The domain dlp.famdls.com is registered by proxy through SOLUCIONES CORPORATIVAS IP, SL and was originally registered in May of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
SOLUCIONES CORPORATIVAS IP, SL
Northern Ireland, United Kingdom (GB)
Thursday, May 23, 2013
Monday, May 23, 2016
Wednesday, May 20, 2015
Detections (96% detected)
PUP.TuguuSL.N, PUP.TuguuSL.G, PUP.tuguusl.N, PUP.Tuguu.Bundler, PUP.Tuguu.LunacomInteractive.Bundler (M), PUP.Tuguu.tuguusl.Bundler (M), PUP.Tuguu.Bundler (M)
Win32.Sector.21, Trojan.DownLoader9.21779, Trojan.Packed.24553, Adware.Downware.1827
W32/Sality.AT, APPL/DomaIQ.Gen, APPL/DomaIQ.Gen7, APPL/DomaIQ.Gen2, PUA/DomaIQ.Gen
Adware-DomaIQ!87EAB94F6E66, Artemis!6D113D79991A, Trojan.Artemis!5B3A85DB9AF0, Program.Adware-DomaIQ, Program.Artemis!A7270A0AFE25
PUP.Optional.BundleInstaller.A, PUP.Optional.DomaIQ, PUP.Optional.Domalq, PUP.Optional.BundleInstaller.NS
Win32:DomaIQ-BF [PUP], Win32:Installer-AE [PUP], PUP-gen [PUP], Win32:DomaIQ-CM [PUP], DomaIQ-AP [PUP]
Trojan.Win32.DomaIQ.ctadmg, Trojan.Win32.DomaIQ.csdqll, Trojan.Win32.Packed.cqxvek, Riskware.Win32.DomaIQ.dcnhjo, Riskware.Win32.DomaIQ.crviun
DomaIQ, Threat.4150696, Threat.4783262, Threat.4783235
DomainIQ pay-per install, Generic PUA FK, PUA 'DomainIQ pay-per install'
BScope.Downware.DomaIQ, suspected of Trojan.Downloader.gen.h, OScope.Downware.DomaIQ, AdWare.MSIL.DomaIQ.djg
Skodna.Bundle_r.Y, Downloader.Small, Adware AdLoad.B, Adware Skodna.Generic_r
Application.Win32.DomaIQ.URT, Application.Win32.DomaIQ.KR, Application.Win32.DomaIQ.S, Application.Win32.Agent.D, Application.Win32.DomaIQ.R
Win32.Application.DomalQ, Adware.DomaIQ, Dropped:Adware.DomaIQ, Application.Bundler.DomaIQ
The domain dlp.famdls.com has been seen to resolve to the following 7 IP addresses.
May 4, 2015
March 27, 2014
File downloads found at URLs served by dlp.famdls.com.
The following 137 files have been seen to comunicate with dlp.famdls.com in live environments.