» www.bestdriversa.eu
Overview
Analysis
IPs Addresses (1)
Downloads (2)
Network (46)

www.bestdriversa.eu

Domain Information

Server location:

California, United States (US)

ASN:

AS26008 NOMINUM-SKYE1 - SKYE

Root domain:

bestdriversa.eu

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

ESET NOD32

Win32/DownWare

100.00%

Reason Heuristics

PUP.Optional.SmartTweakSoftware.L

100.00%

Baidu Antivirus

Adware.Win32.DownWare

100.00%

The domain www.bestdriversa.eu has been seen to resolve to the following IP address.

search.dnsassist.verizon.net

February 7, 2014

File downloads found at URLs served by www.bestdriversa.eu.

3 / 68 (PUP)

http://www.bestdriversa.eu/hosestat/click.php?f=http://downloads.smarttweak.us/umd/.../Win57791.exe&i=devicesoftware.co.uk (Win18791drv.exe)

3 / 68 (PUP)

http://www.bestdriversa.eu/hosestat/click.php?f=http://downloads.smarttweak.us/umd/.../Win57791.exe&i=driverdoctor.co.uk (Win18791drv.exe)

The following 46 files have been seen to comunicate with www.bestdriversa.eu in live environments.

TCP » 199.101.28.20:80

suggestions.crx

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

google-search.crx

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

TCP » 199.101.28.20:80

Latest 20 of 46 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.