home

spath2.path-tracker.com

PRIVACYDOTLINK CUSTOMER 973261

Domain Information

The domain spath2.path-tracker.com registered by PRIVACYDOTLINK CUSTOMER 973261 was initially registered in September of 2011 through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
UNIREGISTRAR CORP

Server location:
Arizona, United States (US)

Create date:
Friday, September 30, 2011

Expires date:
Saturday, September 30, 2017

Updated date:
Saturday, March 12, 2016

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

Root domain:
path-tracker.com

Whois:
4 path-tracker.com records

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore.IronInstall.Installer (M), PUP.installCore.Clickrunsoftware.Installer (M), Threat.Win.Reputation.IMP, PUP.installCore.Clickrun.Installer (M), PUP.installCore.IronInst.Installer (M), PUP.installCore.ClickRun.Installer (M), PUP.installCore (M)
93.88%

ESET NOD32
Win32/InstallCore.BL potentially unwanted application, Win32/InstallCore.AW potentially unwanted application, Win32/InstallCore.BA potentially unwanted application, Win32/InstallCore.AZ potentially unwanted application
57.14%

avast!
Win32:InstallCore-HG [PUP], Win32:Adware-gen [Adw], Win32:Installer-I [PUP]
55.10%

Dr.Web
Trojan.Packed.24524, Adware.Downware.694, Adware.InstallCore.76, Adware.InstallCore.96
51.02%

F-Prot
W32/InstallCore.R.gen, W32/InstallCore.P.gen, W32/InstallCore.I.gen, W32/InstallCore.S.gen
48.98%

VIPRE Antivirus
Threat.4786018, Threat.4754767
18.37%

Emsisoft Anti-Malware
Gen:Variant.Graftor.265016
16.33%

Norman
Gen:Variant.Graftor.265016
14.29%

F-Secure
Variant.Graftor.265016
10.20%

Sophos
PUA 'Install Core Click run software'
8.16%

The domain spath2.path-tracker.com has been seen to resolve to the following 6 IP addresses.

69.172.201.153
April 20, 2016

69.172.201.208
April 1, 2016

50.63.202.104
ip-50-63-202-104.ip.secureserver.net
November 23, 2015

208.91.197.104
November 6, 2015

209.99.40.222
209-99-40-222.fwd.datafoundry.com
October 12, 2015

67.210.209.73
73.209.210-67.q9.net
January 3, 2014

File downloads found at URLs served by spath2.path-tracker.com.

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=82018010&ol=168,32,648,160,1441,1568,1303,570,1111,1497,1409,1411,1603,1625,1439,1718,1440,1205,571,1298,1192,1222,1485,1720,1453,1332,1552,1122,1129,1179,1565,1134,1193,1549,1405,1563,1710,188,1626,902,749,810,832,841,728,631,641,642,840,842,973,1021,1123,971,897,844,884,886,1124&aid=235&fid=  (videoconvertersetup.exe)

1 / 68      (inconclusive)
http://spath2.path-tracker.com/.../download-exe?tid=51023565&ol=648,1044,1124,1123,1144,1111,1188,999,1082,728,841,1189,810,1086,1222,631,770,1179,1196,188,749,998,1122,1165,1193,973,971,974,970,1000,897,1021,844,832,840,611,642,641,842,32,894,886,884,845,902&aid=644&fid=  (videoconvertersetup.exe)

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=75503613&ol=648,1603,1441,1332,1298,1568,188,1439,1582,1409,1453,1426,1565,1179,1549,1440,1452,570,1205,1222,1165,1193,1122,1303,1567,1552,1563,1485,1192,1111,571,1405,971,810,832,841,840,749,728,631,641,642,842,844,1021,1123,1124,1129,973,897,884,886,902,1134&aid=239&fid=  (videoconvertersetup.exe)

