dlp.proplayersetup.com

chen wenjie

Domain Information

The domain dlp.proplayersetup.com registered by chen wenjie was initially registered in October of 2014 through SOLUCIONES CORPORATIVAS IP,SLU. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Beaumaris, Victoria within Australia which resides on the Asia Pacific Network Information Centre network.
Registrar:
GODADDY.COM, LLC

Server location:
Victoria, Australia (AU)

Create date:
Saturday, October 04, 2014

Expires date:
Tuesday, October 04, 2016

Updated date:
Monday, September 14, 2015

ASN:
AS133618 TRELLIAN-AS-AP Trellian Pty. Limited,AU

Root domain:

Google Safe Browsing:
malware

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.tuguusl.M, PUP.Installer.TuguuSL.M, PUP.Tuguu.LunacomInteractive.Bundler (M)
100.00%

avast!
Win32:Installer-U [PUP], Installer-AE [PUP]
75.00%

Dr.Web
Adware.Downware.2630, Trojan.DownLoader10.474, Trojan.Packed.24553
75.00%

VIPRE Antivirus
DomaIQ, Threat.4783262, Threat.4783235
75.00%

Emsisoft Anti-Malware
Gen:Variant.Adware.Graftor.139070, Application.Bundler.DomaIQ.Q
75.00%

Malwarebytes
PUP.Optional.DomaIQ, PUP.Optional.MSILLauncher, PUP.Optional.BundleInstaller.A
62.50%

K7 Gateway Antivirus
Unwanted-Program
62.50%

K7 AntiVirus
Unwanted-Program
62.50%

Comodo Security
Application.Win32.DomaIQ.PUP, UnclassifiedMalware
62.50%

Avira AntiVirus
APPL/DomaIQ.Gen, APPL/DomaIQ.Gen7
62.50%

McAfee Web Gateway
Heuristic.BehavesLike.Win32.Suspicious.H, BehavesLike.Win32.Downloader.cc, BehavesLike.Win32.AdwareDoma.dc
62.50%

Sophos
DomainIQ pay-per install, Generic PUA JA, Generic PUA CI
62.50%

AVG
DomaIQ, Adware DomaIQ.BN
62.50%

Panda Antivirus
PUP/MultiToolbar.A
62.50%

MicroWorld eScan
Gen:Variant.Adware.Graftor.139070, Application.Bundler.DomaIQ.Q
62.50%

The domain dlp.proplayersetup.com has been seen to resolve to the following 3 IP addresses.

lb-182-243.above.com
May 3, 2015

October 9, 2014

ec2-54-187-38-138.us-west-2.compute.amazonaws.com
April 16, 2014

File downloads found at URLs served by dlp.proplayersetup.com.

1 / 68      (Adware)

1 / 68      (Adware)

32 / 68    (Adware)

9 / 68      (Adware)

31 / 68    (Adware)

25 / 68    (Adware)

25 / 68    (Adware)

25 / 68    (Adware)

The following 8 files have been seen to comunicate with dlp.proplayersetup.com in live environments.

URL:
http://dlp.proplayersetup.com/

Title:
“proplayersetup.com”

Web server:
Apache