home

www.capitalmetafile.com

Communigal Communication Ltd

Domain Information

The domain www.capitalmetafile.com registered by Communigal Communication Ltd was initially registered in December of 2015 through GAL COMMUNICATION (COMMUNIGAL) LTD.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Portland, Oregon within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.
Registrar:
GAL COMMUNICATION (COMMUNIGAL) LTD.

Server location:
Oregon, United States (US)

Create date:
Wednesday, December 2, 2015

Expires date:
Friday, December 2, 2016

Updated date:
Wednesday, December 2, 2015

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
capitalmetafile.com

Whois:
1 capitalmetafile.com record

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.NewMedia.Installer.Installer (M), PUP.NewMedia.NMH.Bundler (M), PUP.InstallCore.RES (M), PUP.NewMedia.NMH (M)
97.96%

Bkav FE
W32.HfsAdware
6.12%

McAfee
Artemis!60572E0AB0CB
6.12%

Malwarebytes
PUP.Optional.InstallCore
6.12%

K7 AntiVirus
Adware
6.12%

ESET NOD32
Win32/InstallCore.ADE potentially unwanted (variant)
6.12%

Dr.Web
Trojan.InstallCore.576
6.12%

VIPRE Antivirus
InstallCore
6.12%

Sophos
Install Core Click run software (PUA)
6.12%

Baidu Antivirus
Adware.Win32.InstallCore
6.12%

Fortinet FortiGate
Riskware/InstallCore
6.12%

AVG
InstallCore
6.12%

Panda Antivirus
PUP/Multitoolbar
6.12%

Microsoft Security Essentials
Worm:Win32/NeksMiner.A
2.04%

F-Secure
Application:W32/Generic.70053c248f!Online
2.04%

The domain www.capitalmetafile.com has been seen to resolve to the following 26 IP addresses.

52.36.112.186
ec2-52-36-112-186.us-west-2.compute.amazonaws.com
August 21, 2016

52.10.159.134
ec2-52-10-159-134.us-west-2.compute.amazonaws.com
July 28, 2016

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
July 28, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
July 17, 2016

54.186.99.90
ec2-54-186-99-90.us-west-2.compute.amazonaws.com
July 5, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
June 30, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
June 29, 2016

54.191.246.249
ec2-54-191-246-249.us-west-2.compute.amazonaws.com
June 29, 2016

54.149.195.20
ec2-54-149-195-20.us-west-2.compute.amazonaws.com
June 29, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
May 29, 2016

52.33.165.25
ec2-52-33-165-25.us-west-2.compute.amazonaws.com
May 29, 2016

52.32.12.104
ec2-52-32-12-104.us-west-2.compute.amazonaws.com
May 29, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 15, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 15, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 17, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 17, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 17, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
January 29, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
January 29, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
January 29, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
December 17, 2015

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
December 17, 2015

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
December 17, 2015

52.24.62.64
ec2-52-24-62-64.us-west-2.compute.amazonaws.com
December 7, 2015

54.149.60.150
ec2-54-149-60-150.us-west-2.compute.amazonaws.com
December 7, 2015

54.148.75.228
ec2-54-148-75-228.us-west-2.compute.amazonaws.com
December 7, 2015

File downloads found at URLs served by www.capitalmetafile.com.

