home

www.laboratorybundlecurrent.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
laboratorybundlecurrent.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallCore.AVSoftwa.Installer (M), PUP.InstallCore.RE11 (M)
100.00%

The domain www.laboratorybundlecurrent.com has been seen to resolve to the following 6 IP addresses.

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
May 17, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 17, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 17, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
May 17, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
May 17, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
May 17, 2016

File downloads found at URLs served by www.laboratorybundlecurrent.com.

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=qHBMRGUF6TSBLvxklkGTohOxrnW/0/zZNUyAIX3rBMw=&c=ENQ5hrLSg0ejDc p Q/ zoZ23koN9WzVhvARn/uzM0y2JyHpvN14jfOy6v65t c2ToGQgfWz ViB7Z0I51JG6UoYoJyAXhqSFBV9qGoMqgTB/ZCpA1SIX2C0c/JMXCpj&downloadAs=Kirara_Encoder_v8011.exe&fallback_url=http://.../get.php?file=06842350&m3  (c0b715d45f2c388f31dc4c3d03116878)

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=J4UXt7ZMAW 3/EABIsHVsBofVvp2 p6jfTsJA5AkBAM=&c=jeItCezYgVQEFhcDzFMwn3bb1pqozBzD249XJB BLaDC7TrV Gg8k1OZuMsBKlUFx3Gayl98M 2oiy3u /fuDfMeLNolijSCoxlj3paWBtB862fChZssej7ynGViyxGQ&downloadAs=WinRAR_Portable_Mult.exe&fallback_url=http://.../get.php?file=c53df918&m3  (742b6b23567bcd6853750ee46cb60813)

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=eQr Yr8RMm0UM3XycCr7CzEKjUJ3PdZyYOPdPbT9JbI=&c=BFfY9AQTolHh58K 3iaqNzz5rv9749j8JMqs3My01flrlsjOyYTi437ihBYUhac9cv7cVo80CHlCdfou0ruTVexsNFKm3QY9t/jhbTWe2/tD7YhtWK97XCKJXTKQjJgP&downloadAs=FLVPlayer4free.exe&fallback_url=http://.../flvplayer4free_setup_silent.exe  (399b2066fe92ee74076240a26350f4a9)

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=1jXTKw9umVh7VFcp52Z/s5ZC7qk /Pos0rvwkcAqljs=&c=2kJ0I5dD bIAIs8QBbwB7j9fSa4dN/SmRe GaIpSojwhdJGks01R328c5dI2N1S7TuuZNL9EiKEfTrMlRePLsa2FwvSiLUkNAy6qWNQckUollaj4DU2pe7UDUX3XnD 7&downloadAs=setup.exe&fallback_url=http://.../setup1.19.exe  (1eb4dd599253b897a3d4ee4fc1e218f7)

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=TIi7iBmrqQUvgvwe/QrUHSaOmvwYH81YZGC868D bKw=&c=nAZgHNwYFU21W6xXl7VcqeeOUb7nwwnwKDXLBIEkPhr1asl33Bh3O/pyTxVA2aIHuIiigQp0dQ4YTTa243qHqZryV7FnYqlzyMP3xMviw Ra0GSnlJudGlc2HmTHI6yp&downloadAs=setup.exe&fallback_url=http://.../setup1.19.exe  (1eb4dd599253b897a3d4ee4fc1e218f7)

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=3LhN Dku1HemYsJoEYAc3zcoGf6Y1msS2TFUAaKVGwc=&c=vYTVdlaJC 4sipZhblKNk zK/L98eVKB5ZdThZAwvOnDaKjakGSCMb8GRtSvmp1c9 vS29SHqhcfvPJBRbyXX/uLmjt17ZucdZptpFMPb/8 HICnM8ofzguZZGvQ9ZI7&downloadAs=Sim_EKB_Install_2014.exe&fallback_url=http://.../get.php?file=56a1e0bd&m3  (49653cbec73d9306493abc7099f848b1)