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=85542055&ol=32,648,1497,1625,1192,1298,571,570,1303,1409,1411,1603,1549,1568,1710,1626,1565,1563,1453,1205,1440,1485,1405,1552,1567,1441,1111,841,832,840,842,884,844,810,749,641,631,642,728,886,902,1179,1122,1193,1222,188,1134,1129,971,897,973,1021,1124,1123,1332&aid=239&fid=  (videoconvertersetup.exe)

0 / 68
http://spath2.path-tracker.com/.../download-exe?tid=46528872&ol=168,32,648,1082,728,1086,840,897,886,1154,1123,970,974,999,1111,143,998,894,971,844,973,902,1124,841,884,1144,832,1196,1193,1179,1189,749,188,842,1188,1165,641,642,611,1000,1021,631,1044,770,845&aid=644&fid=  (videoconvertersetup.exe)

4 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=49556839&ol=648,1086,1082,188,642,886,841,1179,641,101,161,1144,1123,810,844,897,973,842,1124,1188,840,1189,894,631,749,970,728,845,902,1222,143,770,1193,1111,1190,611,971,999,1196,998,974,832,884,1044,1000,1021&aid=13&fid=  (videoconvertersetup.exe)

3 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=82687572&ol=648&aid=340&fid=  (videoconvertersetup.exe)

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=35985068&ol=648,884,886,1125,1124,728,1082,685,678,567,571,570,1131,1148,1123,973,769,972,1129,970,999,894,1126,844,1038,902,840,998,905,1057,1111,631,897,1000,904,841,749,1132,1133,1130,1128,1127,1134,1144,611,1146,1044,1115,642,832,842,845,32,971,1021,770,143,974,641&aid=126  (videoconvertersetup.exe)

6 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=40356950&ol=648,1086,1082,886,1148,631,31,1115,841,101,571,143,570,642,769,685,998,1124,1123,974,728,840,1126,973,884,1111,1044,897,999,1165,1000,972,1146,1021,1144,902,749,845,844,842,770,611,970,832,894,641,971&aid=235  (videoconvertersetup.exe)

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=50875895&ol=875,32,648,1082,1188,973,749,728,894,1086,1144,1124,810,1123,902,770,971,974,1179,1196,188,641,844,999,1122,1165,1193,631,842,970,998,1189,611,841,1111,1222,642,884,840,845,897,1000,1044,886,832,1021&aid=126&fid=  (videoconvertersetup.exe)

6 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=60600601&ol=1355,32,648,1193,1123,1134,1179,1129,1111,1349,1122,1165,1124,974,1021,188,1044,1341,1287,176,1333,973,1286,1222,1334,1332,884,728,749,832,642,631,641,841,840,902,897,970,894,886,842,844,971&aid=427&fid=  (videoconvertersetup.exe)

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=91168329&ol=648,875,1712,1568,168,1441,1625,1634,1710,571,1640,1563,1298,1800,570,1767,1303,1750,1452,1485,1222,1192,1332,1745,1453,188,1179,1111,1134,1122,1411,1405,1552,1193,1626,1129,902,749,810,832,841,728,631,641,642,840,842,973,1021,1123,971,897,844,884,886,1124&aid=239&fid=  (videoconvertersetup.exe)

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=68142831&ol=32,648,168,1179,1426,875,1409,1193,1486,1448,1405,1334,1332,1333,1411,1341,1485,1439,685,1192,1298,1440,571,1453,1205,570,1303,1441,1134,840,841,842,844,884,832,749,641,631,642,728,886,902,1111,1129,1165,1122,188,1124,1123,970,897,971,973,1021,1222&aid=48&fid=  (videoconvertersetup.exe)

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=74359207&ol=32,648,1441,1426,1568,1111,168,875,1123,571,1298,1439,1409,897,1603,1303,570,1192,1332,832,1205,1552,642,1452,631,1405,1567,1565,810,1193,749,1134,1485,188,1582,840,1222,1563,728,1453,973,841,1549,1122,1179,902,844,842,641,884,886,1129,1124,1021,971,1165&aid=35&fid=  (videoconvertersetup.exe)

