home

ttb.7khtnyb52n.com

Matthew Pynhas

Domain Information

The domain ttb.7khtnyb52n.com registered by Matthew Pynhas was initially registered in September of 2014 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Faro, Faro within Portugal which resides on the RIPE Network Coordination Centre network.
Registrar:
GODADDY.COM, LLC

Server location:
Faro, Portugal (PT)

Create date:
Tuesday, September 30, 2014

Expires date:
Wednesday, September 30, 2015

Updated date:
Tuesday, September 30, 2014

ASN:
AS8426 CLARANET-AS ClaraNET LTD,GB

Root domain:
7khtnyb52n.com

Whois:
1 7khtnyb52n.com record

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.DigitalPluginSL.M, PUP.Installer.DigitalPluginSL.F, PUP.Softpulse.DigitalPlugin.Bundler (M), PUP.Softpulse.DigitalP.Bundler (M), PUP.Softpulse (M)
100.00%

VIPRE Antivirus
Threat.4783235
9.09%

Malwarebytes
PUP.Optional.SoftPulse
9.09%

Avira AntiVirus
APPL/Softpulse.Gen8
9.09%

Vba32 AntiVirus
BScope.Adware.Softpulse
9.09%

Panda Antivirus
Trj/Genetic.gen
9.09%

ESET NOD32
Win32/SoftPulse (variant)
9.09%

AVG
Generic
9.09%

herdProtect (fuzzy)
a variant of f38ce40c1916148193d57a8dc04f2ce95e2fa4db
6.06%

Dr.Web
Trojan.DownLoader11.34754
6.06%

McAfee
Softpulse.b
6.06%

K7 AntiVirus
Unwanted-Program
6.06%

Agnitum Outpost
Riskware.Agent
6.06%

Clam AntiVirus
Win.Trojan.Softpulse-51
6.06%

AhnLab V3 Security
PUP/Win32.SmartSecure
6.06%

The domain ttb.7khtnyb52n.com has been seen to resolve to the following 4 IP addresses.

195.22.26.254
anubisnetworks.com
September 30, 2014

195.22.26.253
anubisnetworks.com
September 30, 2014

195.22.26.252
anubisnetworks.com
September 30, 2014

195.22.26.231
anubisnetworks.com
September 30, 2014

File downloads found at URLs served by ttb.7khtnyb52n.com.

