home

www.bundlebinariesbody.com

Communigal Communication Ltd

Domain Information

The domain www.bundlebinariesbody.com registered by Communigal Communication Ltd was initially registered in January of 2016 through GAL COMMUNICATION (COMMUNIGAL) LTD.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Portland, Oregon within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.
Registrar:
GAL COMMUNICATION (COMMUNIGAL) LTD.

Server location:
Oregon, United States (US)

Create date:
Tuesday, January 26, 2016

Expires date:
Thursday, January 26, 2017

Updated date:
Tuesday, January 26, 2016

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
bundlebinariesbody.com

Whois:
1 bundlebinariesbody.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallCore.Installer.Installer (M), PUP.InstallCore.Bundler (M), PUP.installCore (M), PUP.InstallCore (M), PUP.InstallCore.FC.Installer (M), PUP.InstallCore.RE11 (M)
100.00%

ESET NOD32
Win32/InstallCore.ADX.gen potentially unwanted application
2.56%

The domain www.bundlebinariesbody.com has been seen to resolve to the following 21 IP addresses.

52.10.159.134
ec2-52-10-159-134.us-west-2.compute.amazonaws.com
August 13, 2016

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
August 13, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
July 19, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
June 29, 2016

54.191.246.249
ec2-54-191-246-249.us-west-2.compute.amazonaws.com
June 23, 2016

54.149.195.20
ec2-54-149-195-20.us-west-2.compute.amazonaws.com
June 23, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
June 23, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
June 4, 2016

52.33.165.25
ec2-52-33-165-25.us-west-2.compute.amazonaws.com
June 4, 2016

52.32.12.104
ec2-52-32-12-104.us-west-2.compute.amazonaws.com
June 4, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 15, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 15, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 16, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 16, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 16, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
February 13, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
February 13, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
February 13, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
February 13, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
February 13, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
February 13, 2016

File downloads found at URLs served by www.bundlebinariesbody.com.

1 / 68      (PUP)
http://www.bundlebinariesbody.com/c?x=L U79Bw6w/hxRNkGXL1Yx7rCZ/0JhkRhXcXYMJsJpbw=&c=iwg3zq2w2Qs52yv1REUWvlRQ/Dch EymurWZRekqCKX2O/B OqDsL5cNlLbjegWksXZeCQk/ JePEHeMHIgAqFO9sO6BwUM7cy4tjw5P5Mq7kk42jXw2V6icrxjvSQZ16O9W/30Qrsz41H9TGYPVERWXSUHKtA7JhrXiBw9B0VI=&fallback_url=http://cdn.download.comodo.com/icedragon/.../icedragonsetup.exe&downloadAs=Comodo-IceDragon-35193-dp.exe  (4da5c603e3acf824c406c24b6a73b353)