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=HkRuey6MeToqqGFySReG4ft2Yo0Q926Pee3/DONZSAU=&c=mz94wCSHbzXV3czzZe5rI7JpgwjXyyugaWl6YY4FLGsj6g/gYvZEK/gt5aEaghQoVfHU4rhm98NtXdNY7bLxiExYRhPNvN67wk8VX1yJk0WjnJRcyhj8f1iXucD5Gh1KNqoGlWhMBHTuRJM4CkHCGA==&downloadAs=HotspotShieldSetup.exe&fallback_url=http://allmyapps.com/binary/1944/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b?EsetProtoscanCtx=b6eab30  (8f8bfa28a919cbfae85cba086fa5d7a9)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=bBMIlAwsTwT29cWDkRjmDzd/3YR7jx1SWWeglgoUng4=&c=EdeqsypM wA3n rT3ozs 1A3Fio7e5S4II5kuhtLn/JvLR9V6xeauxnqmVnhFHVtiyghoees0Bp2pPGG MoFuDLQ/ZljE/d/Ij8h8bTTeQQx8lVWGQpZbIQ8/vdgk/iGqZZEdSLXGoS BKr8o2lr5A==&downloadAs=WindowsMovieMakerSetup.exe&fallback_url=http://allmyapps.com/binary/509/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (c863e9fdf0b9f4d6ef8d497283985503)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=TKGI1XL5uGEfZVhp5Vzyr7XxJjOKWSLonrBwLDNLaas=&c=UXMmgTaW4JsAWKCGnWC8w0KDmov2v3cQukHFXlop202iGqgXYsGRokmTu8byvjI1TIJ9gW3GwRSGBABVdmtxAPFKdFvIg6iE 7WfAlgaO2xzLW7pUkx51g9V7K9BD4hjZKb6CJtiRfihiwo6xWkU8w==&downloadAs=GeoGebraSetup.exe&fallback_url=http://allmyapps.com/binary/723/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (d728819ae8723fdd84c6006c9169816a)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=2q8W2vJP9bZCYFdw/E8ymduxZZkdXvMi6yrVxjfE61A=&c=nqJSioMl7LVX8OL4jbnFiDr3NRx5lgcjc/ vI1QZfKzqHzY4D5JW2EXaZv3Yy4/ w53gNTz/ULadNWKDzN/VfCspNCd14Nq5zQu/BJwslLDG7SHoeC4uNZvlX p892evRq/gUPywFxC4rS G7Vfv5w==&downloadAs=FirefoxSetup.exe&fallback_url=http://ftp.mozilla.org/pub/mozilla.org/firefox/releases/27.0/win32/.../Firefox Setup 27.0.exe  (673845819fb97992c0a6c29c35a441ab)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=b/rktZ ZwyP/x4Pf ooSM046yb6CWBQEsKH/SakDUy4=&c=pOhXTq6caQQy08qezvReZqZPM4x4zFkuiNYn2hdz08RaAgdpQNmhK2d7m3LpMABsgaDANfw3t5i8/SnzM31mRiSwv/Q2CotRUNFpkIS8lucQ8R/u/Qqw1Dto qZNWIA/hB93I9rrnRSXjZIXjAZjhw==&downloadAs=HorizonSetup.exe&fallback_url=http://allmyapps.com/binary/6294/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (c18ef158f3d741028b1d6e29c283fc62)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=jq14g3GxWNf iDF5bzQRXZW762ZyBQYhzvi4 IPelB8=&c=MyRkgDETRBOavz97 EHKngM8zjLB6KAT5wWiQtOUVZmBMdbT5nm2bkccnFF8LzvEYfqqdB5cIFhtdlPSvnfDsoHNnmE9b ZgTd2U8qf2YXuFhyNa2PwRIx7zP2V2nw9GDS2Pqv1jyfc2BAcN uxoyA==&downloadAs=WinzipSetup.exe&fallback_url=http://allmyapps.com/binary/427/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (c.exe)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=76Bl6RbQxUtHRDNPzL1xiZfE1rzxvL25pUo4hlFqxv0=&c=XDpaRSkRMaYdqFln jTgj7IVqMBgNajrqY4Rszt0iTRuWN9sXOTxVmdwx6yS3I9MCevF8LcYusEGyJNVUFSoTy u263s12ZL5jeVIYN8kBziHQWOj/0ugl3Q2m5dKLBBvad16BKidourJdh XpnyOA==&downloadAs=VirtualDJSetup.exe&fallback_url=http://allmyapps.com/binary/634/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (8c58e19893f1d17e993569ba6e559ea7)

