home

www.dlguardsoftware.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
dlguardsoftware.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore.MICROMAX.Installer (M)
100.00%

The domain www.dlguardsoftware.com has been seen to resolve to the following 17 IP addresses.

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
August 25, 2016

52.36.112.186
ec2-52-36-112-186.us-west-2.compute.amazonaws.com
August 25, 2016

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
August 25, 2016

54.186.99.90
ec2-54-186-99-90.us-west-2.compute.amazonaws.com
July 8, 2016

54.191.246.249
ec2-54-191-246-249.us-west-2.compute.amazonaws.com
June 28, 2016

54.149.195.20
ec2-54-149-195-20.us-west-2.compute.amazonaws.com
June 28, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
June 28, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
June 28, 2016

52.32.12.104
ec2-52-32-12-104.us-west-2.compute.amazonaws.com
May 29, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
May 29, 2016

52.33.165.25
ec2-52-33-165-25.us-west-2.compute.amazonaws.com
May 29, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
May 28, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
May 28, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
May 28, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 28, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 28, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
May 28, 2016

File downloads found at URLs served by www.dlguardsoftware.com.

1 / 68      (PUP)
http://www.dlguardsoftware.com/c?x=LaL8kXUV8 cxKUY3CwpTWPdZyJv3swrIIDRsLsbX/Qk=&c=CGsze9DV4vLJwbCCmVYYdobG9JmwJtGqRNXhz6ot8ZnyVMO9pbEfGBWMO XQQY6 Li 7O66Q8qq5HAAtvgEz8dP2poaDGncyWvYy JXtwND7hhNXzIJiVlE9IRKnV6Qo&fallback_url=http://res.setauls.com/.../ChromeSetup_fr.exe  (d6392f3fced89091c1067a52736fbc48)

1 / 68      (PUP)
http://www.dlguardsoftware.com/c?x=TwgFb86LCQyjTdjSJ5jtlZNKK/swfZYIfWbqkpe1XiI=&c=ZVGAUrn6xqo7FZ7/J8U87aHkP3 V7cc Z3CuUtBokL7a8kzcw2JnoCw09lk7tU7LmXZP83gYuUddpfsKWjCwDI19hgeAEE dNL2vq3Ey2rYP/v1ZQJf9IwfMoCEkWYRf1ZLArUhGlBCFz5qggPGf3um5iaPGYbVgN3CvSIIEL/s=&e=1&fallback_url=http://res.kchuss.com/.../wordview_fr-fr.exe  (b98dcae66038ef342f604d7971afea45)

1 / 68      (PUP)
http://www.dlguardsoftware.com/c?x=DifPEG5N9vnAOnwOxT 5eb10pQXak6o1Dbj7ponTCX4=&c=TB9V1pHcSEPUVOIxVVwrorG0iDOKYWwzdvsSRAbDSql0/1YVuPENGK6ptYD5iHrBZOsA8NurNwwtNGmtwPiaIB4Z PAfiC4WQYxJBTHi WV TcpB7EqyWPLWKPrWR8EY&fallback_url=http://res.hufftos.com/.../Firefox_Setup_21.0_fr.exe  (e63c0177d0618f722114d775ae959b3d)

1 / 68      (PUP)
http://www.dlguardsoftware.com/c?x=G 10M kIHjWw9v5umXB4q2AZnNJ1HypesNSziEnAc7o=&c=w0SyEcnBK1AtwRc89FeAdipjfV75SAgfcNY8HQAeNvZs0Llju35qwvoXuEQM72JGhQQYqCP9bmFfp15cu0o7xLxX3DnyCjeQgfA/jl0O2TatqNbo59tRbN0LWOJ1PEHq&downloadAs=skype.exe&fallback_url=http://res.kchuss.com/.../SkypeSetupFull.msi  (9c93b18dc09215098a8e27f6a0e875f2)