1 / 68      (PUP)
http://www.bundlebinariesbody.com/c?x= M7g4Vw6Z1k6iMpcCftiLH/bCLqPKj448IwlRiM6ZsI=&c=yQP4436/3oaYl7MbFbZBqpmgcQPhjqqlTMoPCF7y4j X1mqJ2EKAbNkPqW0xw5k0eSjBs /P2FvvkrT68auHrC36vYNnNuyhv2jPRm8yTD3RBkUh08yW1I0jIHor6AdB&fallback_url=http://get.geo.opera.com/pub/opera/desktop/34.0.2036.50/.../Opera_34.0.2036.50_Setup.exe&downloadAs=Opera-12614-dp.exe  (d2bd0fd9239730c853989521477b8fbe)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=XtvweDz1almsDlTcVHldkhQ hATVeV3Xy8GGILJ/KcE=&c=V7n2sbt8YhMQMFpx5cak Tui/A3lahKB3Ch0EGO76yvyTFJbCgRNm6IfoqsOayAdNJ94m/LE8pDDcrJg2OqLzj3Q1BXK94bM38i7JrLs2O6emY4UY///2kuETn5K4TWi&fallback_url=http://ardownload.adobe.com/pub/adobe/reader/win/9.x/9.5.0/.../AdbeRdr950_pl_PL.exe&downloadAs=Adobe-Reader-12627-dp.exe  (b52a82c45c350e3f35a7138014c17acc)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=PVO1E4olRtlBlez5sEvd7glCqp/X S2KcAYHNVWG nQ=&c=WLZVnOWQ92KDwxjMfUolIpyeyxwt5cMu8mxQN7b0pxJq4mGAmx9whKJ9dYu66KiQ9CuYO6jzIStJsTdl5BIzPIc OvrH/9f2GUMShqFnM3dqvEt0JPMO0nVywdwYz/2C&fallback_url=http://storage.dobreprogramy.pl/.../PhotoScape_V3.7.exe&downloadAs=Photoscape-12505-dp.exe  (8b14b4dae531c53f976f998767cca7e4)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=d6eNcr1i2JGTj3WfJD9w mfUmlIkxiWsX7EbDM6AaCI=&c=X2sWfyrK85TxKFufV0FRfLAPOBjPXzF3OoVlxbUxMW6pqE3yEkmCoeaTiTBVOHbX5LxoNWOgvM5aHmEdLL3EYTtX4tBkzHMjWWB2BujxHIkoS3 p ZELJcoWwqUT/8yUXgpWdJoZm5YZyKqU1hXeovWHPXc/oZqY2H/cz 4cKis=&fallback_url=http://download.skype.com/.../SkypeSetupFull.exe&downloadAs=Skype-13018-dp.exe  (189f1f7d715b5687a478dc66e9cd9836)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=QXjhB4b z3E6adt4KddMGPhu/fmobK2ybD1HzFYbkoU=&c=M3oKE YX XA5n8NWs2ulYEoOYm/Rp2exYY j0IMlI7M390qxJQD2CVrP1Mm7V956ifMc5ZagKztKOaRoSYRD4aXBh5FBhcQhsVQywv9cusYrKu1x1w1IbNYrLeYCWafoXupBbGM/GEx6CrG7BNeBGcKhq7Gg/Y6IDmsQwXCJyrg=&fallback_url=http://storage.dobreprogramy.pl/.../DTLiteInstaller.exe&downloadAs=DAEMON-Tools-Lite-12708-dp.exe  (6220e16f94095ecdf0b6ee5743a8dbe6)

1 / 68      (PUP)
http://www.bundlebinariesbody.com/c?x=TeIAv53VGplDcDtCxpyfDjOUvhVhkVWucVg1gGTdTB4=&c=ptP6S55ZE6jK5xk5S3c5 8VqUGrRoV7V3jFd4rtoBZu2e3CWxv27eWebyL4tLJrS3PXuE4qZyseGwrwm096GrQFFRGGYGTmWGoDC74HGUsxMXmUd9vpNZyatdagg65 WeWKFbYOI0uXNkrP6nTPH3YvN4L97HyeDSdvzxpLn3HQ=&fallback_url=http://storage.dobreprogramy.pl/.../dir(dobreprogramy.pl).zip&downloadAs=Digital-Image-Recovery-11446-dp.exe  (2ec4f33c4ac6fd3420665809580f507a)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=SK/dP3GW 1V7kUeYTzXFIbSlocyPU05IRws4Nw dils=&c=9SKXWLcAZ5IUAnOsWZQpfQQp7ZibCHPdWMDqmHly568keZ02VimOeR HbDu61IFTfMd0gHt8ue3wfJSujvxuh1i4y0mzOIjtlZxnfQ178YbhdTGeM9nF1x0UHF/8JA5d&fallback_url=https://ftp.mozilla.org/pub/firefox/releases/44.0/win64/.../Firefox Setup 44.0.exe&downloadAs=Firefox-13108-dp.exe  (950e8fff6d4ef86312109c57ac9211f0)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=O9iymYozPiSjYsUzN4P3ZzWBDr1YcSPAGgSScAqn8U0=&c=OogrBPVyYI7xKXYRCsFz2X1vdmrUcqFXG/2Ghg6ufQHUP69ppcO2jrqZp3J4V993IH3utHGqqAKPESnQsu0 MeFkLVw6ERz6zrH89TIqIkoo0twnQlr6d1u4mQOGFYCj&fallback_url=http://storage.dobreprogramy.pl/.../kbpianost(dobreprogramy.pl).exe&downloadAs=KB-Piano-38590-dp.exe  (e4e0adc8a7390b6b6a7444bec8eeb7bc)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=LK2QaG3Wwis30 dY80C1qjYdwQatG4h2P3bvAH8lKmc=&c=6joKXKmkBkIr45imoLql6wkg1FHVfdQ3twvlU76aExOapy7ylOCNCg7z3/ohimHd3pb I2HDIH832gVVxw09IxMSovG1ajfvK5mroIfGjeSQVt016wNsYMV52mhtid1P&fallback_url=http://cdn01.foxitsoftware.com/pub/foxit/reader/desktop/win/7.x/7.3/.../FoxitReader730.0118_enu_Setup.exe&downloadAs=Foxit-Reader-14318-dp.exe  (9c56e3634c91af11adcd42052b27b1ad)

