home

get.guerillahj.bid

Domain Information

Server location:
Virginia, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:
guerillahj.bid

The domain get.guerillahj.bid has been seen to resolve to the following 25 IP addresses.

54.230.193.51
server-54-230-193-51.iad53.r.cloudfront.net
August 31, 2016

54.230.193.30
server-54-230-193-30.iad53.r.cloudfront.net
August 31, 2016

54.230.193.231
server-54-230-193-231.iad53.r.cloudfront.net
August 31, 2016

54.230.193.212
server-54-230-193-212.iad53.r.cloudfront.net
August 31, 2016

54.230.193.184
server-54-230-193-184.iad53.r.cloudfront.net
August 31, 2016

54.230.193.122
server-54-230-193-122.iad53.r.cloudfront.net
August 31, 2016

54.230.193.103
server-54-230-193-103.iad53.r.cloudfront.net
August 31, 2016

54.230.193.91
server-54-230-193-91.iad53.r.cloudfront.net
August 31, 2016

52.84.125.49
server-52-84-125-49.iad16.r.cloudfront.net
August 31, 2016

52.84.125.209
server-52-84-125-209.iad16.r.cloudfront.net
August 26, 2016

52.84.125.164
server-52-84-125-164.iad16.r.cloudfront.net
August 26, 2016

52.84.125.134
server-52-84-125-134.iad16.r.cloudfront.net
August 26, 2016

52.84.125.104
server-52-84-125-104.iad16.r.cloudfront.net
August 26, 2016

52.84.125.85
server-52-84-125-85.iad16.r.cloudfront.net
August 26, 2016

52.84.125.20
server-52-84-125-20.iad16.r.cloudfront.net
August 26, 2016

52.84.125.243
server-52-84-125-243.iad16.r.cloudfront.net
August 26, 2016

52.84.125.213
server-52-84-125-213.iad16.r.cloudfront.net
August 26, 2016

54.192.19.225
server-54-192-19-225.iad12.r.cloudfront.net
August 19, 2016

54.192.19.208
server-54-192-19-208.iad12.r.cloudfront.net
August 19, 2016

54.192.19.192
server-54-192-19-192.iad12.r.cloudfront.net
August 19, 2016

54.192.19.179
server-54-192-19-179.iad12.r.cloudfront.net
August 19, 2016

54.192.19.137
server-54-192-19-137.iad12.r.cloudfront.net
August 19, 2016

54.192.19.99
server-54-192-19-99.iad12.r.cloudfront.net
August 19, 2016

54.192.19.71
server-54-192-19-71.iad12.r.cloudfront.net
August 19, 2016

54.192.19.18
server-54-192-19-18.iad12.r.cloudfront.net
August 19, 2016

File downloads found at URLs served by get.guerillahj.bid.

0 / 68
http://get.guerillahj.bid/?PKOrsmnjb0bdVvY1LpliOlgr5MqkJ_SLASH_qSqf8Mo2PSVYFWVuM5RDs4ZQ_EQUALS__EQUALS_&flp=1  (download aisyah- biarkan kami bersaudara 2016.rar)

0 / 68
http://get.guerillahj.bid/?PKOrsmnjb0aJAacqP6deIEZhkkAdNAnGe4F4mhaNSrNWVuM5RDs4ZQ_EQUALS__EQUALS_&flp=1  (free download aisyah- biarkan kami bersaudara 2016.rar)

0 / 68
http://get.guerillahj.bid/?PKOrsmnjb0ZeNbbt3Ld81SIGBkuA0s81ImFVGsg_SLASH_bxlWVuM5RDs4ZQ_EQUALS__EQUALS_&flp=1  (pepsiman.rar)

0 / 68
http://get.guerillahj.bid/?PKOrsmnjb0YmAqqJ284k_PLUS__SLASH_RDME5y_SLASH_xogH5P_PLUS_ofH2fvlWVuM5RDs4ZQ_EQUALS__EQUALS_&flp=1  (4k video downloader 4.1 and serial key.rar)

0 / 68
http://get.guerillahj.bid/?PKOrsmnjb0ZBaRjQXLdcN4hYoBZr6u5UVTqY9mRFGSVWVuM5RDs4ZQ_EQUALS__EQUALS_&flp=1  (ecb1f0ec-1e79-3647-fd0d-e0bc9232498d_1d1e4a38bd2f8f0)

0 / 68
http://get.guerillahj.bid/?PKOrsmnjb0b8U5DJBr6_SLASH_ps57Jx8heaoU1_SLASH_jEQtib8b5WVuM5RDs4ZQ_EQUALS__EQUALS_&flp=1  (f81fa5e6-4298-dd7c-3473-a2d3744b59e7_1d1e4a3a226a4c3)

The following 155 files have been seen to comunicate with get.guerillahj.bid in live environments.

TCP » 54.192.19.192:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 54.192.19.137:443
u1603.exe

TCP » 54.192.19.192:80
saber.exe

TCP » 54.192.19.192:80
saber.exe

TCP » 54.192.19.99:80
uvconverter.exe (TODO: <Product name> by TODO: <Company name>)

TCP » 54.192.19.18:80
uvconverter.exe

TCP » 54.192.19.208:80
uvconverter.exe

TCP » 54.192.19.71:80
parishoners.exe (Parishoners)

TCP » 54.192.19.225:80
saber.exe

TCP » 52.84.125.85:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.19.192:80
saber.exe

TCP » 54.192.19.192:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.192.19.225:80
interhop.exe

TCP » 54.192.19.137:443
crossbrowse.exe (Crossbrowse)

TCP » 54.192.19.18:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.84.125.164:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 54.192.19.18:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.19.137:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.19.71:80
ribuge.exe (Glary Utilities by Glarysoft)

TCP » 54.192.19.99:80
uvconverter.exe

 
Latest 20 of 217 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.