home

www.guardconceptsbundle.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
guardconceptsbundle.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallCore.AGORASA.Installer (M)
100.00%

The domain www.guardconceptsbundle.com has been seen to resolve to the following 13 IP addresses.

54.191.246.249
ec2-54-191-246-249.us-west-2.compute.amazonaws.com
July 20, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
July 20, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
July 20, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
July 20, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
June 4, 2016

52.33.165.25
ec2-52-33-165-25.us-west-2.compute.amazonaws.com
June 4, 2016

52.32.12.104
ec2-52-32-12-104.us-west-2.compute.amazonaws.com
June 4, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 24, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 24, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
May 24, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
May 24, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
May 24, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
May 24, 2016

File downloads found at URLs served by www.guardconceptsbundle.com.

1 / 68      (PUP)
http://www.guardconceptsbundle.com/c?x=GGi5rZwJAVocxXkZ6qTXNkU1udl8C6lzYhLMXMDZpSk=&c=d0H/wjZX6qL1j5UqhfP8X7OPCjqP0bUX/X8gbmSwkeoi0TX/Nwb2H19tNzMOXEbpN4t1UPCeUa gYTydtgLk8CcU3J/J9GqE yuRBJTItqMa1HSoKWhb109m72WHcHVyKvmHWTinwXnxsyoBLYUAzA==&e=0&fallback_url=https://www.microsoft.com/pl-pl/store/apps/.../9wzdncrfj0g7&downloadAs=installer_WorldTime_sciagnij.exe  (4acac623fe5b7fba816094d9438c640a)

1 / 68      (PUP)
http://www.guardconceptsbundle.com/c?x=ObEkKvGlRGJEg9ijrkwvspiUGa0ofIqN1dXNtLn1S1c=&c=0M0mxlCIQD7iZQEtATVZlGMcbKagFe5FOKa6YYHoEuM5MZyHaHSMZ59o6PxTWm6MmkXd7fzBpyabyzc5ll5D2fXwFxXMyFBVO8oN8P/OxOldnxgyn7YFx3xGCYuzaRNZta yzI0EDOUmMFP2ojCXQA==&e=0&fallback_url=http://download.microsoft.com/download/4/e/b/.../wmp11-windowsxp-x86-PL-PL.exe&downloadAs=installer_Windows_Media_Player_sciagnij.exe  (070be025740d5a7f92efca452b9a4598)

1 / 68      (PUP)
http://www.guardconceptsbundle.com/c?x=nxiKQbzRnFlzMLLaODhwwqyk0CTJJQ4lHwwMhN09N7I=&c=jfnInEdZtdmgOcCLjRIfNPanBjR9S9Ma0R8zYI8ICdK5NsHkcm380r1ji7LFn9mpa4wjBedzRSWet0oBwXKr RSpp9RBf1VrqHZyEPONVlchJPJc5KYMVzOgTrlqGz1Utzvxs96FxWHvs99rVCUlcA==&e=0&fallback_url=http://bi.sciagnij.pl/0/.../Nero2015_setup-16.0.05000_3p_trial.exe&downloadAs=installer_Nero_7_sciagnij.exe  (e772c5c9e0608b97622eb77d94689c35)

1 / 68      (PUP)
http://www.guardconceptsbundle.com/c?x=MI2yVU7EC0Gr05ss4W3JtCvgkEnA8KnFf0L5rOCtcyM=&c=qJqL8s5uMLhlfs IrlVuIjFV/ypTE8vRreHbK3NJO5khsx07ZsXUpLhQU/4ie7OBlLiMrBCSO2mbj7mr4RsP 7SjJTnlo3agBwed6968/aMhKiGgFpzdUC5 i9XHVLEc57pAdlN2RQSP54EVKhcQkQ==&e=0&fallback_url=http://bi.sciagnij.pl/0/.../zyczu-mc.zip&downloadAs=installer_Minecraft_Launcher_by_Zyczu_sciagnij.exe  (icreinstall_installer_minecraft_launcher_by_zyczu_sciagnij.exe)

1 / 68      (PUP)
http://www.guardconceptsbundle.com/c?x=OpnM4neoa8OCQUp2PAGgYy2psb0HSia1APsFHBYR87s=&c= okJS3CzvO4/1dCpNOJc0fTZad HklBIPtVgZ73XuYKSqgvgLKNzF9vbVMaPPDLT0FSLwEnMKM8eITFWN9yMm0CqhVBaxRe98lR/g9yvxAJxAf Cvk8SylXmP7dLp0dKpk8t9Pv89gWnN3uCtyW0 w==&e=0&fallback_url=http://thefoundry.s3.amazonaws.com/products/nuke/releases/.../Nuke7.0v9-win-x86-release-64.zip&downloadAs=installer_NUKE_sciagnij.exe  (1c2fc4a59ed0251460c9619867b0e89a)

1 / 68      (PUP)
http://www.guardconceptsbundle.com/c?x=Vqvwgt0mhkDzUMTMA/dV6uDiFFhMYun puyLb5ItbH4=&c=FANAl0WtvFDpHH8Hbjk4/W1L1z2iSuL3RlXKTRVAcRVyrObWKFViIiXDzsRqAzSfbrJoCDrekYjnpi6VIxkT2V/hRzVcsSAcfZtQYKb4erHDtNDI 0/rYXdJ5ojcunxHu8CSIE6Ha/aNmoOkAel eA==&e=0&fallback_url=http://www.recoverytoolbox.com/.../RecoveryToolboxForRARInstall.exe&downloadAs=installer_RAR_Recovery_Toolbox_sciagnij.exe  (8ebc901c93bbde660fc425b7a8aebef5)