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411948837.984&lpsl=ed6557b57fe6eb03cbecf3d1c3659276&expire=1412035232&PubID=274080&tgu_src_lp_domain=www.prosoftlst.com&ClickID=31769100011411948830&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411955846.222&lpsl=48bd42562d6e103123332a23427cb784&expire=1412042208&PubID=155066&tgu_src_lp_domain=www.prosoftlst.com&ClickID=11534063621411955805&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411949019.963&lpsl=39c240fc9ba9276dfd683aa62ba62df7&expire=1412035368&PubID=274850&tgu_src_lp_domain=www.prosoftlst.com&ClickID=33814877691411948967&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411950100.407&lpsl=05cdde919d53d984ea2d9aaa337cdc0a&expire=1412036495&PubID=327096&tgu_src_lp_domain=www.prosoftlst.com&ClickID=31973470311411950093&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../H3zVxAf3?__tc=1411956295.256&lpsl=6fdfda47d34126085e6b661e3a5f7b2c&expire=1412042686&PubID=44&sid=M_33645875738be3c5b89e1411956284&tid=JO8GesaAn-fe0Mpl9Ng7Wr-MJ9nbJVyOYrPFspHWxyhkPlILpuGQX_gyDm_KL_AY7p1gLlluj8H2SwpYfhio2smvI4oi93znXgjzMPBlWrnmWdT2-8unUMPjpiYxHNYLmcIGBPPY5ggmZflsBcpD9ANxSsuYeeBa1_dM8Kkl1zIIRaRRH-r8o1y28PLcK5gOMnKLADmsxIrWYgWJn91romz2Dy6qtmT11BBQXp0IvlNaoZ-W2vLNw6i_D6iMhzW5hgxlipV-qGm2s65BXQmeeqA3Hpyk4DoFplwphEsRtRRrp9kQTR36OljXI-DftyL6GIirkkAmF1Yxwg-VYPvRdxOLz6z5EziOuuD_iyzCeTDDvo6D1_QnZkheyQO6KdrhD-ygZit7sdA4dm8dZKM7jLL97MsTDQNfxTm7FbbxehEP4M1sWuB659U4D4NtNOMZgtoANSBYtepqlWA&ref=clicknewa.com&pid=44&tgu_src_lp_domain=www.dlultimatesoft.com&ClickID=M_33645875738be3c5b89e1411956284&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411958247.373&lpsl=b1d2b4c1d273b3f668f1a72695f07dc6&expire=1412044657&PubID=271585&tgu_src_lp_domain=www.prosoftlst.com&ClickID=29851947891411958255&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411946680.876&lpsl=548d3587977331201801300212c1d62c&expire=1412033071&PubID=258733&tgu_src_lp_domain=www.prosoftlst.com&ClickID=33722512201411946669&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../vdoxRukp?__tc=1411954162.12&lpsl=5396edca9bf11dfd28b80b21c9ad1653&expire=1412040540&tgu_src_lp_domain=www.dwnlultimatesoft.com&pub_id=176681&ce_cid=20srPB0tJPip.Nb33pjdwh1xypLQ000.&fileName=Player  (player.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../Cjji9zr6?__tc=1411954849.029&lpsl=38c4fe47a21c0c7cae55f1df6d92fec9&expire=1412041223&PubID=CD15092&tgu_src_lp_domain=www.ddllatestupdate.com&ClickID=9bf29b465c968165842b02f9f440c5f7&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411958894.19&lpsl=1d6bd84d24df1b7ea6c0b8084080b04f&expire=1412045281&PubID=78875&tgu_src_lp_domain=www.prosoftlst.com&ClickID=12053027141411958881&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../CJzxGx39?__tc=1411958109.208&lpsl=9dffe11ea733ff698894468d1fb2fdfa&expire=1412044470&PubID=274850&tgu_src_lp_domain=www.prosoftlst.com&ClickID=24991819141411958068&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../43xwlt0O?__tc=1411958278.791&lpsl=fede80df75ddaeed19c2ab960b40851f&expire=1412044677&PubID=008825947&tgu_src_lp_domain=www.dwnlsoft.com&a=2&ClickID=008825947012981842997&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xyVYKGVX?__tc=1411953748.428&lpsl=829aeae2ee1368f902251339e8e3f896&expire=1412040147&vurl=9587&dp=-_-MjljM18xNzNfNDA3NF80MTE1X0JSXzE4Ni4yMDUuNTIuMjA1XzcxZl80MjQwX0FEUw-_-ADSYS-12136b03-4777-11e4-9d69-8d53d011ff7d&tgu_src_lp_domain=www.dnlallsoft.com&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../CJzxGx39?__tc=1411947017.435&lpsl=bf92d8fc7aa57ed749a5ccfc39b3e2d6&expire=1412033416&PubID=152280&tgu_src_lp_domain=www.prosoftlst.com&ClickID=31913228441411947015&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../CJzxGx39?