dlfr.tuto4pc.com

Tuto4PC.com GROUP

Domain Information

The domain dlfr.tuto4pc.com registered by Tuto4PC.com GROUP was initially registered in June of 2010 through GANDI SAS. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Roubaix, Nord-Pas-De-Calais within France which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Tuto4PC.com who is located in Paris, Ile-De-France in France.
Registrar:
GANDI SAS

Server location:
Nord-Pas-De-Calais, France (FR)

Create date:
Monday, June 07, 2010

Expires date:
Tuesday, June 07, 2016

Updated date:
Monday, April 22, 2013

ASN:
AS16276 OVH OVH SAS,FR

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Tuto4PC.H, PUP.Installer.Tuto4PC.V, PUP.Installer.Tuto4PC.S, PUP.Installer.Tuto4PC.Z, PUP.Installer.Tuto4PC.W, PUP.Installer.Tuto4PC.Y, PUP.Installer.TUTO4PCCOMINTERNATIONALSL.H, PUP.Installer.TUTO4PCCOMINTERNATIONALSL.P, PUP.Eorezo.AgenceExclusive.Installer (M), PUP.Eorezo.Tuto4PC.Bundler (M), PUP.Tuto4PC.Installer.Meta (M)
100.00%

Boost by Reason
Optional.Tuto4PC.H, PUP.Installer.Tuto4PC.V, PUP.Installer.Tuto4PC.S, PUP.Installer.Tuto4PC.Z, PUP.Installer.Tuto4PC.W, Optional.TUTO4PCCOMINTERNATIONALSL.H
74.19%

Malwarebytes
Adware.Eorezo, PUP.Tuto4PC, Adware.EoRezo
67.74%

avast!
Win32:Adware-ASG [PUP], Win32:Eorezo-CD [PUP], Win32:Eorezo-BU [PUP]
64.52%

Trend Micro House Call
TROJ_GEN.F47V0613, TROJ_GEN.RCBH1KC, TROJ_GEN.F47V0116, TROJ_GEN.RCBH1I5, TROJ_GEN.F47V0324
61.29%

Comodo Security
ApplicUnwnt, UnclassifiedMalware, Application.Win32.EoRezo.AR
61.29%

VIPRE Antivirus
Trojan.Win32.Generic, Adware.Eorezo
58.06%

Avira AntiVirus
Adware/PcTuto.A, ADWARE/EoRezo.Gen
58.06%

IKARUS anti.virus
Win32.SuspectCrc, AdWare.Win32.EoRezo
58.06%

Kingsoft AntiVirus
Win32.HeurC.KVM019.a.(kcloud), Win32.Troj.Generic.a.(kcloud)
58.06%

Microsoft Security Essentials
Adware:Win32/EoRezo
58.06%

Panda Antivirus
Suspicious file
51.61%

MicroWorld eScan
Application.Generic.408133
48.39%

eSafe
Win32.Trojan
48.39%

Bitdefender
Application.Generic.408133
48.39%

The domain dlfr.tuto4pc.com has been seen to resolve to the following 3 IP addresses.

dl6.eorezo.com
May 17, 2016

dl0.eorezo.com
April 14, 2014

dl2.eorezo.com
November 16, 2013

File downloads found at URLs served by dlfr.tuto4pc.com.

1 / 68      (PUP)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr//.../tuto4pc.exe  (238f89574cce005d402c76e316904d75)

1 / 68      (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr//.../tuto4pc.exe  (735b125b80f7b551b528b12c2f58a53f)

1 / 68      (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr//.../tuto4pc.exe  (cf91eff623a57b970dcb6b49efe14666)

11 / 68    (Adware)

4 / 68      (Adware)

19 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (88307aa4e8632aa9650172d12e23298a)

19 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr//.../tuto4pc.exe  (f226773b55ae7e3a118fee2ecb09a6c3)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (688b3670cd0a2b49f2f743baf483a6d1)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (822aa4fb14b83615e5948d3fbc7a6904)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr//.../tuto4pc.exe  (48f5236319231295aa91730980184794)

5 / 68      (Adware)
http://dlfr.tuto4pc.com/.../tuto_photoshop_tuto4pc.exe  (43bfd91eef2d8451d49c2c538c454882)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (fd70d1e3f3beebb62230c3a38b985ecc)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (96c5e3fdc431e2759e145365e5b48107)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (4a11ad1a366df1f3c062a95765c69157)

1 / 68      (Adware)
http://dlfr.tuto4pc.com/.../tuto_ccleaner_tuto4pc_02.exe  (c2213fac712fc7d8cf1855e98fe9196c)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (7ea77d4abc4d7a2d18789f7c6c97a205)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (f46d9296d9b00b9f402978047e843765)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (37a745394fb124b0dd85677e151365d9)

2 / 68      (Adware)
http://dlfr.tuto4pc.com/.../tuto_utorrent_01_tuto4pc.exe  (2fc2f95937fbd61b9cd1153500c2d130)

2 / 68      (Adware)
http://dlfr.tuto4pc.com/.../tuto_itunes_02_tuto4pc.exe  (d75f45e6ce54d4a9511d2634d82ed6ea)

3 / 68      (Adware)
http://dlfr.tuto4pc.com/.../tuto_photoshop_06_tuto4pc.exe  (5e8e738112e4987529f0226d6af4c85c)

4 / 68      (Adware)
http://dlfr.tuto4pc.com/.../tuto_flash_tuto4pc.exe  (87fb0c8e0706197d5e466fbfcd0d8f0f)

2 / 68      (Adware)
http://dlfr.tuto4pc.com/.../tuto_ccleaner_tuto4pc.exe  (e9a756fffa57229d3491e38d5fa7695a)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (dbaba456365e82c1ab3abe18d1b97dea)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (30bb5ed922e7bf3c438e6a8eb69ade42)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (06d9848998e6d4fc65e558cdd1f8b1fe)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (6410271ed742c7745be05a18af3c6a9b)

21 / 68    (Adware)
http://dlfr.tuto4pc.com/clib/tuto4pc/fr/.../tuto4pc.exe  (3ffd358154fa7f7fadef7e89f7a920b7)

The following 8 files have been seen to comunicate with dlfr.tuto4pc.com in live environments.

URL:
http://dlfr.tuto4pc.com/

Title:
“eoRezo”

Web server:
Apache/2.2.16 (Debian) PHP/5.3.3-7+squeeze25 with Suhosin-Patch mod_ssl/2.2.16 OpenSSL/0.9.8o mod_perl/2.0.4 Perl/v5.10.1