home

ttb.dllfinalsoft.com

PERFECT PRIVACY, LLC  (Proxy Registrant)

Domain Information

The domain ttb.dllfinalsoft.com is registered by proxy through ALLEARTHDOMAINS.COM LLC and was originally registered in February of 2015. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Montreal, Quebec within Canada which resides on the OVH Hosting, Inc. network.
Registrar:
ALLEARTHDOMAINS.COM LLC

Server location:
Quebec, Canada (CA)

Create date:
Thursday, February 26, 2015

Expires date:
Sunday, February 26, 2017

Updated date:
Monday, February 29, 2016

Root domain:
dllfinalsoft.com

Whois:
3 dllfinalsoft.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.DigitalPluginSl.M, PUP.Softpulse.DigitalPluginSl.Bundler (M), PUP.Softpulse.DigitalP.Bundler (M), Win32.Generic, Threat.Win.Reputation.IMP, PUP.Softpulse.PluginUp.Bundler (M), PUP.Softpulse (M)
100.00%

avast!
Win32:Malware-gen, Win32:SoftPulse-AH [PUP]
6.25%

VIPRE Antivirus
Threat.4150696, Threat.4783235
6.25%

Dr.Web
Adware.W3i.56, Trojan.DownLoader11.29457
6.25%

ESET NOD32
Win32/SoftPulse.H potentially unwanted application
6.25%

Kaspersky
not-a-virus:Downloader.Win32.Agent, not-a-virus:AdWare.Win32.Agent
6.25%

Emsisoft Anti-Malware
Gen:Variant.Adware.Strictor.62516, Gen:Variant.Zusy.105611
6.25%

MicroWorld eScan
Gen:Variant.Adware.Strictor.62516, Gen:Variant.Zusy.105611
6.25%

McAfee
Socrydo, SoftPulse
6.25%

Malwarebytes
PUP.Optional.DomaIQ, PUP.Optional.MultiPlug
6.25%

Zillya! Antivirus
Adware.Agent.Win32.11556, Adware.Agent.Win32.11838
6.25%

K7 AntiVirus
Unwanted-Program
6.25%

NANO AntiVirus
Riskware.Win32.Agent.dedrfa, Trojan.Win32.SoftPulse.deipgw
6.25%

Bitdefender
Gen:Variant.Adware.Strictor.62516, Gen:Variant.Zusy.105611
6.25%

Agnitum Outpost
PUA.Agent
6.25%

The domain ttb.dllfinalsoft.com has been seen to resolve to the following 5 IP addresses.

204.11.56.37
April 10, 2016

167.114.156.214
ns513839.ip-167-114-156.net
February 13, 2016

5.39.99.49
February 1, 2016

54.201.201.245
ec2-54-201-201-245.us-west-2.compute.amazonaws.com
September 2, 2014

50.112.177.75
ec2-50-112-177-75.us-west-2.compute.amazonaws.com
September 2, 2014

File downloads found at URLs served by ttb.dllfinalsoft.com.

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1409173348.968&lpsl=e19ad25e0b4a43256bd731aa67210ade&expire=1409258750&SourceId=773&CreativeId=2513188&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=4262051806804085168&ymid=000037ada14723bc8427fb8d7b03e84d2c5b4&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../TNBpBlv6?__tc=1409687975.013&lpsl=2ed72d97034ff4ed2dd147da71127037&expire=1409774361&SourceId=773&CreativeId=2525858&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=598&SiteID=398161448846210991&ymid=000035f19520171f643be878360c4a6fe24f7&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1409266380.972&lpsl=31c4a53da69c6c408f95969235238564&expire=1409344616&SourceId=773&CreativeId=2431818&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=-3070862147012794798&ymid=00003afab2d75e10e422f8d2a7a727a31f41c&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1409764038.089&lpsl=ac066c2b9e7b81d225a5d81448083c93&expire=1409673913&SourceId=773&CreativeId=2535448&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=598&SiteID=9204579900384785527&ymid=00003fb5d7b4eec444d31b11e73c331d4dfcb&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1409678138.822&lpsl=0cda4f01b32ae291658e5ad412d2037b&expire=1409763482&SourceId=773&CreativeId=2509248&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=1278&SiteID=&ymid=00005c54c75dfc7eb43b69bacfdcb16605925&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1408205986.578&lpsl=482c7824f5ead9799ea598447aac2587&expire=1408291845&SourceId=773&CreativeId=1452538&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=-5114179809949075462&ymid=000032c6a685c01a244168575542f08532768&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1408626996.241&lpsl=080271a12f5a2ac9ce4fdfb57d7d9440&expire=1408712884&SourceId=773&CreativeId=907698&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&Site ID=1376198917758750547&ymid=0000370fd8517a9324dc9872ddcf1cbd468bf&fileName=Player_Setup  (player setup.exe)

