home

www.updatepresentdownload.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
updatepresentdownload.com

Scanner detections:
Detections  (88% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore.MICROMAXSTUDIO.Installer (M)
100.00%

The domain www.updatepresentdownload.com has been seen to resolve to the following 11 IP addresses.

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 20, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 20, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 16, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 16, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 16, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
April 11, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
April 11, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
April 11, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
April 11, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
April 11, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
April 11, 2016

File downloads found at URLs served by www.updatepresentdownload.com.

1 / 68      (PUP)
http://www.updatepresentdownload.com/c?x=k9WkWBoV//90XblpC4iPQj3DicIYPC7R 4SCDgiUzTE=&c=S68h21o82zeXHbYlTrD35TSS/NtzZhDjo1vmm JfxT27fIqt7qpm9tuPwv9Z7dJlsVsbkU0vJiF4AR9F2kinMaVfyQD7PteNaxycqRNWMUhy6oAKm7zNqbsxm3vsqk0Q&fallback_url=http://res.hufftos.com/.../Firefox_Setup_21.0_fr.exe  (icreinstall_firefox_setup_21.0_fr.exe)

1 / 68      (PUP)
http://www.updatepresentdownload.com/c?x=AxGOxWs/m oso5owjiVSXt ALcjqrdLobMWQpycLWTQ=&c=Pq Eh RLYT0e7cl1XjUY3Ks5ggtRLJ755bs8xbrDOed0HxSvttffYcSCDtkAhiGmtdGUJeREJUEsRqWlZ0Q7EaGV/axcoWfi/RXq6XnV34GUOQLyfhMtiaqvR6DHcKeB&downloadAs=skype.exe&fallback_url=http://res.prograbay.com/.../SkypeSetupFull.msi  (eac0d7bf39be3ccade6e974252edc76b)

1 / 68      (PUP)
http://www.updatepresentdownload.com/c?x=ls5LyiJnfd0ONWquk1z7F9yPBV1Az09isIor6z9SsLQ=&c=8UfKzS0lhB4sTQ2BsuxrGG74cWp3ubGBJJyLYN LGEPNEtDTr99vsmkZXr/y Lq3B0SczfGJyXY/o f5tVuLmlQWZWNoCRglIywyNPWBKEYzDSXTgRbZBj8 xYNmluNx&fallback_url=http://res.mshist.com/.../LeagueofLegends_EUW_Installer_9_15_2014.exe  (e74701fc87476d09ea29e6c787dfac94)

1 / 68      (PUP)
http://www.updatepresentdownload.com/c?x=b7DR2BC/fJn02LhSVgUehE5I7zT7N0PoZnjSiiq9jGQ=&c= u ONbLOvWdR0qHeglwAfRQDfO091mA619fkR5ZgkToINvblgSv4L8yBExsE3a69gwrjjqTV40XbXrUniIVa8Oys4QHJO2ReVq41oIxgoWu0 m6ftaaKYeo7O8XaP7hq&fallback_url=http://res.prograbay.com/.../install_flashplayer11x32ax_mssd_aih_ie.exe  (a07ae151593fda3f536e064c8c78518e)

1 / 68      (PUP)
http://www.updatepresentdownload.com/c?x=2q0Sa/ABgt 62I9vadbDwyYZfuEn AKZ2PRrvKYwBm8=&c=B79TzewRw93aQ3PCmlHwWor22Y/bXvLYgPjdCtxh0UuXq42CuiBWfANo3B1ywq5dlU6nvMEjBqiykuIVz/CZ1xJD6Pp5oxRBrpiu4XbVqjX4M0viwmOvRmtwLzvU1oQb&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (2f2bc2548d18b12cde65f9f6ab05ca87)

1 / 68      (PUP)
http://www.updatepresentdownload.com/c?x=Wo/PaWP5Za5TuM8wtPrN2gdFnwm6fKOANEO2P8qcFE0=&c=nFe9G2pBs K46UUuPbc3u4nBTMM7dernEcCbbke65XA9VUqCpTVAI95S/kpcrxZdm0L 4nysg2VrJEAbxk58Brg2jcPFHz3mTc0h7sBuDjGFa6h34B2JQlcLbpt9qG6H&fallback_url=http://res.hufftos.com/.../AdBlockPro.exe  (3736dc28250f410f34030f26d6d8050c)

0 / 68
http://www.updatepresentdownload.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  (1fdea539f1f8aea9a2325386d4785597.zip)

1 / 68      (PUP)
http://www.updatepresentdownload.com/c?x=XopOVjQlz0oUmhz/fPDQ9mx3rHpSESd7G0KT18YytOc=&c=LJ33AOqthSVcv3 BRxE p1FAfim9RI7VefdI0zd0bnLPfW0pf830zgWf986aJNqYxQwYTae5O6ZNVsDILujH3ySTMvhk0XYQqQlDYdyKosrr679RJoXLYvgnVaZTdQZ7&fallback_url=http://res.prograbay.com/.../IE10-Windows6.1-x86-fr-fr.exe  (26e780e3fd06ad0ab2aa043dd384e72d)

The following 6 files have been seen to comunicate with www.updatepresentdownload.com in live environments.

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
Proxomitron.exe (Proxomitron by Groom-A-Zebu (tm))

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.