2 / 68      (false positives)
http://www.capitalmetafile.com/c?x=7AfRqecqmWVB68G7lVZxP8/I8A34Zt3 z4ZgUzX3Bf8=&c=wmzBl1s/amdNGh qBRoAlnksGEVqEUwOzmtpu4YQyPq40ZuGWqZ4 F7BmU99McIIk7sjDbJdr4HDl2cbCCD UQGG05MIVToxjVq/nfh6TdLx ee smaWE2LJYwlcpDq9BBMIat3D57sCinw EHeiTw==&downloadAs=GoogleChromeSetup.exe&fallback_url=http://allmyapps.com/binary/570/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (wrar420.exe)

13 / 68    (Adware)
http://www.capitalmetafile.com/c?x=LBO etM/PVMmH3nrgktmJHsjc55UPfTOgxo6ZFeG2u8=&c=R3XJ FEMkpLqawhBjAaoO/Tx6JI1JoyB1PVQoRGL2YhgwmL4F1WsGsO2s/GNCtsW/IhTIEPl6zhXrgKEdRTK1meP1APAjTgz7olgwnFx2WXqQV2GW43hwmSUPB yHICrXI1EEFeu qSqJmNKM6VR2g==&downloadAs=FirefoxSetup.exe&fallback_url=http://ftp.mozilla.org/pub/mozilla.org/firefox/releases/27.0/win32/.../Firefox Setup 27.0.exe  (b0912b9c39d3baa921e3c498813e9bce)

13 / 68    (Adware)
http://www.capitalmetafile.com/c?x=vP6mfa/cCPqdaIrIBBl5Gsu77/l4xecPyPZqL8yMNYA=&c=2IMajV9N/eJsDog3qWBA3CUOJGiEQUioO8CjgEQ1wr9OX3XM2DRFozIZzh0Qn6Bqj/GAcowfm1Jqc630iJNA2Wb77vh8HgAoS0jvdt6DcYdYLISykWB95GJoarFvej8I/qwxdiWZvCcig n62bQtLA==&downloadAs=FirefoxSetup.exe&fallback_url=http://ftp.mozilla.org/pub/mozilla.org/firefox/releases/27.0/win32/.../Firefox Setup 27.0.exe  (cba1991e56c0fc6731f555984a490fc5)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=M0d8RSnH14fO5PPVeFLCXj28/svkHEuXV3ZUCFJflSU=&c=iF EiHyv20yuEgu6nMXSno7zQOlwF3QviO8PEKHkECnjDWVE/5ifZ9UKFEpmFFkQ71Msspiz b4Zeg966Mvfvcqo7PE/c4Ff8JkVFgP2 lDGzVsUu5dwH7D/dUSfufaqOYJFrTDSxgqFDyv6Nxod9A==&downloadAs=TeamViewerSetup.exe&fallback_url=http://allmyapps.com/binary/653/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b&re=1  (423036d5dd3a0ede8ecdd5b8f7e26e13)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=tHzXP6CBf51junaBcxafSlwBGN70MxDUlqB6gLZmOQ8=&c=29XfL9wxYD6y1MLVWRTLcYHSxVBbC QX4n4cGZwP05FHLS9c3lVYi5NloJNMr3nCd8S/Jrx5gQnaK9eqy5jGiukV8CubJCY7Y Fags71yEagjHFUQspV4S9kCiJlgj4Wjn3rNmWn6Wy5MS7Yk56yeQ==&downloadAs=JavaRuntimeEnvironmentSetup.exe&fallback_url=http://allmyapps.com/binary/16891/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (ec775f65efcefc52ad6670f95af794b4)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=aP8jwSJKd7lTqNNL0XmN1eLgeeNXgMBK0pS6jZCwgck=&c=nAMudqjk kvJLXCu4dTVqZDFzIIuT8EBDSoE z6bAjTSwz5JKkc AYxP1Wt9c/CNe5JPqA8C bfAnaTqsNXwZamcENdquuqBIADR7ytP3Q4GtF7UrrzxmWtuPYAXkkiZoxKXT4z7S/LBorzuPqH3tw==&downloadAs=WindowsMovieMakerSetup.exe&fallback_url=http://allmyapps.com/binary/509/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (1888095297ab5654c0de8326847f0a4b)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=oMqYa3RET92rhFsRQ HsMaq6ZNXDvd1ZG bU1l26PEw=&c=G1C0YdrvqHZT y8G1oIk2Rjs1cP6uYv/Jj/OWs5j9L LJz8DJzHuV59RQWk978PwAmVXMjh8QFOXurIUN72XmhFKtL8S0eta/ZcGDD5aCUkkwaNNf2Y4mAAFma1igsD6YPKJsdFiA9pjB0mOkxsX9Q==&downloadAs=JavaRuntimeEnvironmentSetup.exe&fallback_url=http://allmyapps.com/binary/16891/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (bca1ba2c0fa96457992dd91d5a12c235)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=ucs1QGygWXs AM214uCuAFhw sqGaq38z7dsriG2SDc=&c=O90ipKK3EA1oLHQ9vYB8ivs3VXNjhtvXTXs5MV6F DOtLtWzHLQglYJ5OHFUASMU9l/b unbxNo5jvebCnr9IO3Bk6bz2pK8/WnVepH7Ltore6XK3ZDNOYGQFhaZdWbueFvIOIqRjWfWt8InJh50fg==&downloadAs=TeamViewerSetup.exe&fallback_url=http://allmyapps.com/binary/653/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (c.exe)