8 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=46956828&ol=648,1111,1179,1082,844,902,1000,886,244,31,728,1189,1123,1124,1144,973,999,884,1044,998,840,1188,970,1165,894,1193,1196,897,188,841,749,974,1021,832,611,642,641,631,143,770,845,842,32,971&aid=217&fid=  (videoconvertersetup.exe)

1 / 68      (Malware)
http://spath2.path-tracker.com/.../download-exe?tid=11147963&ol=32,648,594,31,144,143,246,176,256,749,217,711,699,728,710,571,761,769,770,755,750,251,685,698,170,588,580,578,582,591,577,562,179,188,249,250,569,593,606,680,29,140,67,150,611,642,631,633,634,641,180&aid=48  (videoconvertersetup.exe)

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=39198863&ol=648,31,32,974,1086,1044,999,998,678,101,160,91,567,196,154,244,881,594,971,972,897,973,970,1126,1082,1115,1148,1146,1165,1144,1111,1021,1123,1124,902,1000,844,143,728,571,685,611,642,631,641,769,770,842,845,884,886,840,841,749,570,832,894&aid=48  (videoconvertersetup.exe)

5 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=92292702&ol=1599,1383,1649,1392,1807,1671,1602,1550,1664,1687,1746,1749,1753,1760,1389,32,648,1793,1712,1763,1710,1193,1777,1405,1765,1745,1179,1441,1298,973,1801,1563,1124,1800,642,1750,1411,1626,1767,1603,1625,1568,1303,1452,1552,1111,1418,1423,1424,1609&aid=692&fid=  (videoconvertersetup.exe)

5 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=89284700&ol=648&aid=340&fid=  (videoconvertersetup.exe)

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=46663990&ol=32,648,1082,728,1086,840,897,1154,1123,886,974,970,999,844,998,143,973,1124,971,894,1144,1188,902,841,842,188,884,845,770,1189,642,1111,749,1179,641,1196,1165,631,1193,1044,1021,1000,832,611&aid=56&fid=  (videoconvertersetup.exe)

5 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=68580178&ol=875,32,648,1440,571,1410,1298,1439,188,1409,1332,1193,1222,642,1411,1303,570,685,1129,1426,1486,1334,1441,1341,1333,1192,1405,1124,1111,1165,1179,1122,1485,1453,1205,897,832,841,840,749,728,631,641,842,844,973,1021,1123,971,970,884,886,902,1134&aid=335&fid=  (videoconvertersetup.exe)

6 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=56158229&ol=648,728,1287,188,1124,1129,1286,1123,31,1044,176,1111,974,1082,902,844,1179,973,1122,971,1165,1332,749,1193,1222,631,884,840,897,642,886,841,832,894,970,641,842,611,1134,1021,32&aid=126&fid=  (videoconvertersetup.exe)

7 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=96336243&ol=1798,648,1799,1453,570,1552,1298,571,1303,1192,1421,1021,1134,1441,1129,1563,1750,1712,1800,1801,1745,1568,1452,1710,1625,1626,973,971,1123,1124,188,1193,1179,1122,631,728,749,1111,1222,641,884,886,902,897,844,842,832,841,840,642&aid=340&fid=  (videoconvertersetup.exe)

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=25329114&ol=648,840,882,902,884,943,728,255,886,678,101,244,154,153,31,567,897,894,188,858,832,831,250,810,842,843,851,845,844,249,929,1006,905,904,1000,1007,1021,1026,1030,1028,999,998,970,952,951,809,971,972,974,973,930,769,143,251,150,144,710,699,591,711,67,140,641,634,633,606,642,611,680,593,588,582,256,698,569,685,750,755,770,631,761,562,571,170,246,176,580,578,217,577,570&aid=48  (videoconvertersetup.exe)

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=44118725&ol=32,648,1082,1148,1188,567,886,841,631,101,1189,974,998,143,642,1111,1124,1123,971,973,1144,902,844,894,840,832,897,728,884,1044,1165,1193,611,770,842,845,970,972,999,1146,1179,1196,641,749,1021,1000&aid=56&fid=  (videoconvertersetup.exe)

