home

ttb.lpmxp1076.com

Domain Information

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
lpmxp1076.com

Scanner detections:
Detections  (91% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Softpulse.Bundler, PUP.Softpulse.SmartSecureSoftwareSl.Bundler (M), PUP.Softpulse.SmartSec.Bundler (M), PUP.Installa.Installer (M)
100.00%

The domain ttb.lpmxp1076.com has been seen to resolve to the following 2 IP addresses.

185.53.178.8
July 8, 2016

52.18.157.175
ec2-52-18-157-175.eu-west-1.compute.amazonaws.com
June 5, 2016

File downloads found at URLs served by ttb.lpmxp1076.com.

1 / 68      (Adware)
http://ttb.lpmxp1076.com/download/request/.../SuxgELn6?__tc=1409931962.93&lpsl=3cb6678a4a7603c48a0ad58b055c3c05&expire=1410012904&source=1&tgu_src_lp_domain=www.requiredinstall.com&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.lpmxp1076.com/download/request/.../bRJ95uTi?__tc=1409880721.474&lpsl=51f6c3f802d0133e361053f3f946c9b4&expire=1409967144&utm_source=Advertisedotcom&utm_term=fechar&tgu_src_lp_domain=www.recommendedupdate.com&utm_medium=1409880740473_1409880736876_108_443_31174950_1&utm_campaign=bRJ95uTi&utm_content=62683-200080503116000000&fileName=Setup  (setup.exe)

0 / 68
http://ttb.lpmxp1076.com/download/request/.../SuxgELn6?__tc=1409913604.059&lpsl=95c053a330689081b7c36c458e519e06&expire=1409999515&source=1&tgu_src_lp_domain=www.requiredinstall.com&fileName=Setup  (norton security scan setup.exe)

1 / 68      (Adware)
http://ttb.lpmxp1076.com/download/request/.../NTsvlg50?__tc=1409927554.581&lpsl=508fd73694d69a284e45d0ce007beaae&expire=1410013912&utm_source=Advertisedotcom&utm_term=ripristino account skype&tgu_src_lp_domain=www.recommendedupdate.com&utm_medium=1409927511287_1409927481988_105_25294_50130750_1&utm_campaign=NTsvlg50&utm_content=66385-9700_1024_it&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.lpmxp1076.com/download/request/.../SuxgELn6?__tc=1409877804.848&lpsl=3e5a87a858563b9671aecd48cba52c00&expire=1409964181&source=1&tgu_src_lp_domain=www.requiredinstall.com&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.lpmxp1076.com/download/request/.../SuxgELn6?__tc=1409908922.243&lpsl=a9de2d8b8e74ff645db2269d39951587&expire=1409995254&source=1&tgu_src_lp_domain=www.requiredinstall.com&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.lpmxp1076.com/download/request/.../SuxgELn6?__tc=1409909010.89&lpsl=a9de2d8b8e74ff645db2269d39951587&expire=1409995254&source=1&tgu_src_lp_domain=www.requiredinstall.com&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.lpmxp1076.com/download/request/.../SuxgELn6?__tc=1409898655.258&lpsl=d4c24f1e1d64c44ffc44f0d44631a87c&expire=1409978598&source=1&tgu_src_lp_domain=www.requiredinstall.com&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.lpmxp1076.com/download/request/.../SuxgELn6?__tc=1409908917.622&lpsl=a9de2d8b8e74ff645db2269d39951587&expire=1409995254&source=1&tgu_src_lp_domain=www.requiredinstall.com&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.lpmxp1076.com/download/request/.../SuxgELn6?__tc=1409867676.582&lpsl=2313848bff925972abcfb853c1d7e86a&expire=1409950433&source=1&tgu_src_lp_domain=www.requiredinstall.com&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.lpmxp1076.com/download/request/.../SuxgELn6?__tc=1409871152.234&lpsl=81b1384df5cd7603cb8cd29c2e89f906&expire=1409957471&source=1&tgu_src_lp_domain=www.requiredinstall.com&fileName=Setup  (setup.exe)

The following 3 files have been seen to comunicate with ttb.lpmxp1076.com in live environments.

TCP » 52.18.157.175:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.18.157.175:80
UCBrowser.exe (by UCWeb)

TCP » 52.18.157.175:80
UCBrowser.exe (UC Browser by UCWeb)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.