home

dlc1.paretologic.com

Paretologic Inc.

Domain Information

The domain dlc1.paretologic.com registered by Adrian Pereira was initially registered in December of 2003 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Jose, California within the United States which resides on the CDNetworks Inc. network. The domain is associated with the publisher Paretologic Inc. who is located in Victoria, British Columbia in Canada.
Registrar:
GODADDY.COM, LLC

Server location:
California, United States (US)

Create date:
Wednesday, December 17, 2003

Expires date:
Friday, December 16, 2016

Updated date:
Tuesday, February 2, 2016

ASN:
AS36408 CDNETWORKSUS-02 CDNetworks Inc.

Root domain:
paretologic.com

Whois:
5 paretologic.com records

Scanner detections:
Detections  (51% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.ParetoLogic.Optional (L), PUP.ParetoLogic.Optional.Installer.Meta (L)
100.00%

Trend Micro House Call
TROJ_GEN.F47V0905, Suspicious_GEN.F47V1206, Suspicious_GEN.F47V1122
13.04%

Vba32 AntiVirus
Malware-Cryptor.Win32.0073
8.70%

XVirus List
Win.Detected
4.35%

Qihoo 360 Security
Malware.QVM06.Gen
4.35%

IKARUS anti.virus
PUA.RuKometa
4.35%

Dr.Web
riskware program Program.Unwanted.689
4.35%

The domain dlc1.paretologic.com has been seen to resolve to the following 68 IP addresses.

174.35.73.233
May 4, 2015

174.35.73.174
May 4, 2015

174.35.73.167
May 4, 2015

174.35.27.77
April 11, 2015

66.114.52.7
March 16, 2015

66.114.52.17
March 16, 2015

174.35.27.73
February 16, 2015

174.35.73.97
January 13, 2015

66.114.52.11
December 2, 2014

66.114.52.8
December 2, 2014

66.114.52.18
December 1, 2014

66.114.52.15
December 1, 2014

66.114.52.10
December 1, 2014

174.35.27.70
December 1, 2014

66.114.52.14
November 10, 2014

174.35.27.76
October 9, 2014

66.114.52.9
October 9, 2014

174.35.76.20
September 7, 2014

174.35.73.135
September 7, 2014

174.35.73.71
September 6, 2014

174.35.73.157
September 6, 2014

174.35.73.200
September 5, 2014

174.35.73.198
September 5, 2014

174.35.73.215
September 5, 2014

174.35.73.134
September 5, 2014

174.35.76.25
September 5, 2014

174.35.73.156
September 5, 2014

174.35.76.28
September 5, 2014

174.35.73.91
September 4, 2014

174.35.76.32
September 4, 2014

 
Showing 30 of 68 IP Addresses

File downloads found at URLs served by dlc1.paretologic.com.

0 / 68
http://dlc1.paretologic.com/pchealthadvisor/.../ParetoLogic PC Health Advisor_pt.exe  ({blocked}.exe)

0 / 68
http://dlc1.paretologic.com/datarecovery/.../Pareto_DR_Setup_RW.exe  (954f3561e7199099f020f69cdc7c3fd1)

0 / 68
http://dlc1.paretologic.com/.../ParetoLogic FileCure.exe  (e507aaee780fcbe15286b1ba5e868f1a)

3 / 68      (PUP)
http://dlc1.paretologic.com/pchealthadvisor/.../ParetoLogic PC Health Advisor_fr.exe  (cf00425e513c37112353ca530aade740)

1 / 68      (PUP)
http://dlc1.paretologic.com/.../RegCureProSetup.exe  (setuprc.exe)

3 / 68      (PUP)
http://dlc1.paretologic.com/pchealthadvisor/.../ParetoLogic PC Health Advisor.exe  (27794bfb375877a25d794a59fc33889e)

1 / 68      (PUP)
http://dlc1.paretologic.com/.../ParetoLogic Internet Security Setup.exe  (423d121ddee6dc40ab7a5c02aefd300c)

2 / 68      (PUP)
http://dlc1.paretologic.com/.../XoftSpy_AV_Setup.exe  (18ded35f08ad363715bff6b2dc641fef)

1 / 68      (PUP)
http://dlc1.paretologic.com/.../RegCureProSetup_RW.exe  (1ae2b69f049d3884e459450783fec7f6)

0 / 68
http://dlc1.paretologic.com/.../ParetoLogic PC Health Advisor Setup.exe  (859a0c278cf1a9c2c4a94f761634d4cc)

