b3xkpz5njeb4sc9.incomebox.ru
Private Person (Proxy Registrant)
Domain Information
The domain b3xkpz5njeb4sc9.incomebox.ru is registered by proxy through REGRU-RU and was originally registered in April of 2016. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Edinburgh, Scotland within United Kingdom which resides on the Latin American and Caribbean IP address Regional Registry network.
Registrant:
Private Person
Server location:
Scotland, United Kingdom (GB)
Create date:
Friday, April 8, 2016
Expires date:
Saturday, April 8, 2017
ASN:
AS59711 FORTUNIX-AS Fortunix Networks L.P.,GB
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
Threat.Win.Reputation.IMP, PUP.Outbrowse.SalyutemPlyus.Bundler (M), PUP.Outbrowse.Salyutem.Bundler (M)
66.67%
Dr.Web
Trojan.InstallMonster.961, Trojan.InstallMonster.978
50.00%
avast!
Win32:Dropper-gen [Drp], Win32:PUP-gen [PUP]
50.00%
Emsisoft Anti-Malware
Trojan.Agent.BFGT, Trojan.Generic.15225696, Trojan.Generic.11895248
50.00%
VIPRE Antivirus
Threat.4150696
33.33%
Norman
InstallMonstr.S, Trojan.Generic.15225696
33.33%
ESET NOD32
Win32/InstallMonstr.FL potentially unwanted application
33.33%
MicroWorld eScan
Trojan.Agent.BFGT
16.67%
nProtect
Trojan.Agent.BFGT
16.67%
Bitdefender
Trojan.Agent.BFGT
16.67%
Lavasoft Ad-Aware
Trojan.Agent.BFGT
16.67%
F-Secure
Trojan.Agent.BFGT
16.67%
G Data
Trojan.Agent.BFGT
16.67%
ESET NOD32
Win32/InstallMonstr.FL (variant)
16.67%
K7 AntiVirus
Unwanted-Program
16.67%
The domain b3xkpz5njeb4sc9.incomebox.ru has been seen to resolve to the following IP address.
File downloads found at URLs served by b3xkpz5njeb4sc9.incomebox.ru.
Related Domains
