sharesuper.info

Ruslan

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Portland, Oregon within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.
Remove Malware from sharesuper.info - Powered by Reason Core Security
Registrar:
Dynadot, LLC

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (94% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.WebPick.Installer (M), PUP.WebPick.SergeyPetrov (M), Threat.Win.Reputation.IMP
82.22%

Dr.Web
Win32.Sector.21, Trojan.Crossrider.36840, Trojan.WebPick.29, Trojan.WebPick.2452, Adware.Downware.1541
31.11%

McAfee
Program.MultiPlug-FPF, PUP-FHQ!AA7872E5A205, PUP-FHQ!79847DA40985, PUP-FHQ!1676FE22ED17, PUP-FED!2FED3C1F51F6
28.89%

avast!
Win32:Agent-AYLT [PUP], Win32:InstalleRex-BI [PUP], Win32:Installer-AP [PUP], Win32:Xpaj-gen, Win32:InstalleRex-BL [PUP]
28.89%

Emsisoft Anti-Malware
Gen:Variant.Adware.MPlug, Adware.Dropper.AB, Adware.Dropper.AI, Application.Generic.659075, Trojan.Generic.10017289, Trojan.Generic.11418093
22.22%

AVG
Adware Generic5.BRLD, Adware Generic5.BQSQ, Adware Generic5.BQWE, Adware Generic5.BQWH, Adware Generic5.BQTU, Adware Generic5.BQTH
22.22%

Norman
Gen:Variant.Adware.MPlug.5, Adware.Dropper.AB, Adware.Dropper.AI, Genome.GR, Gen:Variant.Application.Bundler.InstallRex.2
22.22%

Sophos
PUA 'MultiPlug' (of type Adware), InstallRex
22.22%

Kaspersky
Trojan.Win32.AntiFW, not-a-virus:HEUR:AdWare.Win32.MultiPlug, not-a-virus:AdWare.Win32.MultiPlug, not-a-virus:Downloader.Win32.AdLoad
22.22%

ESET NOD32
Win32/Adware.MultiPlug.DV application, Win32/AdWare.MultiPlug.CN application, Win32/Adware.MultiPlug.HP application, Win32/Adware.MultiPlug.JX application
17.78%

Clam AntiVirus
Win.Adware.Multiplug-53314, Win.Trojan.Installerex-1, Win.Trojan.Antifw-2
17.78%

F-Secure
Win32.Sality.3, Gen:Variant.Adware.MPlug, Adware.Dropper.AB
15.56%

Lavasoft Ad-Aware
Gen:Variant.Adware.MPlug.5, Adware.Dropper.AB, Adware.Dropper.AI
15.56%

Malwarebytes
PUP.Optional.MultiPlug, PUP.Optional.Installrex, PUP.Optional.InstalleRex
15.56%

K7 Gateway Antivirus
Unwanted-Program
15.56%

The domain sharesuper.info has been seen to resolve to the following 11 IP addresses.

ec2-52-27-166-51.us-west-2.compute.amazonaws.com
July 19, 2015

ec2-52-27-146-26.us-west-2.compute.amazonaws.com
July 19, 2015

ec2-52-26-71-172.us-west-2.compute.amazonaws.com
July 19, 2015

ec2-52-24-161-49.us-west-2.compute.amazonaws.com
June 26, 2015

ec2-54-69-104-255.us-west-2.compute.amazonaws.com
May 7, 2015

July 31, 2014

July 31, 2014

cf-199-27-134-36.cloudflare.com
February 8, 2014

cf-199-27-135-36.cloudflare.com
February 8, 2014

January 10, 2014

January 10, 2014

File downloads found at URLs served by sharesuper.info.

1 / 68      (Adware)
http://sharesuper.info/.../forrest gump soundtrack.exe  (6419f82c02ae619026521e75ccbe6c27)

39 / 68    (Adware)
http://sharesuper.info/.../Download.exe  (0bb3ee659603e387f4d301aa9e9368c4)

12 / 68    (PUP)

1 / 68      (Adware)
http://sharesuper.info/.../Patch.exe.exe  (76566cd62eeb8bdc7abb700ee21184e9)

1 / 68      (Adware)

1 / 68      (Adware)

13 / 68    (PUP)
http://sharesuper.info/.../V Root Free Download.exe  (628c7c06daae700f4452149dcff2c4a4)

1 / 68      (Adware)

1 / 68      (Adware)
http://sharesuper.info/.../Descargar Juego.exe  (8cc81f24115624dc598b800d6a441535)

1 / 68      (Adware)
http://sharesuper.info/.../visual album beyonce.mp3.exe  (b6d39d6dff8781194978753b7bc894f6)

1 / 68      (Adware)

1 / 68      (Adware)
http://sharesuper.info/.../media fire eternia crystal.exe  (16018a86cd949113d4153d85566ded99)

5 / 68      (false positives)

1 / 68      (Adware)
http://sharesuper.info/.../Portable PS_CS6_multi.rar.exe  (09c927fac1db20caceaedb9ab316cc0b)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)
http://sharesuper.info/.../Maati Ke Putle Tujhe Kitna Ghuman Hai | Super Hit Qawwalies- Yusuf Azad Qawwali.exe  (maati ke putle tujhe kitna ghuman hai - super hit qawwalies- yusuf azad qawwali.exe)

1 / 68      (Adware)
http://sharesuper.info/.../star stable hack no survey.exe  (f81d518b736d2e28e467c819ea4fea3b)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Malware)
http://sharesuper.info/.../1n1 without you.mp3.exe  (94d4daca6b5b1a3f042c1c32c33244e2)

1 / 68      (Adware)

1 / 68      (Adware)
http://sharesuper.info/.../201312131.rar.exe  (6781d156c7564cc62ab17ef5e28711a4)

5 / 68      (false positives)

1 / 68      (Adware)
http://sharesuper.info/.../?????? ?? ???? ????? ??? ????? ?????? ??? ????.exe  (أنشودة يا مرسي اتوكل علي مولاك المنشد ابو عمار.exe)

1 / 68      (Adware)
http://sharesuper.info/.../Faxir Hariri.exe  (e25b5b92f70bad9e14d5b72063574e7a)

1 / 68      (Adware)
http://sharesuper.info/.../ServiceTool_V1074MP258.zip.exe  (20196cd7550ab8418ff4191dfe985643)

1 / 68      (Adware)

1 / 68      (Adware)

 
Latest 30 of 304 download URLs

The following 3 files have been seen to comunicate with sharesuper.info in live environments.

August 19, 2014

URL:
http://sharesuper.info/

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
ngx_openresty (PHP/5.4.37)

Facebook:
Shares:  2

Statistics above are for the previous month of November 2016.

Remove Malware from sharesuper.info - Powered by Reason Core Security