1 / 68      (PUP)
http://www.bundlebinariesbody.com/c?x=9Ye7/KSUyODDb2G6SeYa4ItMWEPf6YPzPkpKhE6sWo4=&c=god 5jURFtXFerc70mnJr395PzdZdHNGIdEDIEzIxCablfTm thvp lfs5ljl1OHNvAHjGJHYJ/rMYXLQsmRRl2Rd0qxwsCmFDVaUoJ6UHKDgeOxnVpSUIwN9X LlIKb&fallback_url=http://download.microsoft.com/download/4/6/5/.../WindowsXP-KB936929-SP3-x86-PLK.exe&downloadAs=Windows-XP-Service-Pack-3-12243-dp.exe  (d6732d44028a85467f1b1c28b153350b)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=oSncLqFM0l9Wl/5HaF5/PLVMoET /HDWOOfLGTfJFO8=&c=0YHgD3MFUdUJhlM8QBEg/jUBtcli/KMJXA4mnz9hs0wcEB/OIjm2NbothRRi429FXYMircaBIOnhTeA7UYa1NbFiR5S/PK59rmdcd1vT1fP6p0CMoP79xLo6sl It5Rj&fallback_url=http://dl.acdsystems.com/acdsee-video-studio/.../acdsee-video-studio.exe&downloadAs=ACDSee-Video-Studio-58840-dp.exe  (5c1e2f4459be773d7718192e6310b261)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=Kir6kqx2NwESzEa yG38bf1wU8SEcxz7UhaG/p3s9P8=&c=1Gdnc9AtijIiyzGzxfk2Wd01V34L1Vm10VuvoGip0QRMQDGv/f3E370WE64jSLOYAqfAQNx66erqkZDAKSaSqlk435bVxhEMOVzq7fW/8WVMNlV0exdXno77PbpuhZD7&fallback_url=http://www.mediamond.fi/dsj4/.../dsj4v161.exe&downloadAs=Deluxe-Ski-Jump-4-13928-dp.exe  (c13fb326b1b097de8e23b43b56a5125a)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=3gZm7/Peb zRs8fVv5be2FYu7F4XMnvLmn7S3wAtpVU=&c=GjqWvPPs/xRt5GJH4Uf9FMCa8evtL30fipgHG1gXdG43LvrUdWSg6/ccEhJtFR5vm0FzSbFt1Y6uBfHHC4cdwE/pF10dAXaD u8ECjoj0aIJsLVflCydnPMtynvR0g9FrM1gkdsE 8DABAYqLa5shOo4sShkMWM/FkXPCSu1CkE=&fallback_url=http://storage.dobreprogramy.pl/.../PSPP12_Corel_TBYB_CZ_PL_ESD_(dobreprogramy.pl).exe&downloadAs=Paint-Shop-Pro-Photo-12228-dp.exe  (8a0fd344efb20af18f9d7ce4fb74422b)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=dmqhIJ8twGXrsJGcJsVpbyrY4wmQj54qUNcVBuYDgtQ=&c=MClDkfTFTJ2J/9O8MNaP2kDpuHzZFm DmKZgn/KXTsYn7J7dQ aSWAEb1dzum9V3RnyUAXiogkcS5Spj3vcBSMV0t8UOUcw0T chv j3kbBi0IGdDa9ncdGVdCB56ehr&fallback_url=http://get.geo.opera.com/pub/opera/desktop/34.0.2036.50/.../Opera_34.0.2036.50_Setup.exe&downloadAs=Opera-12614-dp.exe  (14f6b085f96cf823d005e9101b2f3b31)

