home

2.track342ut.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain 2.track342ut.com is registered by proxy through GODADDY.COM, LLC and was originally registered in January of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrar:
GODADDY.COM, LLC

Server location:
Virginia, United States (US)

Create date:
Tuesday, January 14, 2014

Expires date:
Wednesday, January 14, 2015

Updated date:
Wednesday, January 15, 2014

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Root domain:
track342ut.com

Whois:
1 track342ut.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Solimba.Firseria.Bundler (M), PUP.Solimba (M), PUP.Softpulse (M)
100.00%

The domain 2.track342ut.com has been seen to resolve to the following 2 IP addresses.

107.20.149.171
ec2-107-20-149-171.compute-1.amazonaws.com
May 5, 2014

54.225.148.225
ec2-54-225-148-225.compute-1.amazonaws.com
May 5, 2014

File downloads found at URLs served by 2.track342ut.com.

1 / 68      (Adware)
http://2.track342ut.com/d/.../0081311316245159564?exe_name=videoplayer  (videoplayer.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../MjAzNnwzNTU5fE1YfDN8MXx8|68f669b839fae1b4f237c2ab7826140a|8348d720-f96c-11e3-9762-002590f00f96  (setup.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../NzI0fDQ0Mjh8RVN8M3wxfHw|1abca9f3a62dcf5a68068d827db66d21|9dc100b0-e241-11e3-8c12-002590f00f96  (setup.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0083974377716166427?exe_name=java  (java.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../MjAzNnw0NDI5fEFSfDN8MXx8|1abca9f3a62dcf5a68068d827db66d21|e7dbc2a0-eda6-11e3-a1d2-002590f00f96  (setup.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0081509536356787926?exe_name=videoplayer  (videoplayer.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0081398286544660935?exe_name=videoplayer  (videoplayer.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0081398286539938331?exe_name=java  (java.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0081494746136840954?exe_name=videoplayer  (videoplayer.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../32021767371397845315  (setup.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../MjAzNnwzNTU3fEFSfDN8MXx8|68f669b839fae1b4f237c2ab7826140a|da032820-fc75-11e3-b0a7-002590f00f96  (setup.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0083666647579570592?exe_name=videoplayer  (videoplayer.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../8321285055?id=20142  (setup.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../6351815579?__tc=1405993731173&fileName=Java  (java.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0074542136031871661?exe_name=videoplayer  (videoplayer.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../8449157697?id=20142  (setup.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0037674846554077389?exe_name=videoplayer  (videoplayer.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../NzI0fDQ0Mjh8TVh8M3wxfHw|1abca9f3a62dcf5a68068d827db66d21|633c77a0-f266-11e3-a1d2-002590f00f96  (setup.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../29761517791403361454?exe_name=java  (java.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../MjAzNnw0NDI4fEFSfDN8MXx8|1abca9f3a62dcf5a68068d827db66d21|d1acea91-f251-11e3-a1d2-002590f00f96  (setup.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0048789275686641444?exe_name=java  (java.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../6357283480?__tc=1406035567305&fileName=Java  (java.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0081646456359815892?exe_name=videoplayer  (videoplayer.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0055074637543116718?exe_name=videoplayer  (videoplayer.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0073765215981266088?exe_name=videoplayer  (videoplayer.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0081518457000173340?exe_name=java  (java.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../0081518457177295357?exe_name=videoplayer  (videoplayer.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../MjE2NXwzNTU3fEFFfDN8MXx8|68f669b839fae1b4f237c2ab7826140a|8d858e23-f25c-11e3-a1d2-002590f00f96  (setup.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../6326529451?__tc=1405826716640&fileName=Java  (java.exe)

1 / 68      (Adware)
http://2.track342ut.com/d/.../MjAzNnw0NDI4fFBFfDN8MXx8|1abca9f3a62dcf5a68068d827db66d21|28025be0-b829-11e3-a749-002590f00f96  (setup.exe)

 
Latest 30 of 686 download URLs

URL:
http://2.track342ut.com/

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
nginx

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.