64174.get-wn.net

N.A.

Domain Information

The domain 64174.get-wn.net registered by N.A. was initially registered in September of 2014 through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Montreal, Quebec within Canada.
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM

Server location:
Quebec, Canada (CA)

Create date:
Monday, September 22, 2014

Expires date:
Thursday, September 22, 2016

Updated date:
Friday, October 30, 2015

ASN:
AS16276 OVH OVH SAS,FR

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.ROSA.DD, PUP.Installer.ROSA.L, PUP.Installer.SAASMIKRO.DD, PUP.REALTRAST.Installer (M), PUP.ROSA.Installer (M)
100.00%

AVG
Generic
60.00%

Dr.Web
Trojan.Packed.29079, Trojan.Packed.29383
60.00%

Avira AntiVirus
APPL/Downloader.Gen9
40.00%

ESET NOD32
Win32/bmMedia.CG, Win32/bmMedia.BK
40.00%

avast!
Win32:Rootkit-gen [Rtk], Win32:Malware-gen
40.00%

Agnitum Outpost
Riskware.Agent
40.00%

VIPRE Antivirus
Threat.4150696
40.00%

MicroWorld eScan
Gen:Variant.Kazy.473220, Gen:Variant.Application.Kazy.503521
40.00%

Bitdefender
Gen:Variant.Kazy.473220, Gen:Variant.Application.Kazy.503521
40.00%

Emsisoft Anti-Malware
Gen:Variant.Kazy.473220, Gen:Variant.Application.Kazy.503521
40.00%

G Data
Gen:Variant.Kazy.473220, Gen:Variant.Application.Kazy.503521
40.00%

Total Defense
Win32/Tnega.KeXXEFB
20.00%

AegisLab AV Signature
Troj.W32.Buzus
20.00%

Lavasoft Ad-Aware
Gen:Variant.Kazy.473220
20.00%

The domain 64174.get-wn.net has been seen to resolve to the following 3 IP addresses.

June 2, 2016

April 8, 2016

October 20, 2014

File downloads found at URLs served by 64174.get-wn.net.

1 / 68      (Adware)

1 / 68      (Adware)

17 / 68    (Adware)

9 / 68      (Adware)

The following file have been seen to comunicate with 64174.get-wn.net in live environments.

URL:
http://64174.get-wn.net/

Google Analytics:
UA-19309218

Title:
“get-wn.net - This website is for sale! - get-wn Resources and Information.”

Description:
“This website is for sale! get-wn.net is your first and best source for information about get-wn . Here you will also find topics relating to issues of general interest. We hope you find what you are looking for!”

Web server:
Apache/2.2.22 (Debian)

30 of 93 related domains