home

ttb.tmftqzr3s8.com

Whois Privacy Protection Service, Inc.  (Proxy Registrant)

Domain Information

The domain ttb.tmftqzr3s8.com is registered by proxy through NAME.COM, INC. and was originally registered in October of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrar:
NAME.COM, INC.

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Wednesday, October 22, 2014

Expires date:
Thursday, October 22, 2015

Updated date:
Wednesday, October 22, 2014

Root domain:
tmftqzr3s8.com

Whois:
1 tmftqzr3s8.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Softpulse.DigitalP.Bundler (M), PUP.Softpulse.Bundler.Installer.Meta (M), PUP.Softpulse (M), PUP.Downloadius (M), PUP.Bundlore (M)
100.00%

The domain ttb.tmftqzr3s8.com has been seen to resolve to the following 11 IP addresses.

92.242.140.21
unallocated.barefruit.co.uk
May 28, 2015

5.135.246.48
February 26, 2015

5.196.157.0
February 20, 2015

54.213.47.244
ec2-54-213-47-244.us-west-2.compute.amazonaws.com
November 30, 2014

54.200.7.125
ec2-54-200-7-125.us-west-2.compute.amazonaws.com
November 30, 2014

54.187.191.118
ec2-54-187-191-118.us-west-2.compute.amazonaws.com
November 18, 2014

54.201.247.81
ec2-54-201-247-81.us-west-2.compute.amazonaws.com
November 18, 2014

54.191.241.4
ec2-54-191-241-4.us-west-2.compute.amazonaws.com
November 10, 2014

54.68.211.119
ec2-54-68-211-119.us-west-2.compute.amazonaws.com
November 10, 2014

54.191.38.164
ec2-54-191-38-164.us-west-2.compute.amazonaws.com
November 2, 2014

54.200.27.193
ec2-54-200-27-193.us-west-2.compute.amazonaws.com
November 2, 2014

File downloads found at URLs served by ttb.tmftqzr3s8.com.

