cloudup.com

WHOIS PRIVACY PROTECTION SERVICE, INC.  (Proxy Registrant)

Domain Information

The domain cloudup.com is registered by proxy through ENOM, INC. and was originally registered in December of 2006. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Francisco, California within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Northern California) region datacenter.
Registrar:
ENOM, INC.

Server location:
California, United States (US)

Create date:
Tuesday, December 12, 2006

Expires date:
Wednesday, December 12, 2018

Updated date:
Tuesday, January 29, 2013

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Scanner detections:
Detections  (60% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore.Installer (M), PUP.Bundler.Meta (M)
66.67%

Agnitum Outpost
Riskware.TorchMedia
33.33%

Dr.Web
Adware.Toolbar.246
33.33%

McAfee Web Gateway
Artemis
33.33%

ESET NOD32
Win32/TorchMedia (variant)
33.33%

Fortinet FortiGate
Riskware/TorchMedia
33.33%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
33.33%

The domain cloudup.com has been seen to resolve to the following IP address.

ec2-54-241-143-99.us-west-1.compute.amazonaws.com
January 8, 2014

File downloads found at URLs served by cloudup.com.

2 / 68      (PUP)
https://cloudup.com/files/.../download  (jdownloader 2 setup.exe)

5 / 68      (PUP)
https://cloudup.com/files/.../download  (torchsetupfull-r0-n-bc.exe)

1 / 68      (PUP)
https://cloudup.com/files/.../download  (paweriso_6.6_64bits_jftuto.exe)

0 / 68
https://cloudup.com/.../win  (Downloader.exe)

0 / 68
https://cloudup.com/files/.../download  (bitdefender_tsecurity2014.exe)

The following 5 files have been seen to comunicate with cloudup.com in live environments.

URL:
http://cloudup.com/

Google Analytics:
UA-36399939

Title:
“Cloudup”

Network:
Amazon Web Services (AWS), running an EC2 instance

SSL certificate subject:
CN=*.cloudup.com, OU=Domain Control Validated

SSL certificate issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc."

Web server:
nginx/1.5.13 (Express)

Facebook:
Likes:  173
Shares:  728
Comments:  156

Twitter:
Shares:  1

Compete.com:
US visitors:  1,239

Quantcast US:
Rank:  261,646

Statistics above are for the previous month of September 2017.