» how2update.preparedupdate.online
Overview
Analysis
IPs Addresses (1)
Downloads (15)

how2update.preparedupdate.online

Domain Information

Server location:

Ile-De-France, France (FR)

ASN:

AS12876 AS12876 ONLINE S.A.S., FR

Root domain:

preparedupdate.online

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.OOOELEKT.Installer (M), PUP.InstallCore.OOOKodIn.Installer (M), PUP.OOODIGIT.Installer (M), PUP.installCore.OOOMaste.Installer (M), PUP.installCore.OOODigit.Installer (M)

90.91%

ESET NOD32

MSIL/TrojanDownloader.Adload.AZ trojan, Win32/Delf.NRJ worm

18.18%

Dr.Web

Trojan.InstallCore.1954

9.09%

VIPRE Antivirus

Threat.4786018

9.09%

avast!

Win32:Agent-AODJ [Trj]

9.09%

Microsoft Security Essentials

Threat.Undefined

9.09%

Emsisoft Anti-Malware

Worm.Generic.377772

9.09%

Kaspersky

Virus.Win32.Renamer

9.09%

The domain how2update.preparedupdate.online has been seen to resolve to the following IP address.

163.172.197.123

163-172-197-123.rev.poneytelecom.eu

May 22, 2016

File downloads found at URLs served by how2update.preparedupdate.online.

1 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?sfgg=FOxpjjPbb5uWJF4egS_a5iOG8oqZgkc60zinEq__lyo.&cid=P23P6R4618848263456516931&sub=3903&conversion_id=14618848283892&app_id=4&lp_id=1175&v=tribat&stub_id=305&v_id=-t6DSFyvl4QAxcAZCk1lxeNUtpPPFbqEZ8n54zatadY.&lpp=*-*-* (flash_player_setup.exe)

5 / 68 (Malware)

http://how2update.preparedupdate.online/dl.php?cter=FOxpjjPbb5uWJF4egS_a5iOG8oqZgkc60zinEq__lyo.&cid=P23P3R4620366311372039664&sub=3903&conversion_id=14620366369106&app_id=129&lp_id=1175&v=tribat&stub_id=305&v_id=BgWqLLDKKS-h34cml-MZhRnLJiFBE2Nsg_8kJ6g8TmE.&lpp=*-*-* (flash_player_setup.exe)

3 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?dske=Cni9PCg7YAT9iDYq1k8GtJ42hhTyHp8VHcSTSLwFc3Y.&cid=P23P13R4616295832138159978&sub=4329&conversion_id=14616295844357&app_id=129&lp_id=1526&v=tribat&stub_id=305&v_id=7CUvJZipAD7oH6gikD55UgS0LkZktKZ7iTx1zfueA8o.&lpp=*-*-* (adobe_flash_setup.exe)

1 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?dske=HbI8PZesB2uzf13vvEFBoUX5NGqibPflTStP7fu8ZXU.&cid=P23P6R4616144461697015858&sub=4175&conversion_id=14616144466867&app_id=4&lp_id=1526&v=tribat&stub_id=305&v_id=jWEAElVgVzqvtvOvmq63T9MKXRveWlUIvjfTrNTvE1I.&lpp=*-*-* (Flash.exe)

1 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?cter=L8Qvh1T1ybclQwAJiWpKlFbQ_ZrSjNjvMrKdzF1G2Sg.&cid=P23P9R4620372218067183314&sub=4175&conversion_id=14620372226645&app_id=4&lp_id=1518&v=tribat&stub_id=305&v_id=AbVO4_NXNwgD9Z68QGZrYUZHttwpgQTo2vr3sHRRroU.&lpp=w10*-*-* (Flash.exe)

1 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?sfgg=FOxpjjPbb5uWJF4egS_a5iOG8oqZgkc60zinEq__lyo.&cid=P23P13R4618957793797035305&sub=3903&conversion_id=14618957808267&app_id=4&lp_id=1175&v=tribat&stub_id=305&v_id=mpGs_WvoCC7ULu51JZ9nTZwbCyAfj2EGOx-8u2fBFq4.&lpp=w10*-*-* (flash_player_setup2.exe)

