home

cdn.ic.ins.uptodown.com

635579560061374259

Domain Information

The domain cdn.ic.ins.uptodown.com registered by 635579560061374259 was initially registered in December of 2002 through Network Solutions, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Portland, Oregon within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.
Registrar:
INTERDOMINIOS, INC.

Server location:
Oregon, United States (US)

Create date:
Friday, December 20, 2002

Expires date:
Tuesday, June 24, 2025

Updated date:
Tuesday, December 22, 2015

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
uptodown.com

Whois:
5 uptodown.com records

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore.MediaIng (M), PUP.installCore (M), PUP.InstallCore.EST (M)
100.00%

ESET NOD32
Win32/InstallCore.AFV potentially unwanted application
2.08%

The domain cdn.ic.ins.uptodown.com has been seen to resolve to the following 33 IP addresses.

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 16, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 16, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 15, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 15, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 15, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
January 28, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
January 28, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
January 28, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
January 4, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
January 4, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
January 4, 2016

54.148.75.228
ec2-54-148-75-228.us-west-2.compute.amazonaws.com
October 26, 2015

52.24.62.64
ec2-52-24-62-64.us-west-2.compute.amazonaws.com
October 26, 2015

54.149.60.150
ec2-54-149-60-150.us-west-2.compute.amazonaws.com
October 26, 2015

54.186.139.41
ec2-54-186-139-41.us-west-2.compute.amazonaws.com
October 1, 2015

54.218.9.198
ec2-54-218-9-198.us-west-2.compute.amazonaws.com
August 17, 2015

54.148.73.114
ec2-54-148-73-114.us-west-2.compute.amazonaws.com
May 3, 2015

54.68.221.84
ec2-54-68-221-84.us-west-2.compute.amazonaws.com
January 7, 2015

54.187.120.35
ec2-54-187-120-35.us-west-2.compute.amazonaws.com
November 2, 2014

54.186.167.43
ec2-54-186-167-43.us-west-2.compute.amazonaws.com
September 27, 2014

54.186.219.20
ec2-54-186-219-20.us-west-2.compute.amazonaws.com
September 7, 2014

54.200.190.106
ec2-54-200-190-106.us-west-2.compute.amazonaws.com
September 5, 2014

54.213.239.193
ec2-54-213-239-193.us-west-2.compute.amazonaws.com
September 4, 2014

54.187.25.184
ec2-54-187-25-184.us-west-2.compute.amazonaws.com
July 23, 2014

54.191.124.126
ec2-54-191-124-126.us-west-2.compute.amazonaws.com
July 10, 2014

54.201.96.17
ec2-54-201-96-17.us-west-2.compute.amazonaws.com
July 10, 2014

54.201.232.128
ec2-54-201-232-128.us-west-2.compute.amazonaws.com
July 3, 2014

54.201.225.151
ec2-54-201-225-151.us-west-2.compute.amazonaws.com
June 26, 2014

54.186.106.124
ec2-54-186-106-124.us-west-2.compute.amazonaws.com
June 21, 2014

54.213.153.214
ec2-54-213-153-214.us-west-2.compute.amazonaws.com
June 21, 2014

 
Showing 30 of 33 IP Addresses

File downloads found at URLs served by cdn.ic.ins.uptodown.com.

1 / 68      (Adware)
http://cdn.ic.ins.uptodown.com/?ic_user_id=120  (utorrent-3-4-1-build-31227-fr.exe)

The following 6 files have been seen to comunicate with cdn.ic.ins.uptodown.com in live environments.

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
Proxomitron.exe (Proxomitron by Groom-A-Zebu (tm))

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.