9 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=43289772&ol=875,648,1086,1111,973,749,974,894,728,1124,1123,770,971,884,998,902,972,840,1000,841,1082,999,897,1115,1144,1044,1146,1165,1179,1021,1196,1122,842,642,641,631,611,143,886,845,844,832,970&aid=85&fid=  (videoconvertersetup.exe)

1 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=85692908&ol=32,648,1710,1441,1625,1568,875,168,571,570,1409,1497,1111,1298,1440,1192,1453,1303,188,1122,1193,1332,1405,1222,1411,1549,1603,1626,1565,1563,1485,1567,1552,1205,973,810,832,841,840,749,728,631,641,642,842,844,1123,1124,1129,1134,1021,971,884,886,902,897,1179&aid=243&fid=  (videoconvertersetup.exe)

7 / 68      (PUP)
http://spath2.path-tracker.com/.../download-exe?tid=44310837&ol=648,32,728,844,840,592,974,1124,1111,1123,1179,1193,1000,1021,1144,1044,1146,999,1165,1189,1196,1082,1188,902,770,749,832,841,143,611,631,641,642,842,845,971,972,973,970,897,884,886,894,998&aid=48&fid=  (videoconvertersetup.exe)

9 / 68      (PUP)
http://spath2.path-tracker.com/.../download-exe?tid=33618697&ol=168,648,32,1086,728,897,999,998,571,570,886,1111,970,1134,840,685,1057,902,974,973,972,971,1123,1124,592,844,1144,769,143,894,841,1126,1125,1082,884,1131,1129,1128,1044,1148,1115,1133,1130,1132,1127,951,842,832,749,770,845,611,1000,631,641,642,1021&aid=85  (videoconvertersetup.exe)

5 / 68      (Adware)
http://spath2.path-tracker.com/.../download-exe?tid=86769947&ol=875,32,648,1712,1485,1710,1124,1441,1453,1303,570,571,1298,1640,1440,1603,1411,1192,1405,1497,1568,1567,1332,1565,1123,1625,1552,728,897,1563,1179,1111,1122,1193,188,1222,1452,1205,1626,902,810,832,841,749,631,641,642,840,842,973,1021,1129,971,886,844,884,1134&aid=239&fid=  (videoconvertersetup.exe)

 
Latest 30 of 71 download URLs

The following 53 files have been seen to comunicate with spath2.path-tracker.com in live environments.

TCP » 209.99.40.222:80
UCBrowser.exe (by UCWeb)

TCP » 209.99.40.222:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.99.40.222:80
ContentFinder.exe (ContentFinder by ContentFinder Software)

TCP » 209.99.40.222:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.99.40.222:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 209.99.40.222:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.99.40.222:80
hkcmd.exe (Intel Common User Interface by Intel)

TCP » 209.99.40.222:80
ContentFinder.exe (ContentFinder by DigitalSoftware Group)

TCP » 209.99.40.222:80
jingling.exe

TCP » 209.99.40.222:80
online-guardian-v2.0.9.exe

TCP » 209.99.40.222:80
msn.exe

TCP » 209.99.40.222:80
apptrailers.exe

TCP » 209.99.40.222:80
y03fd24.tmp

TCP » 209.99.40.222:80
lliseconc8.exe

TCP » 209.99.40.222:80
megacubo.exe (Megacubo by www.megacubo.net)

TCP » 209.99.40.222:80
messengertime.exe

TCP » 209.99.40.222:80
ContentSinder.exe (ContentSinder by ContentSinder Company)

TCP » 209.99.40.222:80
jingling.exe

TCP » 209.99.40.222:80
jingling.exe

TCP » 209.99.40.222:80
browser.exe (speed browser by Smart Applications)

 
Latest 20 of 59 files

URL:
http://spath2.path-tracker.com/

Web server:
DOSarrest

Facebook:
Likes:  6
Shares:  70
Comments:  4

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.