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../4vEoIKcf?__tc=1414938304.217&lpsl=2ddd26ec98fe34ddfeacbdb7a79ce678&expire=1415024694&tgu_src_lp_domain=www.softandsofts.com&pub_id=176681&ce_cid=20rn.H38MATH5AgU3q9Onp1xKW5g000.&fileName=Player  (player.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../xb9onqTr?__tc=1414865415.334&lpsl=8ffb5f954da74c2ecb7709f104fdd819&expire=1414951659&PubID=62197&tgu_src_lp_domain=www.yoursoftdwl.com&ClickID=u5e6197e3545521085bc4bdfe56&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../ZvGlH2cO?__tc=1414795023.568&lpsl=8c5e14d920d71aa1ba493fb2cbae322f&expire=1414881406&PubID=308136&tgu_src_lp_domain=www.softfinaldow.com&ClickID=29786771091414794996&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414878272.847&lpsl=e5950a6e5d60a4348f390932cfab658f&expire=1414964662&PubID=201480&tgu_src_lp_domain=www.yoursoftdwl.com&ClickID=u57db2429544ac09fb8c0803ee&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414962898.198&lpsl=406d8045dd59eab826b55af701e38988&expire=1415049296&PubID=221280&tgu_src_lp_domain=www.newdllsoft.com&ClickID=14475209361414962895&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../ZvGlH2cO?__tc=1414940032.696&lpsl=ba23527e980375b6c0a9d9fc15679cfc&expire=1415026429&PubID=274850&tgu_src_lp_domain=www.newdllsoft.com&ClickID=14509640671414940028&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414872913.358&lpsl=abe00260cc25736f02950b5629092590&expire=1414959309&PubID=323507&tgu_src_lp_domain=www.yoursoftdwl.com&ClickID=29845472731414872907&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414942151.367&lpsl=0bb96f089b64abba31527d8fed046c41&expire=1415028478&PubID=237444&tgu_src_lp_domain=www.newdllsoft.com&ClickID=14596342141414942076&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414956124.479&lpsl=14158f8d8ed90c2f9967729730fbe41d&expire=1415042519&PubID=201480&tgu_src_lp_domain=www.newdllsoft.com&ClickID=7926616281414956118&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../ZvGlH2cO?__tc=1414942343.554&lpsl=23a52dec8fa4a9366858792dd12d1241&expire=1415028739&PubID=331282&tgu_src_lp_domain=www.newdllsoft.com&ClickID=u6da0b66f54564e821b8a2b39a&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../4vEoIKcf?__tc=1414933605.901&lpsl=78e0ed7946062487db6b07a81de4576b&expire=1415019994&tgu_src_lp_domain=www.softandsofts.com&pub_id=176681&ce_cid=20rn.H1ycU2FauAa3qhxOO1xKURx000.&fileName=Player  (player.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414915171.298&lpsl=56185a83d30516d8b8cf238c1f7d1af8&expire=1415001567&PubID=307190&tgu_src_lp_domain=www.newdllsoft.com&ClickID=33898031401414915165&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../xb9onqTr?__tc=1414860115.884&lpsl=864881cf15a507918bb9437621b50897&expire=1414946513&PubID=308136&tgu_src_lp_domain=www.yoursoftdwl.com&ClickID=14191446021414860111&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../xb9onqTr?__tc=1414877689.205&lpsl=b0b83e7605b45ee200e6fc3f517bfc49&expire=1414967677&PubID=78413&tgu_src_lp_domain=www.newdllsoft.com&ClickID=33755265431414881276&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414924888.361&lpsl=0d9e943db89f932999fa8e8dade4f003&expire=1415011283&PubID=243417&tgu_src_lp_domain=www.newdllsoft.com&ClickID=u5a1b89c35434f9e11b557574fe&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414946254.484&lpsl=9f88b8a98646d4b818dc25410b07d26b&expire=1415032653&PubID=243417&tgu_src_lp_domain=www.newdllsoft.com&ClickID=u5a1b89c35434f9e11b557574fe&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414957684.017&lpsl=e9c77baee18f175b6232705796e829d7&expire=1415044082&PubID=190350&tgu_src_lp_domain=www.newdllsoft.com&ClickID=u5aa31f5d544986dc56dae12143&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../xb9onqTr?__tc=1414873677.402&lpsl=8b4b8db710fac47794388ee5a7d4079b&expire=1414960074&PubID=223971&tgu_src_lp_domain=www.yoursoftdwl.com&ClickID=17016827181414873670&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414968025.192&lpsl=caa04e87674aca39af5f8320a08d065d&expire=1415054424&PubID=295171&tgu_src_lp_domain=www.yoursoftdwl.com&ClickID=13174117211414968022&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../ZvGlH2cO?__tc=1414803416.576&lpsl=5f47476e933f2b46a3648047da1dee1d&expire=1414889806&PubID=74870&tgu_src_lp_domain=www.softfinaldow.com&ClickID=ub2a7fe7854515e3a82c0899e2&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414867487.785&lpsl=2045edc0378fbb58eee5cf06b7ddb786&expire=1414953886&PubID=296249&tgu_src_lp_domain=www.yoursoftdwl.com&ClickID=15488504231414867485&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414940814.826&lpsl=ae313419a19ac3ce0a4334ef156582ea&expire=1415027213&PubID=157132&tgu_src_lp_domain=www.newdllsoft.com&ClickID=29846470631414940809&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../xb9onqTr?__tc=1414873359.238&lpsl=254f968d87fa3778260ce25d91514a47&expire=1414959755&PubID=237382&tgu_src_lp_domain=www.yoursoftdwl.com&ClickID=u529c4d0c5455405f95c86e2ccd&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../CJzxGx39?__tc=1414898052.167&lpsl=5301faaa9299f17ed11069906db6f33d&expire=1414984442&PubID=258733&tgu_src_lp_domain=www.newdllsoft.com&ClickID=29750676131414898038&fileName=Setup  (setup.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../xb9onqTr?__tc=1414804791.462&lpsl=17580f93c1fbd2e6065f42cf63da80ff&expire=1414891177&PubID=211775&tgu_src_lp_domain=www.softfinaldow.com&ClickID=ubbc6814b54542a432921055d7f&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../ZvGlH2cO?__tc=1414985228.734&lpsl=28e3741c7560899e4cac37a990615a80&expire=1415071629&PubID=244850&tgu_src_lp_domain=www.yoursoftdwl.com&ClickID=u5c173078544854c934b247f2a6&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../xb9onqTr?__tc=1414877030.287&lpsl=23071ed2170f2b9d778cb5a853037000&expire=1414963424&PubID=187035&tgu_src_lp_domain=www.yoursoftdwl.com&ClickID=15697408221414877023&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../xb9onqTr?__tc=1414865347.789&lpsl=e6b263b784cc1661c2847a01f92ddd24&expire=1414951744&PubID=162907&tgu_src_lp_domain=www.yoursoftdwl.com&ClickID=u4f5a2be25440081424aff62c6d&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../xb9onqTr?__tc=1414887503.228&lpsl=4234e3a5ef266eb233dbd639dd2cb2fb&expire=1414973895&PubID=74870&tgu_src_lp_domain=www.newdllsoft.com&ClickID=32049982201414887494&fileName=Setup_v2_1  (setup v2 1.exe)

1 / 68      (Adware)
http://ttb.tmftqzr3s8.com/download/request/.../ZvGlH2cO?__tc=1414865682.978&lpsl=ecab0f0f0f3a7503fd20f821414bb232&expire=1414952072&PubID=331282&tgu_src_lp_domain=www.yoursoftdwl.com&ClickID=ud5973e765455230674bd3ff1a5&fileName=Setup_v2_1  (setup v2 1.exe)

 
Latest 30 of 375 download URLs

The following 230 files have been seen to comunicate with ttb.tmftqzr3s8.com in live environments.

TCP » 92.242.140.21:80
smelled.exe (Smelled)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
marini.exe (Marini)

TCP » 92.242.140.21:443
client.exe (ClientWrapper)

TCP » 92.242.140.21:80
thebrowser.exe (TheBrowser by Goobzo)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:443
WindowService.exe (WindowService)

TCP » 92.242.140.21:443
ciuninstall.exe

TCP » 92.242.140.21:1866
jutched.exe

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
masterupdater.exe

TCP » 92.242.140.21:80
pricemeterexpress.crx

TCP » 92.242.140.21:80
chrome.crx

TCP » 92.242.140.21:80
app-center.crx

TCP » 92.242.140.21:80
ntp.crx

TCP » 92.242.140.21:80
3dayinvite.crx

TCP » 92.242.140.21:80
twitter.crx

TCP » 92.242.140.21:80
viewlater.crx

TCP » 92.242.140.21:80
rss.crx

TCP » 92.242.140.21:80
datapump.crx

 
Latest 20 of 230 files

URL:
http://ttb.tmftqzr3s8.com/

Web server:
nginx/1.0.15

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.