1 / 68      (PUP)
http://www.bundlebinariesbody.com/c?x=tn5LBO56XCVKOoB8oo8EZlvb4nqKMds09IFqydsYihA=&c=M0SkYaglAfrpAqQ5o3H C7D3nDSX9Fx5UH0xr237QfCPUrUO5WzlGe71Fihihj3aWPbtNmMHxXiMgAISWsjdwj6tKJ0CmUBhrWlxboVT6AP7qZZf/wzdVDurXxRmYRV5vNM9oAj3SVC71a/LltZaG75NRdOTJ6lAmpF2LrJgOds=&fallback_url=http://storage.dobreprogramy.pl/.../dia-setup-0.97.2.exe&downloadAs=Dia-12767-dp.exe  (06499280b4e20b0bd9425d7c21eb5475)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=shpQVb D2703mcr7JnTr7nQ4UeDer/keBMBpWblrWVg=&c=Gd0 6PLxlULg9Z56MLeIBKMoa4L9PzlJWx4K690VKh2t80VwnaukuZEbaCfxYxQ7W87cmMZCcth9UlxkaqCBSzRDG15 gf9wIBYq0VznpzofeQ6zHMGCXnWegB4 lux7&fallback_url=http://www.rarlab.com/.../winrar-x64-530.exe&downloadAs=WinRAR-12398-dp.exe  (83ee04b72309e27ba88a56d9f71e5c9d)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=sQVog8pcT0JvnEhZxfeL6JJi9WoSuHi1d 2cj1Ng1jk=&c=2/v0Dl XbPL5NfOPRoP9uXVO0FS/ilVOC2Qky4jiD83SsfB9T/3Nk3TUkLlSh8PtomaKaMj7zrVkySIT3274f3U5Tuvfg8pHNFSHn8anledqKw7Vb2HInNUDCLOMwxcHLOQqSr7gTnb1inbXkjxF FHRd/gi6Vg7dlk0zWgCoGg=&fallback_url=http://ftp.4players.de/pub/hosted/ts3/releases/.../TeamSpeak3-Client-win32-3.0.18.2.exe&downloadAs=TeamSpeak-46554-dp.exe  (88b4a44c47d50f8cba230692342d4dfc)

