home

a.find-laboratory.xyz

Domain Information

Server location:
Dublin City, Ireland (IE)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:
find-laboratory.xyz

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.PCUtilities (M), Threat.Win.Reputation.IMP
100.00%

The domain a.find-laboratory.xyz has been seen to resolve to the following 3 IP addresses.

185.28.193.192
192.193.28.185.gransy.com
June 24, 2016

31.170.178.179
June 24, 2016

54.72.130.67
ns1.ibspark.com
February 28, 2016

File downloads found at URLs served by a.find-laboratory.xyz.

1 / 68      (Malware)
http://a.find-laboratory.xyz/hp/?q=Uqp4wDzlCP0 qUMOQIyyDB3W6cCjTFI29r9BkVS10yJHwEjXS9I8McApLLYPcm2yJuYzCNTjSioPftRn35LXVM4UUq9n2BnBWvjz8NvpU/wyy8MaOpGB Db56sF84kp4g7EnDr8OLOutT657kFHK 2kHydm1LjaKMcM0PlvPvdBnagNzWPKJjdPQv2vJX4jzPDZEqBW0dorHMXK/fWKRPS7nMTvgU7JLmvDxhoYjld5J8vZswD6UEKJFyym/.../M8u2SymaDdc8FtAPiQcuRzh  (subway surfers full.exe)

1 / 68      (Malware)
http://a.find-laboratory.xyz/hp/?q=uJYGAYl0gK5Y8RJLFHqjcnEeNzFSG9dXoGYx4Uuwh8x10yZtKTuKSOZs1DgiG9R9OhTcOD1gkw7dsEnIQZMkzBKxbwloGUyXmzXmi1cq7FHW9obg8Evb8PYtof9tMcbqZ1lqysqi347f6j07FGucjv4H/p2hpkJ4NBw5XE4sQQexiADNox2X2jv6cMC0Ae62X5L5hg/yBudWd6TuVQnlgPD0GmtPWDe1M31KpmxZM0knNULoW9PA7Ovz3TCm0gmvDsv3hRdAbJuTGVE9CtCdKyFB93rHCzloy8LPaqGAM994j/Uq2Mf4o9YzwvmUojplgChg5tywlJ/AadBwBkXD94VGYAgogcs5wPaDH6ZlgPDNcvY77gfb9ircK449ypZliwTu NkiB0hPLigdzmEXC0EU7s3/.../ydJeizhtqOoiq1PHv0svu9Zlu3kBCNx9mlFnv6sUb0PwsDFJYXxUDZsxjuglKxqJRfkKm2aTl5lVFEgk7J0HedhIkRzn  (nero 2015 platinum serial key crack full free download.exe)

1 / 68      (Malware)
http://a.find-laboratory.xyz/hp/?q=n6Hk0RFqp1jP6TVNPRxwMyMDdv tpybf15j9xvQ/VdypkmcARFQYMk9rFdXHvrY72lUlmK4HQm325EnyuVwvBGBg d7qKV05xkBoGteZcnTGaPIYXB3ri/IhgB7LGP wtl9bcQsYmuc0hGJLxIgEypYwKdpTuGh6t7fgR3qDg4fbjvfIX9aRRQtZHmOwnuCVKkAb1tbk8vphQQtLH3aBY/e7CRB72dgvsOc5P9R5sQuOmmfyOxVpM57TqU QF2o/.../oBM2xSJ64H1bad3tmx3ng6w7Tvf  (download.exe)

1 / 68      (Malware)
http://a.find-laboratory.xyz/hp/?q=ZeDKe4a8Fnmxuqomjl4t9eqRTBZ3wiGQ59ko5lpywebQ4zI MND449blwg1eMnCbD7kHQXHY1j8OJuMJgD/ekDIQfa20SYuiS/StfDnwBrAJzyyRbkDwluZvVCdfgZxfIPLvCMkRIoi5Oe2EokXXeHDZ7XUbz3rtA4EieIIyUWh/1VYNmW/.../ 5iffjnzL8YLyQze80ZEbLD6ZhzKUxW8XMFnv5ziXpQCBvXx37Af3fv8X1U7jcVWRzler10  (download.exe)

