aback-structurec37c4d.com

Whois Privacy Corp.

Domain Information

The domain aback-structurec37c4d.com registered by Whois Privacy Corp. was initially registered in September of 2014 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrar:
INTERNET DOMAIN SERVICE BS CORP

Server location:
Virginia, United States (US)

Create date:
Wednesday, September 24, 2014

Expires date:
Saturday, September 24, 2016

Updated date:
Wednesday, December 2, 2015

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Scanner detections:
Detections  (94% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Activitybit.F, PUP.Installer.Adknowledge, Adware.iBryte.ClickShell.Installer.Meta (M), PUP.Air Software.InstallerSetup.Installer (M), PUP.Adknowledge.Activitybit.Bundler (M), PUP.Adknowledge.TigerDownload.Bundler (M), PUP.Softpulse.SmartSecureSoftwareSl.Bundler (M), Win32.Generic, PUP.installCore.CompilerIdea.Installer (M), PUP.Adknowledge.LogicProcedure.Installer (M), PUP.Adknowledge.Activity.Bundler (M), PUP.InstallCore.FC.Installer (M), PUP.Vittalia.InstallA.Installer (M), PUP.Air Software.Installe.Installer (M), PUP.Adknowledge.LogicPro.Installer (M), PUP.Vittalia.InstallH.Installer (M), PUP.Adknowledge.TigerDow.Bundler (M), PUP.Softpulse.SmartSec.Bundler (M), PUP.Adknowledge.Inertwar.Bundler (M)
93.75%

Dr.Web
Trojan.iBryte.176, Trojan.iBryte.265, Adware.Iminent.4, Trojan.iBryte.253, Trojan.iBryte.167, Trojan.DownLoader11.47108
37.50%

ESET NOD32
Win32/Adware.iBryte.BX application, Win32/AirAdInstaller.E potentially unwanted application, Win32/Adware.iBryte.BS application, Win32/AdGazelle.E potentially unwanted application
37.50%

VIPRE Antivirus
Threat.4778314, Threat.4782985
37.50%

AVG
Adware AdPlugin.CCA, Adware AdPlugin.CFH, Generic, Found Win32/DH{gRKBEyAlflCBB3lUTxVRgQkcU04}, Adware AdPlugin.CCF
37.50%

avast!
Win32:Adware-gen [Adw], Win32:IBryte-KT [PUP], Malware-gen, Win32:IBryte-KE [PUP]
37.50%

Kaspersky
not-a-virus:AdWare.Win32.iBryte
35.42%

IKARUS anti.virus
AdWare.AdPlugin, PUA.SearchProtect, AdWare.AirAdInstaller, Trojan-Clicker.BFNI
35.42%

Emsisoft Anti-Malware
Gen:Variant.Adware.Graftor.170280, Gen:Variant.Application.Bundler.Graftor.171872, Gen:Variant.Adware.Graftor.161766, Gen:Variant.Application.Bundler.AdGazelle
35.42%

Malwarebytes
PUP.Optional.Ibryte, PUP.Optional.AirAdInstaller, PUP.Optional.Fusion.A
33.33%

NANO AntiVirus
Trojan.Win32.IBryte.dlbazt, Riskware.Win32.Iminent.djreap, Trojan.Win32.IBryte.dlgfuv, Trojan.Win32.Badur.dhhunu, Riskware.Win32.IBryte.dmjpto
33.33%

Avira AntiVirus
ADWARE/Adware.Gen7, Adware/AgentCV.A.9012, APPL/OpenInst.pepoh
33.33%

AhnLab V3 Security
PUP/Win32.IBryte, PUP/Win32.Installer
33.33%

K7 AntiVirus
Unwanted-Program , Adware
33.33%

Clam AntiVirus
Win.Adware.Ibryte-7288, Heuristics.Trojan.Swizzor.Gen, Win.Adware.Ibryte-7466, Win.Adware.Ibryte-592, Win.Adware.Ibryte-7644
33.33%

The domain aback-structurec37c4d.com has been seen to resolve to the following 4 IP addresses.

ec2-54-235-191-182.compute-1.amazonaws.com
July 26, 2015

ec2-23-21-85-230.compute-1.amazonaws.com
June 19, 2015

ec2-23-21-223-96.compute-1.amazonaws.com
February 9, 2015

ec2-54-204-30-210.compute-1.amazonaws.com
November 29, 2014

File downloads found at URLs served by aback-structurec37c4d.com.

 
Latest 30 of 59 download URLs

The following file have been seen to comunicate with aback-structurec37c4d.com in live environments.

URL:
http://aback-structurec37c4d.com/

Google Analytics:
UA-32857080

Title:
“The Best Free Software”

Description:
“This site offers a wide variety of free, open-source software!”

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 2.0.50727)

30 of 76 related domains