder64.exe (UpdateStar KeyFinder by UpdateStar)  (363daf60aa167230091f49bc9f00ae58)

 
Latest 30 of 55 files

Downloads URLs for files signed by UpdateStar GmbH.

The following websites host and distribute files published by UpdateStar GmbH.

The certificates below are also signed by UpdateStar GmbH.

00FBADF674BC78E279821FBDF9D937DF06  (Jan 11, 2016 to Jan 11, 2019)

1121C7585A2F5B2218EC6B36D472BA6496D8  (Jan 25, 2016 to Mar 23, 2017)

112124922D3C2654755777EEC500C21F7151  (Feb 03, 2015 to Feb 04, 2016)

009ED227324380B40DDE36C8D31A33831F  (Jan 01, 2013 to Jan 02, 2016)

71A04D21E9F4BB6E19C3CB7D720E6245  (Jun 10, 2014 to Jun 11, 2015)

2ACDB74CEA0A72647526F5A80FA98905  (Oct 20, 2010 to Oct 21, 2011)

008FBC036C7269194F17005FD05177A3AE  (Sep 09, 2009 to Sep 10, 2010)

00BCE06249BED8370CE36EE663EBE2A037  (Aug 29, 2008 to Aug 30, 2009)

The following publishers (by Authenticode signature organization name) are related.

Remove UpdateStar GmbH Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to UpdateStar GmbH by COMODO CA Limited on December 01, 2011 with the serial number '4c04d272caaef51d5786ca84d80cfb98'.