1 / 68      (PUP)
http://www.bundlebinariesbody.com/c?x=OFb/KzKod7H91jo/up/ dq3rDnFwuAz7mYPWUAxgL9g=&c=/oo6DnOgxPatCHr/1qREJqmaOkXaWTmVqQSdCNLbIaTsW0ZlJOZhe7TSF EGXIVGTAiQUXXjM /HFXYkJ70Ag14InTZANQLqj5/hg0R7VnZivNyM/KuMGAKbIcMXDfbfc2ZQiWfcII54cXUyNu8NEBAdobXbRLpeFoTEf3ia1Fg=&fallback_url=http://download.microsoft.com/download/9/3/F/.../vc_redist.x64.exe&downloadAs=Visual-C-2015-Redistributable-65422-dp.exe  (ffa9837bf17b270d727689928d426d32)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=P2pp3Gt2CRjCQTpGTa15P4C2HPWwP24K5Qd XSLrWGE=&c=uWIGc86NmHHhYrH6ko29groCt 6CzlhPCqJHsQlrc1pqlHJdLHw0Q4ELFk4jpsXmu20DvFTwjpie3 h OZEBajLSr6i55yCK5nPNiSqYWKZPgY1cILd8TT o456bWnRU&fallback_url=http://download.techsmith.com/camtasiastudio/.../camtasia.msi&downloadAs=Camtasia-Studio-12665-dp.exe  (c45bb6112e45cbab3bfe558f545bc8e7)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=cBkYoW4OI2I6WCEAUuBz7Z3t9p9AcB7z dGsdvp67yQ=&c=J6NUT68l8f00h2bkfN4IU9AEJqeK00vVHwiRqP/0mzMyNuIdWzVfCn/RegDGHY1V0ULM6uv CBGRXelzx8nDhWaLYCswnOZs/ bY40uvFTKOvAYAzYgxtSO1zkIpMfYwCjMee7TPmxLyKBtN utqJs22kzSAeLKns/6cfdc4ewk=&fallback_url=http://white.download.pdfforge.org/pdfcreator/.../PDFCreator-2_2_2-setup.exe&downloadAs=PDFCreator-12691-dp.exe  (f64031fb376bfc3d5c93e5af1b83c2f9)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=8fb6W1e3Ik/p5ifi9Gkj7qruzRcxq4mL6FhD9rrzgww=&c=Ym5Ll3FVNYzR8LV7K O48JSM/D05w A0ciz/NNWJmAsfZoi4A5qnjIhuWwSnCyom/fJp3OR4Dgco1CyDewn5iXCeov6GLa4NO9 v8Zf2ZGQ6VvoK2vjCo qGqxErnmQG5erhckOh3h4Z4DOBhmMTgjpEYAMpDpnOxnnxTEzh32Q=&fallback_url=http://ftp.adobe.com/pub/adobe/reader/win/11.x/11.0.00/.../AdbeRdr11000_pl_PL.exe&downloadAs=Adobe-Reader-XI-21590-dp.exe  (8ca8ae9c07fdae8c3dda5c77908d27b4)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=pIpNzgfjClXU/qHiqxJtRydAN/4R1/2zVOfhv0rV3ys=&c=gzWd4wredYQEYeCW1aqgQzPYSAJY BryE7DHdvKggAeHWBV3ul1K0ceTkWS2BuX4OIlDW6s/0wfo5MvrXeiyyjufyyBnuNd/uq79 Sv6Z9f07bGysgVDtGkvKoq9SpfeZvk1MxoCt/E4/JBSdCscJlh3N6B1GD8yeyB1HdkdHeM=&fallback_url=http://storage.dobreprogramy.pl/.../winamp5666_full_pl-pl.exe&downloadAs=Winamp-12928-dp.exe  (5e8040f0832a872e56a9e255ca1d805d)