1 / 68      (Malware)
http://a.find-laboratory.xyz/hp/?q=l3oexS2D0L4Zmmjlha6H 9zYwoh9kTOEvUmH1xDFiNHuEJaeVwLR Zv6c8I25V92k338G35X9VvtE7VO0o8//I2TzefyvOB8wmLNmQrGop8b/hhDej520R9u0LlQyrGwfnvSQ1bZuV9IoHDCyrMJEiu da7bsHJk5IMV/.../a  (download.exe)

1 / 68      (Malware)
http://a.find-laboratory.xyz/hp/?q=eR09Xj7VV75SxBCDWYRKxq1CSXqhS8mlFR38ML1eSHe1qQw3e6Ms1AeDHnKQgg66jPHRPaj4chFS2zbwVGebOdBjnkdUAhkZvoXHLZqpKNPaVcfuAPlmLCDCCCfvip/rX2zTFDJS q5FgGBeH fDJQ6g3z/4EQgYIlC0RkdVDq9wzqB 5kSWw m9wl0R6EjTEujCWedrq9/.../y5owXeFM29BSJckyfPCsS0s9zRQLsPvQAQ5Cag9QU9FPt4SRA3VLrE047e3cr87QaBmjtbFXf8tt1pj3PvU8UaZD68mUlfRZK2Sj0Za0IfYA6KutdXv8yjpy5WnFF44P2wxDf3Hhuu1JyvICtt  (x men origins wolverine game.exe)

1 / 68      (Malware)
http://a.find-laboratory.xyz/hp/?q=SJs1Lk9UKrISk56789M6vUkWny6nKQlUzNTuHCqOYfGrIfnlkycjb8fDejeu1SbhZrwOOLE1sFI04z0fnomPoqOJoCWM9V8xlz165cJgHb93sAOf6gmvP47xlzG7q9wcLNYWr/w3vshvUnrFJUkiy12K a0G7sgRsP9HsigZGsT tLJBsx8wsbxdtNWr2tA6Ej RMubXO4xDmbfbqVFB9 KI8ZLVLdfGcM25whMZOLqb7e7E/JHX2Wj/5E23YofsobmzVWeG4Czzv3oYaPlqGN/.../kiQ29xQJ gA0Al0EEs3RFMQ9Hc5F0LCa7A0V5ii9TaubeBfhwQ2LmYyB2HIiWYECRooXi92Fzt1E0imauQkTg5bOOmd0v4V1Ho6NwHbH1bNXIoCnd  (autodesk 2015 win 32 bit for electrical engineers exe.exe)

1 / 68      (PUP)
http://a.find-laboratory.xyz/hp/?q=ohMzvzVIMW3JN89/XZIYKswu2QHGrHdb2p7C547pQivLtuHcPNjB4m8t2dzQ5g7pRuDNLs7Gm8SP627SB4vUetnt1RQIprevE7gXTF7mH 8SkmjxND50 tOh1ZYdNW3nGhpeTeeUVwXjXJozYM2uij4e5CZQ9kVWvtWUthNyHR0xH/.../irqctdhxQ5lpaI0q13jKXB09hO19dK5f8uqSGRKp3CJ  (droid4xinstaller.exe)

The following 161 files have been seen to comunicate with a.find-laboratory.xyz in live environments.

TCP » 54.72.130.67:80
simplefilesupdater.exe (SimpleFiles Application by http://simple-files.com/)

TCP » 54.72.130.67:80
yourfileupdater.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
uninstall12590625.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
uninstall5322109.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
yourfileupdater.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
uninstall190602.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
yourfileupdater.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
googleupdate.exe

TCP » 54.72.130.67:80
browserserver.exe

TCP » 54.72.130.67:80
sm.exe (System Monitor)

TCP » 54.72.130.67:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.130.67:80
uninstall129231.exe (SimpleFiles Application by http://simple-files.com/)

TCP » 185.28.193.192:80
mdquickyksvc.exe (ModenQuick Service by PT. USENET)

TCP » 185.28.193.192:80
mdruyksvc.exe (ModernRu Service by PT. USENET)

TCP » 54.72.130.67:80
sfupdater.exe (SimpleFiles Application by http://simple-files.com/)

TCP » 54.72.130.67:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 54.72.130.67:80
TBNotifier.exe (Ask TBNotifier by APN)

TCP » 54.72.130.67:80
pepperzip.exe

TCP » 54.72.130.67:80
internetenhancer.exe (Internet Enhancer)

TCP » 54.72.130.67:80
ssn.exe (ssn)

 
Latest 20 of 175 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.