home

www.sendcitydownloads.com

Domain Information

Server location:
Washington, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:
sendcitydownloads.com

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

MicroWorld eScan
Gen:Variant.Symmi.59817
100.00%

Bitdefender
Gen:Variant.Symmi.59817
100.00%

Rising Antivirus
PE:Malware.XPACK-HIE/Heur!1.9C48 [F]
100.00%

Lavasoft Ad-Aware
Gen:Variant.Symmi.59817
100.00%

Emsisoft Anti-Malware
Gen:Variant.Symmi.59817
100.00%

F-Secure
Gen:Variant.Symmi.59817
100.00%

Arcabit
Trojan.Symmi.DE9A9
100.00%

G Data
Gen:Variant.Symmi.59817
100.00%

Panda Antivirus
Trj/Genetic.gen
100.00%

Qihoo 360 Security
HEUR/QVM08.0.Malware.Gen
100.00%

The domain www.sendcitydownloads.com has been seen to resolve to the following 8 IP addresses.

54.192.195.54
server-54-192-195-54.iad53.r.cloudfront.net
March 1, 2016

54.192.195.20
server-54-192-195-20.iad53.r.cloudfront.net
March 1, 2016

54.192.195.200
server-54-192-195-200.iad53.r.cloudfront.net
March 1, 2016

54.192.195.197
server-54-192-195-197.iad53.r.cloudfront.net
March 1, 2016

54.192.195.194
server-54-192-195-194.iad53.r.cloudfront.net
March 1, 2016

54.192.195.152
server-54-192-195-152.iad53.r.cloudfront.net
March 1, 2016

54.192.195.131
server-54-192-195-131.iad53.r.cloudfront.net
March 1, 2016

54.192.195.82
server-54-192-195-82.iad53.r.cloudfront.net
March 1, 2016

File downloads found at URLs served by www.sendcitydownloads.com.

10 / 68    (Malware)
http://www.sendcitydownloads.com/.../installer.exe  (c76fd8d885573a5d730aceb94eb32c40)

The following 3 files have been seen to comunicate with www.sendcitydownloads.com in live environments.

TCP » 54.192.195.197:443
online-guardian-v2.0.9.exe

TCP » 54.192.195.197:443
online-guardian-v2.0.9.exe

TCP » 54.192.195.197:443
onlineguardian-v2.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.