» digger.xmlrequest.info
Overview
Analysis
IPs Addresses (1)
Downloads (1)
Network (14)
Website Detail

digger.xmlrequest.info

Sunset Games

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Santa Monica, California within the United States which resides on the EdgeCast Networks, Inc. network.

Registrant:

Sunset Games

Registrar:

eNom, Inc.

Server location:

California, United States (US)

Root domain:

xmlrequest.info

Whois:

1 xmlrequest.info record

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Malwarebytes

PUP.Optional.CrossRider

100.00%

Agnitum Outpost

Riskware.VMDetector

100.00%

Sophos

AppRider

100.00%

Comodo Security

Heur.Suspicious

100.00%

Dr.Web

Adware.Plugin.73

100.00%

ESET NOD32

Win32/Packed.ScrambleWrapper

100.00%

Panda Antivirus

PUP/PlusHD

100.00%

Reason Heuristics

PUP.Brightcicrle.Installer.Brightcircle

100.00%

The domain digger.xmlrequest.info has been seen to resolve to the following IP address.

72.21.91.8

May 26, 2016

File downloads found at URLs served by digger.xmlrequest.info.

8 / 68 (Adware)

http://digger.xmlrequest.info/soft-196.exe (2aff2a8b7fc97a50ec3e34c719dbb6f3ee6b34aaed920379bb213e836a4cdb05)

The following 14 files have been seen to comunicate with digger.xmlrequest.info in live environments.

TCP » 72.21.91.8:80

pbpjplgmaeigbnpadeajipebdlihpcfn.crx

TCP » 72.21.91.8:80

adhpiademcfnoaninfbhahnilgnpoeaa.crx

TCP » 72.21.91.8:80

lddnmiapnebnigndlhckmlnkojnmcjdj.crx

TCP » 72.21.91.8:80

hendmekoldfacfhlojkjcnbjegkahclb.crx

TCP » 72.21.91.8:80

ogeglmbnbffjgnlbeeejlldpmhblkedf.crx

TCP » 72.21.91.8:80

nkopijddpkmggacdghppacglggodkcod.crx

TCP » 72.21.91.8:80

dikpmlekkomfckfncjngflnjcobeblfc.crx

TCP » 72.21.91.8:80

mfkamignjaneflbgdjegpidckhjdiibj.crx

TCP » 72.21.91.8:80

gcclient.crx

TCP » 72.21.91.8:80

ldhpeopkenpbohbeaohdhfgkjjjijneb.crx

TCP » 72.21.91.8:80

bdhekcgihooglbcofpjakgedggplgpmp.crx

TCP » 72.21.91.8:80

nedmkhahhppfofnniinaggmabnngddjk.crx

TCP » 72.21.91.8:80

dbpebffoameokfhnaaedmefjncfboino.crx

TCP » 72.21.91.8:80

ddhobhcdfbjifonnkjmcbpjpoppflmol.crx

URL:

http://digger.xmlrequest.info/

Web server:

EOS (lax004/2812)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.