home

www.clearcyclelaboratory.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
clearcyclelaboratory.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Vittalia.QUICKIDEAS.Installer (M), PUP.installCore.MICROMAX.Installer (M)
100.00%

Trend Micro House Call
TROJ_GEN.R02SH05EF15
7.69%

The domain www.clearcyclelaboratory.com has been seen to resolve to the following 12 IP addresses.

52.36.112.186
ec2-52-36-112-186.us-west-2.compute.amazonaws.com
August 27, 2016

52.10.159.134
ec2-52-10-159-134.us-west-2.compute.amazonaws.com
July 25, 2016

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
July 17, 2016

52.32.12.104
ec2-52-32-12-104.us-west-2.compute.amazonaws.com
July 14, 2016

54.191.246.249
ec2-54-191-246-249.us-west-2.compute.amazonaws.com
July 14, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
July 14, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
July 14, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
July 14, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
July 14, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
July 14, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
July 14, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
July 14, 2016

File downloads found at URLs served by www.clearcyclelaboratory.com.

2 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=deE1xExXK/uu20SkhDAa00PqQrDL8Mp4zSGlZyQM8Kw=&c=uyT4ZIem19co3O4olqNkL/xL0YlONPl2i9DiUZdg rSbG6mCynjOdPXe7vJgBvT1Ii46X3qq4pjW6acYXLfNU4NjhZr6V0mx3d7grjgdS1N7hlmBV3ORu/PvaGKcVlyxZFj/xoZ3B 43cKfKkZeLh2F61l9QM7n8s4tZzCQZmyY=&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (e555e9c59da4d0efbb2d68b4f8c330f8)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=ILe3SiSNIeSEuPzI1/3F1CzjG vhJZwto88fkSD/nRw=&c=2yRTcnPk6j2BOqCSRkRgriz0ZooiwcSllbTpL5Rv47McN5QJ6eX1knu7pN/ZVMstZevrCZKa4RThaFEkqE12YvDFeb2bep3 5iDxg8MTmWrANtEFr9GFKHBgigLQgy6OLpjZz oil9MFcxf7yTQj/CNCUvgWe44pNTOKHaRQjgk=&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (f2c0907fda37bf63d3d94edf3152b57e)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=9diMRMIl6PdAraT8A95VwGtLL WU8YYP9vZCpvHV4rY=&c=bDRi5zIYIvMrztpot/tMCowJ8rzt/ohYmor7N9q082cws2wVtK3MA1NgLV G9ZHQcddk0GfBeDLyeeBXeYEVR/UoADh0821SdDmSs/tg4uyQdSe2U2zCtUwFurQz6Lpj&fallback_url=http://res.ikkni.com/.../install_virtualdj_home_v7.0.5.exe  (519636f3afb691d4c9b30f15a057e7e1)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=zC/XH2wUJX5Vcy/JP3SBBKm0eHLTSPZO8Uj8T7TVa s=&c=nUcrHVIg1YLkh7EYYXJwvW8AxWqMEeoiKZuxSoy1WsVN/vlm8KbWUGhxWzfO sq5jGlakqukPDpyVN7BroHoPyGPNCOnvs1UMuLSxi7qIlfloGbfTTF9QqKoJ1z 3bkc&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (58d0c66b3ce60ac2e70752f740014bb9)