1 / 68      (PUP)
http://www.bundlebinariesbody.com/c?x=4UoR/tkqJeuj2Js/au6e8 xgmArFjQwWDcvwbzB83nM=&c=SHDorIrKoCG8teG1w8YsqVGLfmca0njnSAxNdIiybU8RI6e9Sd7G6e8gY2P6xPM8J6skDnbL8HYelW4hG5cB9ecwNZQlYeFLFfjdds5CQQsKkfHOfVT6mFikgYFDgSSbqvtBjLTk5yn3tratr0RswvODFp5MdZnJlxQpCKcSLhk=&fallback_url=https://ftp.mozilla.org/pub/firefox/releases/44.0/win64/.../Firefox Setup 44.0.exe&downloadAs=Firefox-13108-dp.exe  (e33c4ec9129f2542e77c232fc2eed411)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=QAN4i0tIK1hcI//7f8NugNJp3FUpKz7iCmWipKJuBjA=&c=MrxBvA0W3VJnE/o5IV37Nk4WOiPsGcRNRugaEXGP2kE7rWNIExPNmOEV9IxxK/Liq34FSU1D /A9AgLbzhOJJkFdToBAxa6PnlarNsfYYoPrbzFl3wD8/qDKfRtkFS/l&fallback_url=http://www.rarlab.com/.../wrar530.exe&downloadAs=WinRAR-12398-dp.exe  (fd0a9e3f22f7337e78c9a96816f11fef)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=6ezYZRlbj7L4oxLptMyFhmIJUHp2VyzrK1YPXPNR6YM=&c=rQNJzaF8y757oYTkCHT5HYXvyEkWpRf98wKoCTNYbw11OnGtTSVfUhA3b3 WNHqwZZS96OqBKclxFJAs6WWX 5fRltLRuw4KimU9HERq/js5Nu CSn6bt7e9DSgxWNUO&fallback_url=http://file2.leawosoft.net/download/.../blurayplayer_setup.exe&downloadAs=Leawo-Bluray-Player-47712-dp.exe  (0629a63dcfc185836b6e64d96b8eae4e)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=dqctZr23s0wKa2SbsqKafk8tFrxZmGnwIWz1As9sI4U=&c=Tx0ymaFUUHklu1QHISRkhC4 K0cnd7IhqFRJe2DaihRwn3PWK1AWBTYUF0L MhI3MghMRhtfqMQ8AM y7g0R58hmLtfV509KI054vEYfcsUs6mlhfA52nSVlNKnHEEiX&fallback_url=http://storage.dobreprogramy.pl/.../microsoftproducer.msi&downloadAs=Producer-for-PowerPoint-11667-dp.exe  (3275afe82eb3b1119079b92f034c3929)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=e9TenwQMEindKwo5ts63fP4mRlcROna65IYjyeGXxcw=&c=/Ewoy1Vq5mCGRuiDrvfDdaLZuNNKqM5M2rl6nihwonEy8okP/VWX/XXGJj4gwJ7F6OTsXgZ5QUs731F08UiJWsIF2mwhNAhfxsdGpGTqosrTaKOEruRD9xSaRy2jb kVn8C40sgLBD2C/VEEeu8ho3ZY3Dw5M4MAfaXJtj2HFZM=&fallback_url=http://.../rcsetup152.exe&downloadAs=Recuva-13044-dp.exe  (f5b7f14617553c0ee01dd0af612f1f08)

1 / 68      (Adware)
http://www.bundlebinariesbody.com/c?x=oG4huC90xsxkCes6c49s8EhZjvhmNwga98LOA0LUS3Y=&c=yjYny0psfKuW8D6ZqtdhfA akw7Vv5mZZeepZb5U/tDIL6QZ8jSu1As l 8CqNGlJUI6HZaohcu Iw6hSGxNiVgNkSSFpREWgohovesoGXBbhpbSOgWFFaZ5/uh3vVaB&fallback_url=http://download.gimp.org/pub/gimp/v2.8/.../gimp-2.8.16-setup.exe&downloadAs=GIMP-13219-dp.exe  (269ef6555ede2e0799168c110de49d39)

1 / 68      (PUP)
http://www.bundlebinariesbody.com/c?x=l6y2YwSvxRTxWKtpySS2/o5R9UEZbPDdhLGGLluzNV0=&c=k2w0iwBf3ci8ZB3lCuNX5xyN7aHIt7bMiJPYpBMWI2ajrNjYM20m/jLpgt1RDXnja4Kju4w/mwxGAnrzWXgsn04dYoaTrPdW2YzjkLIHiiRQdXV2piP4EhiRRJUvoMR 3obC3LHq0oO7IcSECVzzo86rcQKA8sY2NGKszqfq7eU=&fallback_url=http://download.keit.co/.../recall.exe&downloadAs=recALL-37240-dp.exe  (6d9c5cbb3a62f8a77ded0a941aeb6224)

 
Latest 30 of 42 download URLs

The following 36 files have been seen to comunicate with www.bundlebinariesbody.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.33.46.229:80
Client.exe

TCP » 54.200.224.121:80
kmplayer_3.8.0.123.exe.exe (The KMPlayer by PandoraTV)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

 
Latest 20 of 77 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.