1 / 68      (Malware)
http://ttb.dllfinalsoft.com/download/request/.../sXeph2wY?CreativeId=562218&tgu_src_lp_domain=www.dllfinalsoft.com&PublisherId=378&LineItemId=71488&ymid=00006e952ff123b1b47fab821f187fc146344&SourceId=773  (vafplayer.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1409142608.346&lpsl=1266d38fff6d2789127c2a66c8cc600f&expire=1409228659&SourceId=773&CreativeId=2431818&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=8804256668419169876&ymid=0000318d8b557839f4cbe9c77dcd370baf7fa&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1408494191.437&lpsl=a6b44510f575b4a3bfad83de2aa4ecb3&expire=1408580459&SourceId=773&CreativeId=907698&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&Site ID=1376198917758750547&ymid=00003aa1f2a82dd344b87a16941c4f94fb8d7&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../BazP9GdE?__tc=1409256731.801&lpsl=116ae95a774b693954703c7addc9a9ba&expire=1409343111&SourceId=773&CreativeId=2525818&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=1278&SiteID=&ymid=00005445b7b60d00a4a5da22cdd71b324d045&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1408591222.08&lpsl=47e0bb49e00f30a12abcf0bd6a80bff2&expire=1408677364&SourceId=773&CreativeId=2431828&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=3842083366776165542&ymid=00003df225ea7e33d42b2abac7b32477ed702&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1408908557.35&lpsl=639991eb9dd5e1bb6c16ddd2274afb30&expire=1408994881&SourceId=773&CreativeId=907698&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=338&Site ID=1353645003529687731&ymid=00003429bd2418b7648d89ef539c70b4a01e7&fileName=Player_Setup  (player setup.exe)