1 / 68      (PUP)
http://www.capitalmetafile.com/c?x=3Q4OdZzo/HHVOdmIumjmlAwPynLUktgou/82mVa5DSI=&c=3RnF8dwTAFLxF BUKhmpfeDCNumkNrsOb1l8zGSCZftgudWIfTRVmBH/fpMBfYJH/IlGVsX2ejBLlA2qcb3GatGX4OEwDjzqhXqFfquue4KIBdZ1RGw63rDcXy7KGWvb6oHfof4/8g5BWzd30sxMqQ==&downloadAs=FirefoxSetup.exe&fallback_url=http://ftp.mozilla.org/pub/mozilla.org/firefox/releases/27.0/win32/.../Firefox Setup 27.0.exe  (5f665468dfe2893bea79406bb7df0f8f)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=rq1UESEfzh6zGfrB9Rz8XytV1FOx6XNwp/esKCMC13Q=&c=qLwJr3Rjo9mVhMBzp5JX/BvGIG3/fefgHUaAQijhYzgBvshaEKBSk2zMVBc6yfd1A/GIWid/WAh5bxyZYcJWqg6 PRDVONduFC0LxMRoZJuXBcyfjWVXaeux6 tevKSuXLaBYlYsMWJDqeE8VVMDXQ==&downloadAs=PicasaSetup.exe&fallback_url=http://allmyapps.com/binary/1402/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (7b0966393be230b96dd86ad4708c7138)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=pvlgdO0lTFc8f09Wv2cN837dcYj/n/4xF7IhkwlqUIY=&c=5UTTvpp5SuOLn5lSNJhWzWBdxEV/SySXnGGLEBta wK/27Ft07a2ct3szTL9TsCiBM5Y18btK0hdeUfs1XAG5W vrZFAVlyl70vgKmBwkpU6bpmTRmUiqKR2UD/xHVwAQDR/n8vy4d GhzITkIQy4g==&downloadAs=FirefoxSetup.exe&fallback_url=http://ftp.mozilla.org/pub/mozilla.org/firefox/releases/27.0/win32/.../Firefox Setup 27.0.exe  (c9c69dac442ae1526e9966f7cc4653fb)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=o2Ggxb56gInqH2HIa/T GKjIxj2w1YQItQMNr0nRS E=&c=gnjtR6wV6DqbvD41HjRe2fR7ZCXEwyfZbY4QEiHHqcEc pEl2toy4mFcg3tz2V43dp4HDS27Ar0ybpYvDl DfaNT6kbXVJTctUoOFESy1i5MYp7yUHkhairOPb2cXe/ABtztbCJL8 bNKWo5tEXqmg==&downloadAs=TeamViewerSetup.exe&fallback_url=http://allmyapps.com/binary/653/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (4cd74564549f04033e221143bd9cadf1)

