home

1337xproxy.in

Spiridon Strakatos

Domain Information

The domain 1337xproxy.in registered by Spiridon Strakatos was initially registered in August of 2014 through Webiq Domains Solutions Pvt. Ltd. (R131-AFIN). This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Luhans'K, Luhans'Ka Oblast' within Ukraine which resides on the RIPE Network Coordination Centre network.
Registrar:
Dynadot LLC (R117-AFIN)

Server location:
Luhans'Ka Oblast', Ukraine (UA)

Create date:
Monday, August 18, 2014

Expires date:
Tuesday, August 18, 2015

Updated date:
Monday, August 18, 2014

ASN:
AS15626 ITLAS ITL Company,UA

Whois:
2 1337xproxy.in records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.SomotoIsrael.?, PUP.SomotoIsrael.f, PUP.Somoto.SomotoIs.Bundler (M), PUP.Somoto (M)
100.00%

Malwarebytes
PUP.Optional.Somoto
40.00%

K7 AntiVirus
Unwanted-Program
40.00%

NANO AntiVirus
Trojan.Nsis.Mazel.cwhyud
40.00%

avast!
Win32:Somoto-O [PUP]
40.00%

Clam AntiVirus
Trojan.Agent-267630
40.00%

Sophos
Somoto BetterInstaller
40.00%

Comodo Security
Application.Win32.Somoto.DE, Application.Win32.Somoto.DTL
40.00%

Dr.Web
Trojan.MulDrop4.11744
40.00%

VIPRE Antivirus
Trojan.Win32.Generic
40.00%

Panda Antivirus
PUP/MultiToolbar.A
40.00%

ESET NOD32
Win32/Somoto
40.00%

AVG
Downloader
40.00%

McAfee
Artemis!D7D8F1F69D15
20.00%

Trend Micro House Call
TROJ_GEN.F47V0426
20.00%

The domain 1337xproxy.in has been seen to resolve to the following 4 IP addresses.

104.27.159.83
May 18, 2016

104.27.158.83
May 18, 2016

91.237.88.230
September 9, 2014

91.213.8.210
s210.justhost.in.ua
April 23, 2014

File downloads found at URLs served by 1337xproxy.in.

1 / 68      (Adware)
http://1337xproxy.in/.../Believe-The-Eddie-Izzard-Story-x264-Simbalord-UKB-Release_downloader-4RNRtjDV.exe  (1145fd1a8a5bee7436ce3ce4324c87bf)

1 / 68      (Adware)
http://1337xproxy.in/.../SimCity-Black-Box_downloader-cS4yaFuP.exe  (3ca057bd57641e622a70eebeb8f742d5)

1 / 68      (Adware)
http://1337xproxy.in/.../Windows-8-All-Permanant-Activator-loader_downloader-1MxeY02G.exe  (66f2e868d7cfd1e3e78bb46512d2b258)

17 / 68    (Adware)
http://1337xproxy.in/.../Caparezza-Museica_downloader-8LCnsZgC.exe  (d7d8f1f69d1522e8b7e4bbb9894f3014)

13 / 68    (Adware)
http://1337xproxy.in/.../Aerosmith-Complete-Discography-MP3-320-Kbps_downloader-b1SOTADK.exe  (942c5a39b219f8e6e7321ab3c2956d09)

URL:
http://1337xproxy.in/

Google Analytics:
UA-48689684

Title:
“1337xproxy.in”

Web server:
nginx

1clickdownloader.com

1dschool.com

1flymusic.com

1freesoftwareonline.com

215115638.com

360adstrack.com

4god.biz

4shared.net

55tjk.com

acidco.net

adexprt.me

adjalauto.com

adsclever.com

adsobject.com

adsservingowl.biz

adtrkx.com

africa-2010.com

agamefix.com

aiprosoft.com

alawar.it

all-baza.com

alwayswindcat.com

aminst.net

angelijah.com

angelijah.net

antivirus-gratuit.pro

anyras.com

app-mak.com

appapia.com

apparil.com

30 of 618 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.