1 / 68      (Malware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1408908552.676&lpsl=639991eb9dd5e1bb6c16ddd2274afb30&expire=1408994881&SourceId=773&CreativeId=907698&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=338&Site ID=1353645003529687731&ymid=00003429bd2418b7648d89ef539c70b4a01e7&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../BazP9GdE?__tc=1409506305.475&lpsl=6dd50795df3eb2cd6b295dbf90649640&expire=1409584940&SourceId=773&CreativeId=2525838&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=-3070862147012794798&ymid=00003019bf7557f4e4a61b6d9a4f046705b69&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1406629690.229&lpsl=a31ed64949cab93900f783e88f7ec6e2&expire=1409053982&SourceId=773&CreativeId=907698&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=338&Site ID=1353645003529687731&ymid=00003a0fbe79e38f1492180b64f42e301425c&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1408739902.844&lpsl=051ac4a29cc9c899e17a0685b2aeeeb7&expire=1408825460&SourceId=773&CreativeId=1452538&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=-6339849213675941608&ymid=00003fa3b95116aa24bfbaa81e59fd771bf90&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1408548926.812&lpsl=f7a9a071c209f146766f8fe8ddb122d8&expire=1408634476&SourceId=773&CreativeId=1452538&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=-7222206076256159409&ymid=000033abf9c221e234de6b4547b6d89e89404&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1408739878.531&lpsl=051ac4a29cc9c899e17a0685b2aeeeb7&expire=1408825460&SourceId=773&CreativeId=1452538&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=-6339849213675941608&ymid=00003fa3b95116aa24bfbaa81e59fd771bf90&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1408508848.256&lpsl=58e3e6eba4dfd15d358856caee6301d9&expire=1408594850&SourceId=773&CreativeId=1452538&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=1376198917758750547&ymid=00003e9f94c8e850c446cae286821c323d291&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../TNBpBlv6?__tc=1409604703.934&lpsl=4aa1f48e51695aa046968c448c91ca20&expire=1409691067&SourceId=773&CreativeId=2525858&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=598&SiteID=-3602048990806515935&ymid=000039f438a11997d45c887cd7ddb6c2f9cf5&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1409255728.731&lpsl=e5253bbe8135677cca3904a146cf4387&expire=1409342003&SourceId=773&CreativeId=2431818&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=4262051806804085168&ymid=0000395030f2d66dd4acd8b7ba7fa2cb935a7&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../TNBpBlv6?__tc=1409179246.869&lpsl=c3a8af897414fdbe2376ad0bdd33fd44&expire=1409265615&SourceId=773&CreativeId=2525858&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=598&SiteID=-855499235354377984&ymid=00003c9661373a3bb48c8aca9acad0c58a60c&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1409179279.768&lpsl=904bc2480d7a68969fb261ad4b1209db&expire=1409265672&SourceId=773&CreativeId=2431818&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=598&SiteID=-7645622627258619733&ymid=0000323ddc7d0defe45c4a31a0e7dda84b546&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../TNBpBlv6?__tc=1409613830.203&lpsl=3648c774f1e28e5848f4bd884e34a103&expire=1409700219&SourceId=773&CreativeId=2525858&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=598&SiteID=-7208260542210169883&ymid=00003cdbbca0b640340b88351870d60901a6e&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../BazP9GdE?__tc=1409591006.075&lpsl=7f9d9700f6c322cbd541947fd0bda5bc&expire=1409677352&SourceId=773&CreativeId=2525818&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=1278&SiteID=&ymid=0000565fa9da2d7da4b70b771168361950dc0&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1409179170.396&lpsl=5551c555459a42fc7d6a95fc97d8dd54&expire=1409265548&SourceId=773&CreativeId=2431818&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=598&SiteID=-7645622627258619733&ymid=00003348a96a635f445e6a418ecd45338d28e&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1408933601.889&lpsl=d1bbcd9df14d97c63608b4f5f9f7971f&expire=1409019903&SourceId=773&CreativeId=1452538&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&SiteID=-6339849213675941608&ymid=0000350eb055649c74712bc1ea74ac821714e&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../TNBpBlv6?__tc=1409489404.228&lpsl=7e5fc06bd898f34af6b07a0166e077ee&expire=1409518663&SourceId=773&CreativeId=2547858&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=1278&SiteID=&ymid=00005f6c707e868184fd28eb7cc247ca60b45&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.dllfinalsoft.com/download/request/.../81payYjJ?__tc=1408917335.576&lpsl=21b71ea12442ef3957aed9d3c7ece0c3&expire=1409002353&SourceId=773&CreativeId=907698&LineItemId=LINE_ITEM_ID_WILL_BE_HERE_ON_SERVING&PublisherId=328&Site ID=3378461404974875907&ymid=000035e43b247feab460da0649089870d824a&fileName=Player_Setup  (player setup.exe)

 
Latest 30 of 32 download URLs

The following 36 files have been seen to comunicate with ttb.dllfinalsoft.com in live environments.

TCP » 167.114.156.214:3333
webproxy.exe

TCP » 167.114.156.214:80
setup_info.exe

TCP » 167.114.156.214:80
tencent.exe (by Tencent)

TCP » 167.114.156.214:80
rs.exe

TCP » 167.114.156.214:80
loader.exe (Updater by SOFTWARE AGILITY LIMITED)

TCP » 167.114.156.214:80
win.exe (SendStat Module)

TCP » 167.114.156.214:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 167.114.156.214:80
ProxyFinder.EXE (Proxy Finder Enterprise Edition Application)

TCP » 167.114.156.214:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 167.114.156.214:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 167.114.156.214:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 167.114.156.214:80
deamon.exe

TCP » 167.114.156.214:80
run_css.exe

TCP » 167.114.156.214:1177
pirater facebook v1.0.exe

TCP » 167.114.156.214:80
Updater.exe (Updater)

TCP » 167.114.156.214:80
internet tv.exe

TCP » 167.114.156.214:80
kingtranslatesetup.exe (KingTranslate by Bandoo Media Inc)

TCP » 167.114.156.214:80
kingtranslatesetup-r0-n-bc.exe (KingTranslate by Koyote-Lab)

TCP » 167.114.156.214:80
ContentFinder.exe (ContentFinder by DigitalSoftware Group)

TCP » 167.114.156.214:80
Updater.exe (Updater)

 
Latest 20 of 41 files

URL:
http://ttb.dllfinalsoft.com/

Web server:
Apache

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.