download.mp3jam.org
Domains By Proxy, LLC (Proxy Registrant)
Domain Information
The domain download.mp3jam.org is registered by proxy through GoDaddy.com, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Cloudfront CDN service which utilizes a number of proxy IP Addresses (see below).
Registrant:
Domains By Proxy, LLC
Registrar:
GoDaddy.com, LLC
Server location:
New York, United States (US)
Scanner detections:
Detections (87% detected)
Scan engine
Details
Detections
ESET NOD32
Win32/Somoto, Win32/DownloadGuide (variant), Win32/InstallCore.QL (variant), Win32/InstallCore.QO (variant), Win32/InstallCore.RA (variant), Win32/InstallCore.TL potentially unwanted (variant)
93.33%
Reason Heuristics
PUP.Somoto.Bundle, PUP.Installer.CyberservicesBV.L, PUP.InstallCore.ENG (M)
66.67%
Trend Micro House Call
TROJ_GEN.F47V0220, Suspicious_GEN.F47V1113
53.33%
Avira AntiVirus
ADWARE/InstallCore.Gen9, PUA/InstallCore.Gen
40.00%
Fortinet FortiGate
Riskware/DownloadGuide, Riskware/InstallCore
20.00%
McAfee
Artemis!09FC65AF0006, Artemis!FF9D519D9728
13.33%
IKARUS anti.virus
AdWare.DownloadGuide, PUA.InstallCore
13.33%
AVG
Generic_r, OpenCandy
13.33%
Sophos
Generic PUA AI, Generic PUA OK
13.33%
Total Defense
Win32/Tnega.VBMKZGD
6.67%
Agnitum Outpost
Riskware.Agent
6.67%
F-Secure
Adware:W32/Buzzrin
6.67%
VIPRE Antivirus
DownloadGuide
6.67%
ESET NOD32
Win32/OpenCandy potentially unsafe application
6.67%
Dr.Web
Threat.Undefined
6.67%
The domain download.mp3jam.org has been seen to resolve to the following 86 IP addresses.
server-216-137-33-253.iad2.r.cloudfront.net
February 21, 2015
server-54-230-100-174.iad2.r.cloudfront.net
February 21, 2015
server-54-230-100-25.iad2.r.cloudfront.net
February 21, 2015
server-54-192-101-118.iad2.r.cloudfront.net
February 21, 2015
server-54-192-101-112.iad2.r.cloudfront.net
February 21, 2015
server-54-192-101-73.iad2.r.cloudfront.net
February 14, 2015
server-216-137-33-108.iad2.r.cloudfront.net
February 14, 2015
server-54-230-102-229.iad2.r.cloudfront.net
February 14, 2015
server-54-230-102-214.iad2.r.cloudfront.net
February 14, 2015
server-54-192-101-108.iad2.r.cloudfront.net
November 1, 2014
server-54-192-101-67.iad2.r.cloudfront.net
November 1, 2014
server-216-137-33-235.iad2.r.cloudfront.net
November 1, 2014
server-216-137-33-89.iad2.r.cloudfront.net
November 1, 2014
server-54-230-103-136.iad2.r.cloudfront.net
November 1, 2014
server-54-230-102-208.iad2.r.cloudfront.net
November 1, 2014
server-54-230-101-65.iad2.r.cloudfront.net
November 1, 2014
server-54-230-100-84.iad2.r.cloudfront.net
November 1, 2014
server-54-230-103-217.iad2.r.cloudfront.net
September 7, 2014
server-54-230-103-100.iad2.r.cloudfront.net
September 7, 2014
server-54-230-102-155.iad2.r.cloudfront.net
September 7, 2014
server-54-230-102-35.iad2.r.cloudfront.net
September 7, 2014
server-54-230-100-140.iad2.r.cloudfront.net
September 7, 2014
server-216-137-33-232.iad2.r.cloudfront.net
September 7, 2014
server-54-230-103-242.iad2.r.cloudfront.net
September 7, 2014
server-54-230-102-112.iad2.r.cloudfront.net
August 16, 2014
server-54-230-101-250.iad2.r.cloudfront.net
August 16, 2014
server-216-137-33-123.iad2.r.cloudfront.net
August 16, 2014
server-216-137-33-105.iad2.r.cloudfront.net
August 16, 2014
server-54-230-103-209.iad2.r.cloudfront.net
August 16, 2014
server-54-230-103-112.iad2.r.cloudfront.net
August 16, 2014
Showing 30 of 86 IP Addresses
File downloads found at URLs served by download.mp3jam.org.
The following 25 files have been seen to comunicate with download.mp3jam.org in live environments.
