» usv.sensoryroad.com
Overview
Analysis
IPs Addresses (8)
Downloads (1)
Network (18)

usv.sensoryroad.com

Domain Information

ASN:

AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:

sensoryroad.com

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.InstallCore.RES (M)

100.00%

The domain usv.sensoryroad.com has been seen to resolve to the following 8 IP addresses.

server-52-85-142-132.iad12.r.cloudfront.net

June 5, 2016

server-52-85-142-126.iad12.r.cloudfront.net

June 5, 2016

server-52-85-142-102.iad12.r.cloudfront.net

June 5, 2016

server-52-85-142-24.iad12.r.cloudfront.net

June 5, 2016

server-52-85-142-252.iad12.r.cloudfront.net

June 5, 2016

server-52-85-142-235.iad12.r.cloudfront.net

June 5, 2016

server-52-85-142-165.iad12.r.cloudfront.net

June 5, 2016

server-52-85-142-160.iad12.r.cloudfront.net

June 5, 2016

File downloads found at URLs served by usv.sensoryroad.com.

1 / 68 (PUP)

http://usv.sensoryroad.com/Setup.exe (7cedad8e4177cd4ebea9c44eee3c3b62)

The following 18 files have been seen to comunicate with usv.sensoryroad.com in live environments.

TCP » 52.85.142.132:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.252:443

cpx.exe (Google Embedded Application)

TCP » 52.85.142.235:443

stormwatchapp.exe

TCP » 52.85.142.252:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.126:80

UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.252:443

whatsapptime.exe

TCP » 52.85.142.126:80

clearscreenplayerbrowser.exe

TCP » 52.85.142.132:80

clearscreenplayerbrowser.exe

TCP » 52.85.142.252:443

apptrailers.exe

TCP » 52.85.142.252:80

browser.exe (Speed Browser by Smart Applications)

TCP » 52.85.142.252:443

ManyCam.exe (ManyCam Virtual Webcam by Visicom Media)

TCP » 52.85.142.132:80

TCP » 52.85.142.102:443

rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.85.142.126:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.126:443

playthruplayer.exe (Playthru Player)

TCP » 52.85.142.132:80

rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.85.142.132:443

playthruplayer.exe (Playthru Player)

TCP » 52.85.142.132:443

online-guardian-v2.0.9.exe

TCP » 52.85.142.160:80

UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.24:443

Latest 20 of 27 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.