2 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=LZ13lzfYPBH43a4hJZWThqEjrl6KFeJqPmIf4Dol3ng=&c=wNvlBahnTfB3QRxg7V4L5VG7076RPsbPkvw6 Bb0E2oQnhkuEFL39nOZARRDEdDO32p8r1Gn6swSxzOUhOYn9 bUy15uz3Z9bWFMWeGVhb7WHE3Ny97qgO7c3mWi8oO8IJDzKGFBTupTGyNuqIoY/Bli7Ohe87wA/Z4H1mkdI7s=&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (e555e9c59da4d0efbb2d68b4f8c330f8)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=aebD AcmTuYtvogHC3UsKNfmtP3VZrrx0B4HokVDXcc=&c=/EOzR vgZ3StW6fsX6Tguf17HRdAlfYj0hqmDdlsMF4KQCHQq5EkUv9hXOmmSyYyPtYWVaA6mnzNWUSp91/ZFid1gHEYNqzmwiyWGdpWdJKqHItpkoOPaHWnYW1TAP6WSNJz4lkcxtmIYqpGc 1WYUgANetMkczeiIdi CzqC8Y=&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (f2c0907fda37bf63d3d94edf3152b57e)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=oIUxED8t9Rg5phz TeLOGDATNjg51N SeMdZtH8TQhc=&c=DwSnFxlsetZcsCsuCzdRkhjJ/EGNQBNKZLUbw0E8MlJG0y4sE7GJ0YBn0kfYKx2e66h7GrxOAOxQBEqwVRsA38dZj2anl8berjxPiw6 WWFbib2b 3cSne6PkNnFLWEG&fallback_url=http://res.ikkni.com/.../ChromeSetup_en.exe  (31107b989fb1432e81b1f0d6c7ba87b8)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=W7sFr33avlDFpz2CHd3GnbGu3phzuWHj Hwbp9CkwLM=&c=QDHDjbuYBtZynRDOVaVhCwvf2C4S2VyehvuVX40nyWHyimjviS5M3DNhJYQqVNSv08VdNL9ddz0lFQWC3amnCQmMTZ5LV Px2Q4qgsaaNk5ldJHKRj38BYRnfmSFj TXW6z1nJdPXsC4g86DEXIMZ/pV8lOQ5RCwZ7OptxEaV1E=&e=1&fallback_url=http://res.kchuss.com/.../wlsetup-web_fr.exe  (01902f15dd5420e30c7767a8ba93b509)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=2Twvqce0OvFRCaoKgIrmWZlyXwh/kWJ3mphXZ0nQyJ8=&c=xgUlgTx2jRDVc32W5iLntA/HUR0Dqx5WSfm9SPzO5dfDmg0lVnCA6DzKXSMtPcwHwG/yZK4lcs0gv kAK MEcM4BFGRKYZFGHs0mBDnk7wB0ykEsB9E9QV/PA t52Kk&fallback_url=http://res.emiln.com/cache/upch/.../UpdateChecker.exe  (23e8aead586da042749ce038679b6c91)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=ctu3hlOEOQMdATzShXdZpA34o8WF3FPYbGC9MlJdFr0=&c=Pmstu/SYpFkEVfbVHPvAMrR1CGl09JV1QvUsdyF7leL8Rs3iTVPR8KnTo1edbSMFXbzTQCZtR6zs/dZPi3/FHYc4y6bo4TqTn1RRjdPxrbXFl/BzMAohKyu5bhHexVXYo2FlVSCFFnBkQx P1MnJRgulMs69KEnG4Yp pUNcHbI=&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (f2c0907fda37bf63d3d94edf3152b57e)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=dj75wTrBe5TzsWyjm/03y0VVhMb3iHJAiumhgmprlZw=&c=gZP9tU4wcwWWLAfe2q5U6n0fec/CJgIEgK3F0N3oFyEWCG SC4S4pJ9ogHyIWsqPUcn8 RtxJdVa98befaLrdIFb HvP0DSx/WRa5/vfIZZgalqpg5r9Uq4Y8/2OtElMl18cdk9pN7vAMinRBIfcSC3zsi7Mo6vs3BWd2BNDG2s=&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (f2c0907fda37bf63d3d94edf3152b57e)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=l8F64boOQcoc7Z2uALs