The domain softwareupdaterlp.com is registered by proxy through TLDS, LLC DBA SRSPLUS and was originally registered in September of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Singapore, Singapore within Singapore which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Registrant:
PERFECT PRIVACY, LLC
Registrar:
TLDS, LLC DBA SRSPLUS
Server location:
Singapore, Singapore (SG)
Create date:
Tuesday, September 2, 2014
Expires date:
Friday, September 2, 2016
Updated date:
Wednesday, September 16, 2015
ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US
Scanner detections:
Detections (94% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.INSTALLERTECHNOLOGYCO.J, PUP.INSTALLERTECHNOLOGYCO.P, PUP.InstallerTechCorp.P, PUP.InstallerTechCorp.I, PUP.InstallerTechCorp.CC, Threat.Win.Reputation.IMP, PUP.InstallerTechCorp (M), PUP.DisplayTimeSoftware.Installer (M), PUP.InstallerTech.Optimizer.Meta (L), PUP.Dowloader.Installer.Meta (M)
95.65%
Rising Antivirus
NS:PUF.SilenceInstaller!1.9DDF
82.61%
Trend Micro House Call
Suspicious_GEN.F47V1203, Suspicious_GEN.F47V1215, Suspicious_GEN.F47V1221, Suspicious_GEN.F47V1223, Suspicious_GEN.F47V1230, Suspicious_GEN.F47V1227, Suspicious_GEN.F47V0123, Suspicious_GEN.F47V0203, Suspici.B4D1CBB0
26.09%
Dr.Web
Adware.Downware.2519, Adware.Downware.2185, Adware.Downware.9881, Adware.Downware.14087
13.04%
McAfee
Artemis!C7028E97DC89, Artemis!E0E288B657AC, Artemis!09968CDCAA4A, Artemis!923A9ECE946C, RDN/Generic PUP.x!cqj, Artemis!B1FE271BDA92
13.04%
ESET NOD32
Win32/Conduit.SearchProtect, Win32/Conduit.SearchProtect.Z potentially unwanted
13.04%
IKARUS anti.virus
PUA.Conduit.SearchProtect
13.04%
VIPRE Antivirus
InstallerTech
8.70%
Qihoo 360 Security
HEUR/QVM42.0.Malware.Gen, HEUR/QVM40.1.Malware.Gen, HEUR/QVM21.1.Malware.Gen
8.70%
Sophos
Installer Technology Co
4.35%
Fortinet FortiGate
PossibleThreat.SB!tr, Riskware/Conduit_SearchProtect
4.35%
K7 AntiVirus
Trojan , Adware
4.35%
herdProtect (fuzzy)
a variant of 4b264cd35fd4e77b3b0a0bd75a8990042269f14e, a variant of 62e941e82e36a8db30e4bff3e3c871889791f8c6
4.35%
MicroWorld eScan
Gen:Variant.Graftor.160504
2.17%
Malwarebytes
PUP.Optional.OpenSoftwareUpdater
2.17%
The domain softwareupdaterlp.com has been seen to resolve to the following 20 IP addresses.
File downloads found at URLs served by softwareupdaterlp.com.
URL:
http://softwareupdaterlp.com/
SSL certificate subject:
CN=ssl346633.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated
SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
Web server:
cloudflare-nginx
Statistics above are for the previous month of March 2024.