The Tuguu download and install manager uses the DomalIQ installer to bundle additional adware offers such as toolbars and browser extensions during the setup process. This software distributes modified installers which are not the same as the original distributed by the author. The application google-chrome.exe by tuguu sl has been detected as adware by 21 anti-malware scanners. The program is a setup application that uses the TUGUU DomaIQ Setup installer. During install, it bundles potentially unwanted software on a user's computer at the same time without adequate consent. The installer is marketed through download protals and search ads as Google's Chrome web browser but will also install additional software offers which include adware, PUPs and browser toolbars.
21 / 68
Uses the DomainIQ download manager to bundle additional potentially unwanted software without adequate consent.
This 'download manager' is also considered bundleware, a utility designed to download software (possibly legitimate or opensource) and bundle it with a number of optional offers including ad-supported utilities, toolbars, shopping comparison tools and browser extensions.
8/7/2014 10:46:24 PM UTC (six months ago)
Antiy Labs AVL
McAfee Web Gateway
DomainIQ pay-per install
448.4 KB (459,168 bytes)
Executable application (Win32 EXE)
TUGUU DomaIQ Setup
6/13/2013 4:06:55 PM
6/13/2014 4:06:55 PM
CN=tuguu sl, O=tuguu sl, L=Adeje, S=Santa Cruz de Tenerife, C=ES
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US
1/9/2014 5:46:35 PM
110.5 KB (113,152 bytes)
The file google-chrome.exe has been seen being distributed by the following URL.
The following file closely match google-chrome.exe based on a fuzzy CTPH.
21 / 68 (Adware)
[99% match] (fba758ef9c5e0c84bd18467d31537bc9fe32b7bf)
2 / 68 (Adware)
1 / 68 (Adware)
Detection Incidence by Country