YGjE5jMaqjZJoKX62oHZBzo=&c=CSGdG2YXi0L0IJMoPfs6973Llxi7LSQp94YCK3R48wynQxRQe2rfcrUjVwS1JhNWE/JE cNIAx1kr6/EHaKSW3QJe XI7gnDzgPNZmsIDY38y2IMcOXSMf54MnN2teq1TT4e74P7OBMlx5mMgh0HIIQRFld2FExYMH5yCQ2cKFc=&e=1&fallback_url=http://res.kchuss.com/.../PowerPointViewer_fr.exe  (454e043f199693e8b7fe2ae7567a548a)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=cvoR2VMjwGB/yfZrXwFxJYseAM6ocRNjcns9ZE42/j0=&c=Tbi7jcZz1rGe7zJcm4MZn5dpsLXz8VXLk1e Y9xpPqbfjO4m7UzCLW/ylqoSk95lZZFrWBL5Mwf2Hv6x8u7B8bgn9JUGsqX8sZSVIp5Goh7/SUOdmUeqYQfsZuHAoEtl0JIJJWh6c1 bi68o8IJeQrT pGluxPxVoCQ4HBUZans=&e=1&fallback_url=http://res.mshist.com/.../MarvelContestSuperheroes.exe  (e9d7a9bc84aea8bb924ea22e6722f6b4)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=W/G0q/eKhZS69moNNDWBFqGPsIPcpf9HBDoThIU6pvw=&c=jqD0NCvey8ABQ6q2h28QRtaZW7M9vKGLTfM2ojFHmhXWjqnHr XSKStEhgHrt9yxqgE7c7KgoyRqaNWdaohAEtm8YaQMIpgCZ9HZL 4BklNTX491lS5Hkhl3oZlIc24Qy7c5s2J7R3k1ry EQty5Anmj6nIS4P9AxWXCD0xLun4=&e=1&fallback_url=http://res.wosoth.com/cache/upch/.../UpdateChecker.exe  (edc90de148f8e02e171ce7b455506840)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=WzNeAjwOVbKGEoCiq05NbFKxK pmTlYeWW OMKl4dZ4=&c=d uPYtkl4WjhjNtGECm0hOM6HhDtSY8YbsgXNK3UrGbj77O69ft49uz5fAlS4sjLVlQe3lsBw7M5BmT7h/rpokry1 0prYLJrToRhxBtyKWS7ng0G8joqhJc ujiWc4Ue/AvvuwEvuSNRrhfD5vvKGfiY1fciSAPYIz3D8mqd4o=&e=1&downloadAs=skype.exe&fallback_url=http://res.kchuss.com/.../SkypeSetupFull.msi  (icreinstall_skype.exe)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=R0QJdZ9Nt1Nsl/xPTyQmwrmj6P8EH2hS/eUybxRFt7g=&c=kUPjOr2MIgQoMVxgzyL47pnR35u2nhWo2xU8VJIKcE9AU7z84evqBgxQO1i817qJqTit7yHXeb 6E51Qp4a2KM UzZJh7QZgy6oVNHxzEwbk94pmGJAhswAzhGWOWi M&fallback_url=http://res.hufftos.com/.../PhotoScape_V3.6.3.exe  (350d35f8d955b29b6a06a978d586d538)

1 / 68      (PUP)
http://www.clearcyclelaboratory.com/c?x=ZlL5mE13EzQ oTNF54OoaR8pAVoUVmyqd2q66mO2O5I=&c=OZme0PHdeVIfZxc8NIo3DUjgnZBsVVguAMYwc QdQzZFHbBkJ VLIrJinXmANyWwiq9g7BrKv3duJY3b E5XgEunWRxtoL5fYP74q2PU KvLdBxrVqafW5K9M rHTCDL&fallback_url=http://res.emiln.com/cache/upch/.../UpdateChecker.exe  (83a42071a143ecbd6848090f1bc5577a)

The following 36 files have been seen to comunicate with www.clearcyclelaboratory.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.33.46.229:80
Client.exe

TCP » 54.200.224.121:80
kmplayer_3.8.0.123.exe.exe (The KMPlayer by PandoraTV)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

 
Latest 20 of 77 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.