home

UpdatePctuto.exe

UpdatePctuto

Agence Exclusive

This is part of the Eorezo downloader which may bundle additional offers on the PC, mostly adware and other potentially unwanted software. The application UpdatePctuto.exe, “Application de mise à jour des produits Agence-Exclusive” by Agence Exclusive has been detected as a potentially unwanted program by 23 anti-malware scanners.
Publisher:
Agence-Exclusive  (signed by Agence Exclusive)

Product:
UpdatePctuto

Description:
Application de mise à jour des produits Agence-Exclusive

Version:
2.0.0.0

MD5:
204c972da412789c97a2188b045f6162

SHA-1:
8c053a359b519748cab81e4d0e1bad2340c4b653

SHA-256:
d65e479dcc642d013e778b0a4647511c2dfb2b7584acbbcc034222c52548de6d

Scanner detections:
23 / 68

Status:
Potentially unwanted

Analysis date:
4/24/2024 2:57:28 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Adware.EoRezo.P
544

Agnitum Outpost
Adware.Agent
7.1.1

Avira AntiVirus
Adware/EoRezo.P.1
7.11.215.140

avast!
Win32:Malware-gen
2014.9-150809

AVG
Generic5
2016.0.3022

Baidu Antivirus
Adware.Win32.EoRezo
4.0.3.1589

Bitdefender
Adware.EoRezo.P
1.0.20.1105

Clam AntiVirus
Adware.Agent-5200
0.98/21511

Comodo Security
UnclassifiedMalware
21358

Emsisoft Anti-Malware
Adware.EoRezo.P
8.15.08.09.04

ESET NOD32
Win32/Adware.EoRezo
9.11295

Fortinet FortiGate
Riskware/EoRezo
8/9/2015

F-Secure
Adware.EoRezo.P
11.2015-09-08_1

G Data
Adware.EoRezo
15.8.25

IKARUS anti.virus
AdWare.Eorezo
t3scan.1.8.6.0

Malwarebytes
PUP.Tuto4PC
v2015.08.09.04

McAfee
Artemis!204C972DA412
5600.6678

MicroWorld eScan
Adware.EoRezo.P
16.0.0.663

nProtect
Adware.EoRezo.P
15.03.09.01

Qihoo 360 Security
Win32/Trojan.Adware.37e
1.0.0.1015

Reason Heuristics
PUP.Eorezo.AgenceExclusive (M)
15.8.9.16

Sophos
EoRezo Adware
4.98

VIPRE Antivirus
Trojan.Win32.Generic
38286

File size:
759.6 KB (777,856 bytes)

Product version:
1.4.0.0

Copyright:
(c) Agence-Exclusive. All rights reserved.

Original file name:
UpdatePctuto.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
Agence Exclusive

Authority:
VeriSign, Inc.

Valid from:
1/19/2011 1:00:00 AM

Valid to:
1/23/2012 12:59:59 AM

Subject:
CN=Agence Exclusive, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Agence Exclusive, L=Paris, S=Ile de France, C=FR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
612CB1F3C82CC0C69A0C351146C131A3

File PE Metadata
Compilation timestamp:
2/24/2011 9:53:10 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
12288:1qJFqCcwhP1Tpj41iPdqeBiTVqnuKlBzImfxkCeE/WiE4:1GthP1TFRXBY+uKlBzZkCOit

Entry address:
0x23DF1

Entry point:
E8, 51, AF, 00, 00, E9, 16, FE, FF, FF, CC, CC, CC, CC, CC, 8B, 4C, 24, 04, F7, C1, 03, 00, 00, 00, 74, 24, 8A, 01, 83, C1, 01, 84, C0, 74, 4E, F7, C1, 03, 00, 00, 00, 75, EF, 05, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8B, 01, BA, FF, FE, FE, 7E, 03, D0, 83, F0, FF, 33, C2, 83, C1, 04, A9, 00, 01, 01, 81, 74, E8, 8B, 41, FC, 84, C0, 74, 32, 84, E4, 74, 24, A9, 00, 00, FF, 00, 74, 13, A9, 00, 00, 00, FF, 74, 02, EB, CD, 8D, 41, FF, 8B, 4C, 24, 04, 2B, C1, C3, 8D, 41, FE, 8B...
 
[+]

Code size:
332 KB (339,968 bytes)

Remove UpdatePctuto.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.