13 / 68    (Adware)
http://www.capitalmetafile.com/c?x=PN8bx/VJIfPZ6w7dWl4Lx0f9BXjgZUWj3IXLSyIE7EQ=&c=0vYKhg8KFTVel6vBLGUDzNbsx/DYCkl0oMdjCThGGKNSsEsjd9 gc3rwFoV6Bl5DR0/ChBUG7vl3eFL4ZmXqurZFNgDgV7i5RGKhbLLZHE98ppb0FUofNWhujgZYag8V7wfb0ZaGXlXT/imoZbV6SQ==&downloadAs=FirefoxSetup.exe&fallback_url=http://ftp.mozilla.org/pub/mozilla.org/firefox/releases/27.0/win32/.../Firefox Setup 27.0.exe  (60572e0ab0cb0648f3bd95ab32a7ece5)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=VT/zBXOLn12VAAnFQOC8TQptKJxzIhPR RnrBpSr6ek=&c=t/aiFs7RJVb/lb5hCgy5iyy32vjZkOsDbqyc8opyKQ8erPNzoQynVKH34dKIOiqEH51n j0bpMfH8Ypgq1AcjwNcyDOdvKAYdVpeuqqQ4BcZ//zXdbJFkDTusVzNT0UEVcm5N9AqKeitOOXMZxFP3w==&downloadAs=FirefoxSetup.exe&fallback_url=http://ftp.mozilla.org/pub/mozilla.org/firefox/releases/27.0/win32/.../Firefox Setup 27.0.exe  (icreinstall_firefoxsetup.exe)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=jOFbVOX6NZehalO0MNwyvFnfnxd/IGVUOhSxOwnHAgU=&c=oPSsF1nX9mUPm04R27pDMktOSzhnI2DectbMtPqpdjVzPmKvSabKo17yUw9ORVEybduJDZJsNYzz/zBZMVSEc/cZgxqeb65MuKNR06m35o7XWxAs150DyIq3mVlWHX7bdWMHDyaFqCMKxMJkcolPTw==&downloadAs=PicasaSetup.exe&fallback_url=http://allmyapps.com/binary/1402/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (f9c4335dfc0d949f2f8a0ee94afb61b6)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=WXgSHZ1j4kKl3IETtWDV/Ln6MIst4cMgQEMmcg 8a Q=&c=u85oOM8TWCW/0Z2U0OHusz5Yn 5y7Af2vRPNDsWw9qz6DrLbgToYZllO69iAkL8K98NhZsHrht8DH ZiavnYklSeuRsF5ondD1lEUGPPp8ruLTSg1aijWk47jNoKn7T1L7Jli9nDmOpdZ9f1qIJfQQ==&downloadAs=FirefoxSetup.exe&fallback_url=http://ftp.mozilla.org/pub/mozilla.org/firefox/releases/27.0/win32/.../Firefox Setup 27.0.exe  (09135ea18b595f7e24af882d0fd58d9b)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=OSNpTVwhwDhBqJsgIGK02cWcb5rHR9DDRhImcYQksMs=&c=75r5ru2pX1vra7jFGPOTNSBfofes/1wfGMbmzlsA1/O/JXCmMlYFTerbAIV2m4tDrgy0LIePTbAFus64N1vPI3fYB0vXlPbNzPPlumkYE vssqoTNSA/YX3h6LGNYo5m8K0kavEkp0QhkorhjA79 Q==&downloadAs=JavaRuntimeEnvironmentSetup.exe&fallback_url=http://allmyapps.com/binary/16891/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (94a7c4c02a43368e927eb5b2b6df1871)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=TwJ1mbX NgKhHfqBoC7m0l8oIyG/BrAVjINvqSxpaLY=&c=U7b 28GFaQwC5sBJmWIOenIWJOlm325L0G 7CJbSMOh9tkr5 e1uKnDawM/AUT6IHsVlPD1E1dSosC5fAp9/pTHijA0d7 niVe5AUMq UQ1/tcjAjl27v7k 9aE3SvGUcbCc9zPk3q joYvJNNtug==&downloadAs=SpotifySetup.exe&fallback_url=http://allmyapps.com/binary/605/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (icreinstall_spotifysetup.exe)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=kkjzJ I4NjjuW7YrxvhEHv1l660NsljFb7NixyjiIHE=&c=QVcP4eDGmA0E75DPztXvay2nHDM4z0EWc4nS1J2vifnn1lGBSrhHP8BX0me6Bq/lR8y4OW6rgGwLc 5NExHCeCGyUiQ7oiMJ0xpv/qzNhCnErUbSJGsAYl8zfaRB56MKMk8SCT2clNT5PZZTahycKw==&downloadAs=SpotifySetup.exe&fallback_url=http://allmyapps.com/binary/605/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (c86cbaa487d28ad8f3cbeaee4041830c)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=F3zLXO4rnr4Nr6VkSdsn0hEDfZOdlJfUKJPX5a M2V4=&c=xnDI27FHUc3OpHkDCoNXGF17YudDZi0K8wkg1C0llsfMtm1k0E jL6xEnVLBqPk/ tjHPGcUygW6mLA1 f45Gj940yqg/ck//oqIkP5eC0hZNFVHw8IcK82XtWHkE6Q2w4G1opsEjQmux28ScQ11jw==&downloadAs=FirefoxSetup.exe&fallback_url=http://ftp.mozilla.org/pub/mozilla.org/firefox/releases/27.0/win32/.../Firefox Setup 27.0.exe  (33f5d11bea2f5222d57f57b874fc9dd6)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=BVYR0Yqk3N2MFEU0OVUsbzdM3ulPeCwhDMvAHh42w E=&c=xFeVZFcwrQPL7afOBPlaYTT8 esysp9gTQMR4E3PQsCq20SzRT0BR62UCvVU42ARROeLi5V5HW llSk3beNWss6Ch4Z3TBEV1Vb3ranQM/HCy8iwvfo2qObO2 YFpUxG6hdmb4XF3jTWeolSeRx8Mg==&downloadAs=BlueStacksSetup.exe&fallback_url=http://allmyapps.com/binary/17529/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (5927a96ce8b54432c22ed84f7f8aebd3)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=C CVm1fuTU8V9TwoS/Ks3QjCC74ySYfhuyTrScWsC1M=&c=XMUBbyd1gUBqbzMPCcPiW1VG4dencXo5dCbohHisocDdsuk0NmCrej/NgUWsFayifbj75w8egC8i6ugJwFiksEs7k xT/DlcKK9auHrlqHyqKzcDJ5yDB5yLm9rahtVXmQ7O xpZafkjDp1Uu/eb8Q==&downloadAs=TeamViewerSetup.exe&fallback_url=http://allmyapps.com/binary/653/.../direct-download?token=90c4f1d505d730885cc98010575156fddefdb54b  (204e3530cd1980bff24396979fb93d53)

1 / 68      (Adware)
http://www.capitalmetafile.com/c?x=7cmT99iKLwgcbL7bUaTGvlkM5FuhrLGOI9hTfIMGTJU=&c=vp33ElqrZVF3rnFaNQiC0aGNR4I0Nw6Ui3fikpEVJL3 C/5auv9SKBOy6PdEG6D6ImKzEhTUS5gHD14wruukF/t1IcBvQ6Bsbai19pazZp3ACjRmLu/dqatlpRTZ3RbDUp1NVzbNxoSdceeJFOONow==&downloadAs=FirefoxSetup.exe&fallback_url=http://ftp.mozilla.org/pub/mozilla.org/firefox/releases/27.0/win32/.../Firefox Setup 27.0.exe  (icreinstall_c.exe)

 
Latest 30 of 92 download URLs

The following 36 files have been seen to comunicate with www.capitalmetafile.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.33.46.229:80
Client.exe

TCP » 54.200.224.121:80
kmplayer_3.8.0.123.exe.exe (The KMPlayer by PandoraTV)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

 
Latest 20 of 77 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.