home

install.evdls.com

Domain Information

Server location:
Victoria, Australia (AU)

ASN:
AS133618 TRELLIAN-AS-AP Trellian Pty. Limited,AU

Root domain:
evdls.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Air Software (M)
100.00%

The domain install.evdls.com has been seen to resolve to the following 2 IP addresses.

97.74.235.30
ip-97-74-235-30.ip.secureserver.net
September 17, 2016

103.224.182.248
lb-182-248.above.com
August 15, 2016

File downloads found at URLs served by install.evdls.com.

1 / 68      (Adware)
http://install.evdls.com/v2/click/b5988d31/?d=http://software.downloadtree.net/Minecraft.exe&sid=Minecraft-UK&uid=1487974&key=430f18cb8552cf99dd8a62dc60b7bf77948746a84bae45eecd7c412a63cd012c&affiliate_image=&product_image=https://s3.amazonaws.com/evdlimages/.../product.jpg&n=Minecraft&filename=Minecraft Setup  (Minecraft Setup.exe)

1 / 68      (Adware)
http://install.evdls.com/v2/click/b5988d31/?d=http://software.downloadtree.net/ChromeSetup.exe&sid=Chrome-UK&uid=2542012&key=a1183e4e0a7f707682651038897b8757db3025ea73d21c0fb9476a936875c3fb&affiliate_image=&product_image=https://s3.amazonaws.com/.../chrome-product.jpg&n=Chrome&filename=chrome_setup  (chrome_setup.exe)

The following 5 files have been seen to comunicate with install.evdls.com in live environments.

TCP » 103.224.182.248:80
kb799693963.exe

TCP » 103.224.182.248:80
online-guardian-v2.0.9.exe

TCP » 103.224.182.248:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 103.224.182.248:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 103.224.182.248:80
c.n.lines.tester.exe (C/N Line Tester)

accuratedownload.com

dmrcdn.com

fasterol.info

generallydownload.com

limitlessdownload.com

moozymusic.com

mundoweb.com

newzbin2.es

samsungodd.com

wowbeez.com

pornhox.com

sinsinstall.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.