home

secure.driversupport.com

PERFECT PRIVACY, LLC  (Proxy Registrant)

Domain Information

The domain secure.driversupport.com is registered by proxy through Network Solutions, LLC and was originally registered in August of 2001. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Antonio, Texas within the United States which resides on the Rackspace Hosting network.
Registrar:
Network Solutions, LLC

Server location:
Texas, United States (US)

Create date:
Tuesday, August 14, 2001

Expires date:
Monday, August 14, 2017

Updated date:
Thursday, August 16, 2012

ASN:
AS33070 RMH-14 - Rackspace Hosting

Root domain:
driversupport.com

Whois:
3 driversupport.com records

Scanner detections:
Detections  (56% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.PCDriverHQ.Installer.Meta (L), PUP.Drivers.Optional.Installer.Meta (L), PUP.NewMedia.NMH.Bundler (M)
88.00%

Dr.Web
riskware program Program.Unwanted.1283, Trojan.DownLoader1.9314, Win32.Runonce.6652
16.00%

ESET NOD32
Win32/TrojanProxy.Delf.NAL trojan, Win32/Chir.B virus, Win32/AutoRun.Delf.LV worm
12.00%

avast!
Win32:Tufik, Win32:Oncer, Win32:AutoRun-CWJ [Trj]
12.00%

Microsoft Security Essentials
Threat.Undefined
12.00%

F-Prot
W32/Heuristic-124!Eldorado (not disinfectable), W32/Thecid.B@mm, W32/Autorun.ZF
12.00%

Norman
Win32.Runouce.B@mm, Trojan.Generic.KDV.391478
8.00%

Emsisoft Anti-Malware
Win32.Runouce.B@mm, Trojan.Generic.KDV.391478
8.00%

McAfee
Virus.W32/Tufik
4.00%

VIPRE Antivirus
Threat.4150696
4.00%

AVG
Worm/Delf.KKJ
4.00%

Kaspersky
Virus.Win32.Renamer
4.00%

The domain secure.driversupport.com has been seen to resolve to the following 2 IP addresses.

162.242.141.70
January 31, 2014

98.129.145.65
December 16, 2013

File downloads found at URLs served by secure.driversupport.com.

0 / 68
https://secure.driversupport.com/direct/.../driversupport.exe  (aa9032d5e350caf99fec4fb1f6d139ed)

0 / 68
https://secure.driversupport.com/direct/.../driversupport.exe  (2f79fcd336a749a96308f1f4ed059f00)

2 / 68      (PUP)
https://secure.driversupport.com/direct/.../driversupport.exe  (77ef28b70babd0960ba205292b484beb)

1 / 68      (Adware)
https://secure.driversupport.com/direct/.../driversupport.exe  (605cd34ecf8d6f34eda97fac27036f42)

1 / 68      (PUP)
https://secure.driversupport.com/direct/.../driversupport.exe  (29b3d59d931feda78450c8109fa48e0d)

1 / 68      (PUP)
https://secure.driversupport.com/direct/.../driversupport.exe  (79263607cbfd5f910e5d03332c677bfe)

1 / 68      (PUP)
https://secure.driversupport.com/direct/.../driversupport.exe  (76c229bb7772e3b95ae9d7a117e824fc)

2 / 68      (PUP)
https://secure.driversupport.com/direct/.../driversupport.exe  (77ef28b70babd0960ba205292b484beb)

URL:
http://secure.driversupport.com/

Google Analytics:
UA-2010741

Title:
“Driver Support”

Description:
“Driver Support provides an innovative way to diagnose issues with your PC, resolve those issues through support and driver matching technology, and optimize your PC’s performance.”

SSL certificate subject:
CN=secure.driversupport.com, O="PC Drivers HeadQuarters I, Inc.", SERIALNUMBER=160078500, OID.2.5.4.15=Private Organization, L=Austin, S=Texas, C=US, OID.1.3.6.1.4.1.311.60.2.1.2=Texas, OID.1.3.6.1.4.1.311.60.2.1.3=US

SSL certificate issuer:
CN=Symantec Class 3 EV SSL CA - G3, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Web server:
Microsoft-IIS/8.0 (ASP.NET) (Version: 4.0.30319)

clickbank.net

driversforfree.com

drivershq.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.