35234.get-wn.net
Starline Alliance LTD.
Domain Information
The domain 35234.get-wn.net registered by Starline Alliance LTD. was initially registered in September of 2014 through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Beauharnois, Quebec within Canada.
Registrant:
Starline Alliance LTD.
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM
Server location:
Quebec, Canada (CA)
Create date:
Monday, September 22, 2014
Expires date:
Tuesday, September 22, 2015
Updated date:
Monday, September 22, 2014
ASN:
AS16276 OVH OVH SAS, FR
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.ROSA.T, PUP.SOFTON.Installer (M)
100.00%
Avira AntiVirus
APPL/Downloader.Gen9, APPL/Downloader.Gen4
50.00%
ESET NOD32
Win32/bmMedia.CG, Win32/bmMedia.BN
50.00%
avast!
Win32:Rootkit-gen [Rtk], Win32:Malware-gen
50.00%
Dr.Web
Trojan.Packed.29079
50.00%
Agnitum Outpost
Riskware.Agent
50.00%
Total Defense
Win32/Tnega.KeXXEFB
25.00%
VIPRE Antivirus
Threat.4150696
25.00%
MicroWorld eScan
Gen:Variant.Kazy.473220
25.00%
NANO AntiVirus
Trojan.Win32.BmMedia.dguxsz
25.00%
F-Prot
W32/A-f6131de3
25.00%
Bitdefender
Gen:Variant.Kazy.473220
25.00%
AegisLab AV Signature
Troj.W32.Buzus
25.00%
Lavasoft Ad-Aware
Gen:Variant.Kazy.473220
25.00%
The domain 35234.get-wn.net has been seen to resolve to the following 2 IP addresses.
File downloads found at URLs served by 35234.get-wn.net.
The following file have been seen to comunicate with 35234.get-wn.net in live environments.
URL:
http://35234.get-wn.net/
Google Analytics:
UA-37292325
Title:
“DownloadFileSetup downloading...”
Web server:
nginx (PHP/5.3.10-1ubuntu3.9)
Related Domains