1 / 68      (PUP)
http://dlc1.paretologic.com/regcurepro/.../RegCureProSetup.exe  (1ef9e663aa545b9bc879bab575d6927f)

0 / 68
http://dlc1.paretologic.com/.../unregister.exe  (61f5167ffd767446567dcc20b8f3af2b)

2 / 68      (PUP)
http://dlc1.paretologic.com/regcurepro/.../RegCureProSetup.exe  (8f03c9fe7ddc7c2cbf2985066d061872)

0 / 68
http://dlc1.paretologic.com/pchealthadvisor/.../ParetoLogic PC Health Advisor_da.exe  (2f644531a418ff5eff9b4845be8c2987)

1 / 68      (PUP)
http://dlc1.paretologic.com/.../RegCureProSetup_BING.exe  (setuprc.exe)

0 / 68
http://dlc1.paretologic.com/pchealthadvisor/.../ParetoLogic PC Health Advisor_nl.exe  (f0ee0fe6cc055fcebe2b417d6acaef57)

0 / 68
http://dlc1.paretologic.com/pchealthadvisor/.../ParetoLogic PC Health Advisor_es.vtsafe.exe  (ParetoLogic PC Health Advisor_es.exe)

0 / 68
http://dlc1.paretologic.com/pchealthadvisor/.../ParetoLogic PC Health Advisor_it.exe  (8da0c771efdd59f14c1613b3e63ca58f)

0 / 68
http://dlc1.paretologic.com/pchealthadvisor/.../ParetoLogic PC Health Advisor_sv.exe  (1415c66433b82b53edae2b5956052ad2)

0 / 68
http://dlc1.paretologic.com/pchealthadvisor/.../ParetoLogic PC Health Advisor_no.exe  (fc8a8b543ed132a129c6e4b05548fe30)

0 / 68
http://dlc1.paretologic.com/.../RegCureSetup_RW.exe  (2b9f3b129332de7a76d6afbba269d380)

0 / 68
http://dlc1.paretologic.com/pchealthadvisor/.../ParetoLogic PC Health Advisor_es.exe  (a88bdfa32c5d42f0a57c043a7aa6aaf3)

0 / 68
http://dlc1.paretologic.com/pchealthadvisor/.../ParetoLogic PC Health Advisor CB.exe  (83282ba17778d5f030215d35d6ea8c41)

0 / 68
http://dlc1.paretologic.com/pchealthadvisor/.../ParetoLogic PC Health Advisor_de.exe  (5a536176ea7f9b08f5e17569d8acce0d)

0 / 68
http://dlc1.paretologic.com/.../RegCureSetup_CB.exe  (62f8bc450f81d192fb31b42b6dc576ec)

1 / 68      (PUP)
http://dlc1.paretologic.com/regcurepro/.../RegCureProSetup_bing.exe  (f2e73d9eac1f775810a8dd7e61beb311)

2 / 68      (PUP)
http://dlc1.paretologic.com/easyfileviewer/.../ParetoLogic EasyFileViewer.exe  (4cec76a7c8ffdaa84581c27919ad492a)

2 / 68      (PUP)
http://dlc1.paretologic.com/.../ParetoLogic FileCure.exe  (ParetoLogic FileCure.exe)

The following 89 files have been seen to comunicate with dlc1.paretologic.com in live environments.

TCP » 174.35.76.28:80
1468567241.exe

TCP » 66.114.52.14:80
1468567241.exe

TCP » 66.114.52.21:80
1468567241.exe

TCP » 174.35.73.198:80
claraupdater.exe (ClaraUpdater by ClaraLabs)

TCP » 66.114.52.9:80
1468567241.exe

TCP » 174.35.73.198:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 66.114.52.15:80
1468567241.exe

TCP » 174.35.32.238:80
new_chrome.exe (1stBrowser by The 1stBrowser Authors)

TCP » 174.35.27.73:80
1468567241.exe

TCP » 66.114.52.16:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 174.35.27.76:80
1468567241.exe

TCP » 66.114.52.11:80
1468567241.exe

TCP » 174.35.73.198:80
new_chrome.exe (1stBrowser by The 1stBrowser Authors)

TCP » 66.114.52.8:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 66.114.52.16:80
1468567241.exe

TCP » 174.35.32.134:80
new_chrome.exe (1stBrowser by The 1stBrowser Authors)

TCP » 174.35.32.141:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 174.35.73.233:80
1468567241.exe

TCP » 66.114.52.7:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 174.35.73.167:80
1468567241.exe

 
Latest 20 of 599 files

filecure.com

regcure.com

xoftspy.net

speedypc.com

speedybackup.com

sparktrust.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.