1 / 68      (PUP)
http://www.guardconceptsbundle.com/c?x=A EjM8WWQnSeG9T m3t/fEQI/4oZ0ENy9AlJy5DAK0s=&c=bkpNskfOfD6zSOKn8idKIiLPYlqSSi6qyL/ubcJwygM983s//ksRbaGY1fwrponz76N04FCUZWJBGWrIVchtI5lv5cuS07UuWvJIcsBbOoWZwV4ECqf8xuIPgW3Mjxh6yKnBqkYKFYy7kEcBhC4tXg==&e=0&fallback_url=http://facemoods.com/public/download/.../Facemoods.exe&downloadAs=installer_Facemoods_sciagnij.exe  (83b910da1f178362b31a34ce5145f108)

1 / 68      (PUP)
http://www.guardconceptsbundle.com/c?x=HLqA34u9F7aisKuiHyFsdPsIc4q80ePFPCk23q4iK7Y=&c=OZAE5C8ebm3ETe7ethxIjxexGMrFS0jJW1 dqV9mnUQCVxpVML t3VNwdMv7GU6Xzm8gW4er23Bso2w abN40DiNNT3EuRAfZ4sZImhurttOGJl/Np4tD0tteKwPGHS22ucEKiIqjSbI6CbBQu33Q==&e=0&fallback_url=https://products.office.com/.../try&downloadAs=installer_Microsoft_Excel_sciagnij.exe  (c3d6f702c2f725d389ad11030cac50d6)

1 / 68      (PUP)
http://www.guardconceptsbundle.com/c?x=QoELgBI6Vw0Bb7NWbghPM97QfM2IoOCKx4FKjgPVvZY=&c=2SATblIs8G9rI1pn2Vg2Ha3NzdFpY581RSPadrEs3coM zX0zOf03d MmxPnWSIJC jTCtzhbzAJ3gj7ukqDIOlocK/m5Tu Bh6cfUBQ H9Tjg3ky8/gyEMIyJ3nJdJYqOFvViY5 b4JzDRVD7VpJw==&e=0&fallback_url=http://bi.sciagnij.pl/0/.../zyczu-mc.zip&downloadAs=installer_Minecraft_Launcher_by_Zyczu_sciagnij.exe  (icreinstall_installer_minecraft_launcher_by_zyczu_sciagnij.exe)

1 / 68      (PUP)
http://www.guardconceptsbundle.com/c?x=lH9g2o7QEjNqX3n/Mytp73fFEbSOFw6zQhLgivNxN1Q=&c=BF6JHa6PurlEP1PuGorJg6oQUqKUgAjBrx5ZW/be5Qm64zGrzKGs1MlUcY7vnO0CJy/8K7pmaOHySz6kzY27rr2gM04gqV405y6bAW893LWSNXK/WehV/Dx4H4ZfCThtIOCaW4SBFDNkCMbUBvnKIQ==&e=0&fallback_url=https://products.office.com/.../try&downloadAs=installer_Microsoft_Outlook_sciagnij.exe  (71f7d4cf2bb5a028c39caaae960b12f5)

1 / 68      (PUP)
http://www.guardconceptsbundle.com/c?x=7WFg0eCPsDcLKvRc7NQjBDu55LuW3iESmi/T75TYXyc=&c=whpnMPBzO/IjqzXxC6WQHxHqAcGbNeUxCN7C D9vEuMMTyiuAUtFyedvmahPfi/ygsavbIQQWgDUcoX nle5bUHpGzfu0aNr1XDfdmDK4qPSp2lvqfW6nB0DR4qRRyEVsfmdq0TzoXq3tweGTDUJAg==&e=0&fallback_url=http://bi.sciagnij.pl/0/.../Instaluj_PIT_Format_2015.exe&downloadAs=installer_PIT_Format_sciagnij.exe  (dca3f1ca18219cb67586d1efaf4df2a1)

1 / 68      (PUP)
http://www.guardconceptsbundle.com/c?x=BT izSSfjrBA1NUov25xfaGP5bTqS2G8rtqufPNa2C0=&c=IktVb7bPXcEpUHk Z5 R9hNcjyF1NePfPVDCoI7LuhEQ4cEzgrLfeKSQJunjfs9E0/bxHAsTi huiOswimdO7zn288ujygMfxxlltsk6KdTjUrXp3SrP/lrO2GEUtKEF9PmFXllBxFopE6LoSgUlCQ==&e=0&fallback_url=http://go.microsoft.com/.../?LinkID=75078&downloadAs=installer_Microsoft_Zune_Theme_sciagnij.exe  (d5586e064efe6c1e2a86818c3b25b250)

The following 23 files have been seen to comunicate with www.guardconceptsbundle.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 52.33.46.229:80
Client.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
browserair.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
3.9.0.128_20140916045038.exe (The KMPlayer by PandoraTV)

TCP » 52.38.209.219:80
e5be.tmp

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
Proxomitron.exe (Proxomitron by Groom-A-Zebu (tm))

TCP » 52.38.209.219:80
client.exe

 
Latest 20 of 59 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.