» bar.searchqu.com
Overview
Analysis
IPs Addresses (1)
Downloads (1)
Network (6)
Related Domains (1)

bar.searchqu.com

Domain Information

Server location:

Tel Aviv, Israel (IL)

Root domain:

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.Installer.DiscordiaLimited.V

100.00%

The domain bar.searchqu.com has been seen to resolve to the following IP address.

94.31.0.60.IPYX-076665-ZYO.above.net

April 9, 2015

File downloads found at URLs served by bar.searchqu.com.

1 / 68 (PUP)

http://bar.searchqu.com/bar/.../emailNotifierSetup.exe (31197bab52845b3a99d9be108ff42951)

The following 6 files have been seen to comunicate with bar.searchqu.com in live environments.

TCP » 94.31.0.60:80

citrio.exe (Citrio by CatalinaGroup)

TCP » 94.31.0.60:80

lavasofttcpservice.exe (LavasoftTcpService.exe by Lavasoft Limited)

TCP » 94.31.0.60:80

srptm.exe (srptm)

TCP » 94.31.0.60:80

avlib.exe (AVLIB.EXE by AVSoftware)

TCP » 94.31.0.60:80

citrio.exe (Citrio by CatalinaGroup)

TCP » 94.31.0.60:80

3eebdfe20858d43b1e31b8c28eaa289d.exe

Related Domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.