1 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?sfgg=FOxpjjPbb5uWJF4egS_a5iOG8oqZgkc60zinEq__lyo.&cid=P23P11R4618991011048763952&sub=3903&conversion_id=14618991026529&app_id=4&lp_id=1175&v=tribat&stub_id=305&v_id=CXhDjynaI_c2SCuxwlGLkD54hhZtqJ0NLZjrCvLG9M0.&lpp=w10*-*-* (Flash.exe)

1 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?dske=FOxpjjPbb5uWJF4egS_a5iOG8oqZgkc60zinEq__lyo.&cid=P23P9R4615907561161664146&sub=3903&conversion_id=14615907569824&app_id=4&lp_id=1175&v=tribat&stub_id=305&v_id=eSn0vhRcv9hy_Op6aLWJ4Oqjg54K3tKE_UC7fw_d1v0.&lpp=w10*-*-* (Flash.exe)

2 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?dske=FOxpjjPbb5uWJF4egS_a5iOG8oqZgkc60zinEq__lyo.&cid=P23P10R4615980342495388247&sub=3903&conversion_id=14615980358274&app_id=4&lp_id=1602&v=tribat&stub_id=305&v_id=o9XrHDHCCNIAatKQ9tfN18Add5Enazo4AxdR4BvLFMs.&lpp=*-*-* (adobe_flash_setup.exe)

3 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?dske=Fgpsb5_0EEq9XI_O0QViPaSKgkibIftbZv3o0I39ENI.&cid=P23P9R4616291281985251101&sub=4177&conversion_id=14616291294324&app_id=63&lp_id=1427&v=tribat&stub_id=305&v_id=P2jbPFUJMddVy8QMo3GgwUmxkL0RCUx_JadBG4O9-vY.&lpp=*-*-* (adobe_flash_setup.exe)

1 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?dske=FOxpjjPbb5uWJF4egS_a5iOG8oqZgkc60zinEq__lyo.&cid=P23P3R4616134169945489807&sub=3903&conversion_id=14616134191131&app_id=4&lp_id=1175&v=tribat&stub_id=305&v_id=eT0uHUE6fwzzDBOcqDouiHP8CPwd2dE8EU3f1_Ad0G0.&lpp=w10*-*-* (Flash.exe)

1 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?sfgg=L8Qvh1T1ybclQwAJiWpKlFbQ_ZrSjNjvMrKdzF1G2Sg.&cid=P23P6R4618865026220018891&sub=4298&conversion_id=14618865035487&app_id=4&lp_id=1518&v=tribat&stub_id=305&v_id=ugAEnK_3OOCST8F6OI1s_47Iwd-ZnRqBjebyHrEiqmE.&lpp=w10*-*-* (flash_player_setup.exe)

1 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?xcvbs=FOxpjjPbb5uWJF4egS_a5iOG8oqZgkc60zinEq__lyo.&cid=P23P9R4618027005088952420&sub=3903&conversion_id=14618027015393&app_id=4&lp_id=1175&v=icoin&stub_id=293&v_id=5XqyDi8uNSetYKHlcDy2lRBmPdEE8YB-NYmOV3F1eSc.&lpp=w10*-*-* (adobe_flashplayer.exe)

1 / 68 (PUP)

http://how2update.preparedupdate.online/dl.php?xcvbs=FOxpjjPbb5uWJF4egS_a5iOG8oqZgkc60zinEq__lyo.&cid=P23P10R4617962655802029676&sub=3903&conversion_id=14617962665273&app_id=4&lp_id=1602&v=icoin&stub_id=293&v_id=oR542ig4LSIGTq6VeWIevmu2XKJ-NrjbeEt8iDdJlH4.&lpp=*-*-* (adobe_flashplayer.exe)

1 / 68 (Adware)

http://how2update.preparedupdate.online/dl.php?ctgec=FOxpjjPbb5uWJF4egS_a5iOG8oqZgkc60zinEq__lyo.&cid=P23P3R4617278305047539228&sub=3903&conversion_id=14617278312013&app_id=4&lp_id=1175&v=icoin&stub_id=293&v_id=g8eHWgms1Gnyay-j6ykGvhl2DLLfjmNwfPmhOYcidS0.&lpp=*-*-* (adobe_flashplayer.exe)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.