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=XV7WdzpGMIvnuxV0PwMmJzSoqTddLYPQXozaNYgjYcM=&c=TdiHV1EJF1e/WMzAukuuYIKP/ojjmdk9L6YdH8hHHYWCbSE69Kk5JJDgiFDbDHZJ5PMPyAC/wocY dcGfPKsiErOlZ/HH1witkL6ubN5A116AAb4Q850zS5p4JiNNCBo&downloadAs=VRay_For_SketchUp_1_.exe&fallback_url=http://.../setup1.19.exe  (cad86d4b7962ba3bbe3264148bd7b4b7)

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=ebX0/zCeL1KQZPOYCm7Wlkge4kMezSS KWOKeJJ2 EM=&c=UeEfMQtj yCUYLrrmqhOsQsXIDcfEGC1v6IUsovbCIPxlMYdoQdVR6FWjmzB/2SODNDDdD37LlccRf82wWqp5MflWFOG04I 5AiqnNVx3E0PP1cGn/5WzATBut2X3KxB&downloadAs=MuhammadNiazBlogspot.exe&fallback_url=http://.../get.php?file=abc6f7da&m3  (dcfe4cf42b88655a56a80e405f0a38e6)

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=jo65Ybx2TmkGkhbThmVPBTo5ZFdEDda1xxbZgcailvo=&c=fBjIaOi8NZXe9lDj8J5vybzeXIb5yJN2Z2x1mc4R8wK cKvu/ZpSZ9zKSSnKmRmVUTZYidQykHsl3jj3aDIRaTj/CZn5sjZt50OZ0JNxZJaMU993yLD0uLMGglkRAzlN&downloadAs=WinJect_17.exe&fallback_url=http://.../get.php?file=441242af&m3  (6f1619954750adec6db65b88070ee9f3)

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=blzS6GaeXsq86oZafMbyk/Pjkwi9J32yClKxcnaZaZI=&c=we3bbzSDQS5TwHnIxoYiFXSjhXEXYiCmI1oCtxH r9v3Bq15R2UDHLKuYgMw5s4E31N7NRi1Un5cmvG755zSgL4A8oTXsx6nUwUb4/kYYlrKWDAL8fEFJcSBKw1VM1en&downloadAs=Your_Freedom_2013090.exe&fallback_url=http://.../get.php?file=06a47e10&m3  (14c4ea42c05acf0073a80c6eea0a9b82)

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=Tox/oviB4pyMxfLthuKre640UZxOOhLOHy41dsvkbII=&c=5cHRs8zzELbplJ3NMZRupYMCUkxwvjCPj2WC eSCtNLgr6pbt8UaJ5Ur qqUe2LGdLwi AWEv1lE/rMZJtJYUpZcIQg4ANqGBzet4wZNxrImTa9Ud7QN5BYVhEI2g1By&downloadAs=Date360net_BBA8_Show.exe&fallback_url=http://.../get.php?file=62654265&m3  (7734ac39069af236858028a7f1eac479)

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=G6psgvWo7WUo0gURpXet/BN1ZSf1Oev9ZDhKosO /bQ=&c=ScNpjSJgxBZ2PGa0rNlchUvfkgu9MXF8I52fqRXMST8UR3oCiLMmwvazaN2W7MZPY5ZLQJZucVCbEhzvqX8gyDv9KbM19F63 a0t cyY6uYz12zTWsLBQSqh5YROMnAv&downloadAs=Win10PE_Public0403.exe&fallback_url=http://.../get.php?file=469207bd&m3  (6042e7c0f7af0f8b9a94333c4014faa5)

1 / 68      (PUP)
http://www.laboratorybundlecurrent.com/c?x=NKv9rZ3Bcle/dt8K0MOledotr2x9XMbCgj88OFt/jb0=&c=FQNFYahdRUBUJwZ7H27dHsKB2Qo/8eZ0kGDdn9AcWNK3tez1wQiuBb643hi4e/XSgyowpsZiEEKslyv85AyLd/Ue0K/pPeM3sYoiSgHHQ3Y3/6Ca16iehyLECha2RIAU&downloadAs=Win10PE_Public0403.exe&fallback_url=http://.../get.php?file=8dd624c2&m3  (e6f210ec4dbb8ecb6fe58351f17edd71)

The following 6 files have been seen to comunicate with www.laboratorybundlecurrent.com in live environments.

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
Proxomitron.exe (Proxomitron by Groom-A-Zebu (tm))

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.