__tc=1411959990.931&lpsl=de0cda094287c6e6bf12041e6b4614d2&expire=1412046390&PubID=162609&tgu_src_lp_domain=www.prosoftlst.com&ClickID=31718251321411959987&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411949725.937&lpsl=a7641f4c3f4e517ef6d4d76d1bac72d1&expire=1412036103&PubID=322185&tgu_src_lp_domain=www.prosoftlst.com&ClickID=31246612181411949700&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../ZvGlH2cO?__tc=1411957855.964&lpsl=00ec0acb5f0cc055d0bdda108e91c363&expire=1412044257&PubID=157824&tgu_src_lp_domain=www.prosoftlst.com&ClickID=29739154501411957856&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../CJzxGx39?__tc=1411976046.223&lpsl=6164ceb9d84410c8a08e503d9f03a904&expire=1412062442&PubID=259120&tgu_src_lp_domain=www.prosoftlst.com&ClickID=29977924381411976041&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411959183.353&lpsl=e7d753da5df8cfe9209ec28151b8905e&expire=1412045581&PubID=307455&tgu_src_lp_domain=www.prosoftlst.com&ClickID=4158280341411959179&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411959199.325&lpsl=7fd4a70e5231689803775e26aca9d5b8&expire=1412045598&PubID=57520&tgu_src_lp_domain=www.prosoftlst.com&ClickID=4158280341411959197&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../CJzxGx39?__tc=1411946735.557&lpsl=ffcd6162045f16bbfff1f37dcb315534&expire=1412033130&PubID=230746&tgu_src_lp_domain=www.prosoftlst.com&ClickID=31396384801411946729&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../CJzxGx39?__tc=1411956124.259&lpsl=87d2af53e36cb1c6aa607142b8f08260&expire=1412042521&PubID=222913&tgu_src_lp_domain=www.prosoftlst.com&ClickID=31810955171411956121&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../43xwlt0O?__tc=1411949905.184&lpsl=6bf681b4745ebc16f27653f1126340dc&expire=1412036268&PubID=008577932&tgu_src_lp_domain=www.dwnlsoft.com&a=2&ClickID=008577932012977786255&fileName=Player_Setup  (player setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../CJzxGx39?__tc=1411955125.458&lpsl=5c37b9643101ed5be33cf5c890ca13e3&expire=1412041520&PubID=57520&tgu_src_lp_domain=www.prosoftlst.com&ClickID=17719924421411955119&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../ZvGlH2cO?__tc=1411958639.473&lpsl=97b3e6e8b5242a7ec99d1604b798eda3&expire=1412045035&PubID=57520&tgu_src_lp_domain=www.prosoftlst.com&ClickID=17719924421411958634&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411955587.86&lpsl=e8712892821c49ec06119e6fdce6c5eb&expire=1412041987&PubID=258733&tgu_src_lp_domain=www.prosoftlst.com&ClickID=30174775341411955584&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411963217.02&lpsl=9c479429b34183f5c9c6b213f3c3fa3f&expire=1412049618&PubID=258733&tgu_src_lp_domain=www.prosoftlst.com&ClickID=30174775341411955584&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411956874.8&lpsl=480aca4556c82499d30254ae12ccfbe4&expire=1412043273&PubID=155066&tgu_src_lp_domain=www.prosoftlst.com&ClickID=12218388291411956872&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../xb9onqTr?__tc=1411951196.902&lpsl=e918650e35494e71e3c3b26be62094c3&expire=1412037576&PubID=318728&tgu_src_lp_domain=www.prosoftlst.com&ClickID=11522637611411951175&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.7khtnyb52n.com/download/request/.../CJzxGx39?__tc=1411951450.417&lpsl=7566463bc85929de47e9bfa905bcfdad&expire=1412037874&PubID=302691&tgu_src_lp_domain=www.prosoftlst.com&ClickID=23932404761411951474&fileName=Setup  (setup.exe)

 
Latest 30 of 34 download URLs

The following 3 files have been seen to comunicate with ttb.7khtnyb52n.com in live environments.

TCP » 195.22.26.231:80
movie.exe (ysp by Microsoft)

TCP » 195.22.26.252:80
mp4player.exe

TCP » 195.22.26.252:80
vishwakarma.exe (ysp by Microsoft)

TCP » 195.22.26.252:80
movie.exe (ysp by Microsoft)

TCP » 195.22.26.253:80
vishwakarma.exe (ysp by Microsoft)

URL:
http://ttb.7khtnyb52n.com/

Web server:
nginx

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.