1 / 68      (PUP)
http://www.dlguardsoftware.com/c?x=6E0BFiYh0NPTWfKTt FvWpwfnpXrE20M5nZJyNyjsuA=&c=oSkkyknd4ZJthxBbhcYbV6YY6sqmh4HPu5CQ f5cbeuAZCwRLJqLOfXXrcdU9UtUFpJV4IT4vaI 7XqnqazNWTLwHbt 9qzX82lC7yAGCJeBNZFAOQwP4fGczVhFqOE6&fallback_url=http://res.hufftos.com/.../Firefox_Setup_21.0_fr.exe  (e63c0177d0618f722114d775ae959b3d)

1 / 68      (PUP)
http://www.dlguardsoftware.com/c?x=13cVCwP7WLGTsDMB1mL3hlvIkcqYfcL9xhyG9IJTlYc=&c=a1jfcnhImP3T/64Zew3PHMJyEFvIN1dSIIBt27c68TlsfLXk2/Pqkpgm3uUnDzmsYZQrMK3aA ksxJeneJCEh5K72vdJfs3D/x Lgj/lkyHykXlk1r/aKME9wkfbmvVq&fallback_url=http://res.mshist.com/.../CandyCrushSoda.exe  (icreinstall_candycrushsoda.exe)

1 / 68      (PUP)
http://www.dlguardsoftware.com/c?x=QUMMrD5IyKDu2pl9eQC RnocIH9 A QpGTQH4NgU0qY=&c=hB2krfuImo8EWokcLJjmAj nJNDhiJtsyXt21Ih4QQII 9JvFfJGBzkaJUXRVXubbukhVXyWERUIlwoRqYryS2i4k9YoaMTxXEYesDwt3LNmtLJGkJljyHeEFlmAO4a4C3Br3a6S7qKB6BrJM0i5wC9JfaxhZDLRmx0cMUy U8=&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (f2c0907fda37bf63d3d94edf3152b57e)

1 / 68      (PUP)
http://www.dlguardsoftware.com/c?x=FpsGd9LGxBXpa6nGWf/543zCeW4pYlBC6S XotURNsc=&c=2SRAdVDGDNwx9EE4VJqx4eDbcJmOlV0Eh9sl7Lqu6e/D/eAu2M/7hwUFo OD2mjOaXt7Vo7UU9hsfoMPQVpW8zft6HBv1Ewt dQDWbGB hWCbl/2AFj3hGzCT7uE7BQ7&fallback_url=http://res.hufftos.com/.../Firefox_Setup_21.0_fr.exe  (e63c0177d0618f722114d775ae959b3d)

1 / 68      (PUP)
http://www.dlguardsoftware.com/c?x=sCO7 9aAHFEJlBmUxeuKntKScXFc3X3k3M1mTzVL0RI=&c=T4k5GWD2iJFuzEzKZJvaDoZTiI9EqTmjdb/f2Au5hyrcwDr6OoEPth9unz/Goh5 VGHviP nukALOcA7OqbNy SSnkOZ89kM5mOx v7ZutQRaq4zc8XpIKKBqjteDimG&fallback_url=http://res.hufftos.com/.../ChromeSetup_fr.exe  (7a6ebb756a1ad81c85f49e9b830c8b99)

1 / 68      (PUP)
http://www.dlguardsoftware.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  (webcam_monitor.exe)

1 / 68      (PUP)
http://www.dlguardsoftware.com/c?x=QcnMEtbA5QLxRRarhxgdHm0Rfn15ppb/iUDdXL92Oig=&c=kC4ckSeGh6Vf6h4A2 7m0cWrC8WCDneu3CypJ83GNrIO/LjQzC/ARKcDcCQLXKUw1n6I1vabN RPy2IEK 2l9zlMpwgH5 SNawRaVLWGwaWxddUA5ws8mHU21B050RHF&fallback_url=http://res.mshist.com/.../SubwaySurfers.exe  (da844521cd4dd331a2266bc8c23c08a3)

1 / 68      (PUP)
http://www.dlguardsoftware.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  (updatechecker.exe)

The following 36 files have been seen to comunicate with www.dlguardsoftware.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.33.46.229:80
Client.exe

TCP » 54.200.224.121:80
kmplayer_3.8.0.123.exe.exe (The KMPlayer by PandoraTV)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

 
Latest 20 of 77 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.