home

adtgs.adk2x.com

Domain Information

Server location:
California, United States (US)

ASN:
AS15169 GOOGLE - Google Inc., US

Root domain:
adk2x.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Outbrowse.Salyutem.Bundler (M)
100.00%

The domain adtgs.adk2x.com has been seen to resolve to the following 12 IP addresses.

104.197.179.68
68.179.197.104.bc.googleusercontent.com
June 23, 2016

104.197.121.192
192.121.197.104.bc.googleusercontent.com
June 23, 2016

104.154.71.163
163.71.154.104.bc.googleusercontent.com
June 23, 2016

104.154.57.16
16.57.154.104.bc.googleusercontent.com
June 23, 2016

104.154.51.120
120.51.154.104.bc.googleusercontent.com
June 23, 2016

23.251.158.49
49.158.251.23.bc.googleusercontent.com
June 23, 2016

146.148.89.65
65.89.148.146.bc.googleusercontent.com
June 23, 2016

146.148.84.188
188.84.148.146.bc.googleusercontent.com
June 23, 2016

146.148.53.24
24.53.148.146.bc.googleusercontent.com
June 23, 2016

130.211.183.210
210.183.211.130.bc.googleusercontent.com
June 23, 2016

130.211.180.124
124.180.211.130.bc.googleusercontent.com
June 23, 2016

130.211.132.51
51.132.211.130.bc.googleusercontent.com
June 23, 2016

File downloads found at URLs served by adtgs.adk2x.com.

1 / 68      (Adware)
https://adtgs.adk2x.com/click/VFc4ZDyzGuDK2UF6barftmoFb5SSjkS9Rawu9aM4dSb6S7Zh45qfMGnBIEDu0bhiPOUQFijALxAqJ85iE0kAZzVXO3YNFpptGCyj3yt7QOw0pWxEsjE4LErG7PMLcACrFnEoq8pvYiy-jvXPX8uA6vcbHWVycPg_m0Y7FtOYiaKxbuwvmvYyI_nPBkFExF1Dx1kuTxXaYC_eehbIW3uUnhJG3XsszVeZUR6bzCvj3Ngb_Y0R1VkZVaI//http://.../down.php?p=VELISMEDIA2-DD&trckid=VFc4ZDyzGuDK2UF6barftmoFb5SSjkS9Rawu9aM4dSb6S7Zh45qfMGnBIEDu0bhiPOUQFijALxAqJ85iE0kAZzVXO3YNFpptGCyj3yt7QOw0pWxEsjE4LErG7PMLcACrFnEoq8pvYiy-jvXPX8uA6vcbHWVycPg_m0Y7FtOYiaKxbuwvmvYyI_nPBkFExF1Dx1kuTxXaYC_eehbIW3uUnhJG3XsszVeZUR6bzCvj3Ngb_Y0R1VkZVaI  (installer_adobe_flash_player_english.exe)

The following 90 files have been seen to comunicate with adtgs.adk2x.com in live environments.

TCP » 146.148.84.188:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 146.148.89.65:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 130.211.180.124:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.154.51.120:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.197.179.68:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 146.148.84.188:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.197.121.192:80
UCBrowser.exe (by UCWeb)

TCP » 130.211.183.210:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 146.148.53.24:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 130.211.132.51:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.197.121.192:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 146.148.53.24:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 146.148.89.65:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 130.211.183.210:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 146.148.53.24:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 23.251.158.49:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 104.154.51.120:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.154.71.163:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 130.211.180.124:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 23.251.158.49:80
UCBrowser.exe (UC Browser by UCWeb)

 
Latest 20 of 128 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.