gerenciador.nznja.com.br

Financeiro GrupoNZN

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Server location:
Virginia, United States (US)

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
(M), PUP.Optional.DsNET.Atube.Installer.Meta, PUP.NoZebraNetworka.i, PUP.NoZebraNetworka.f, PUP.NoZebraNetworka.p, PUP.NoZebraNetworka.EE, PUP.installCore.NoZebraNetworka (M), PUP.installCore.NoZebraN (M)
100.00%

ESET NOD32
Win32/Bundled.Toolbar.Ask (variant), Win32/InstallCore.PL (variant)
63.64%

Malwarebytes
PUP.Optional.Installcore
59.09%

K7 AntiVirus
Unwanted-Program
59.09%

VIPRE Antivirus
Trojan.Win32.Generic, InstallCore
59.09%

AVG
Generic
59.09%

F-Prot
W32/InstallCore.AC.gen
54.55%

Baidu Antivirus
Adware.Win32.InstallCore
54.55%

McAfee
Artemis!36C792CD955B, Artemis!ACA28E362058, Artemis!8E26972909D7, Artemis!0BFBA468420E, Artemis!9D643D9D3462
45.45%

herdProtect (fuzzy)
a variant of 733e67e75bfc1ec57a56e79c4439c16bebb2828d, a variant of 391088a0216a4d370530517f2669087318a1b0d1, a variant of 96dee2b736096f4ddab834339fa75db977840aa1
31.82%

Rising Antivirus
PE:Trojan.Win32.Generic.174A015C!390725980, PE:Trojan.Win32.Generic.17768D74!393645428
13.64%

Avira AntiVirus
Adware/InstallCore.ZR, ADWARE/InstallCore.Gen9
9.09%

Trend Micro House Call
Suspicious_GEN.F47V0927
4.55%

Comodo Security
ApplicUnwnt
4.55%

Dr.Web
Trojan.InstallCore.11
4.55%

The domain gerenciador.nznja.com.br has been seen to resolve to the following 16 IP addresses.

ec2-52-200-144-193.compute-1.amazonaws.com
May 16, 2016

ec2-52-87-143-249.compute-1.amazonaws.com
April 17, 2016

ec2-54-86-116-226.compute-1.amazonaws.com
April 14, 2016

ec2-52-7-52-225.compute-1.amazonaws.com
April 5, 2016

ec2-52-2-172-241.compute-1.amazonaws.com
April 5, 2016

ec2-52-200-69-248.compute-1.amazonaws.com
April 4, 2016

ec2-54-165-17-118.compute-1.amazonaws.com
April 4, 2016

ec2-52-72-175-12.compute-1.amazonaws.com
February 22, 2016

ec2-54-86-244-182.compute-1.amazonaws.com
January 28, 2016

ec2-54-88-180-217.compute-1.amazonaws.com
January 28, 2016

ec2-54-173-186-158.compute-1.amazonaws.com
May 4, 2015

ec2-52-0-8-14.compute-1.amazonaws.com
May 4, 2015

ec2-54-210-182-155.compute-1.amazonaws.com
October 9, 2014

ec2-54-165-220-75.compute-1.amazonaws.com
October 9, 2014

ec2-54-86-65-100.compute-1.amazonaws.com
September 30, 2014

ec2-107-21-40-120.compute-1.amazonaws.com
September 30, 2014

File downloads found at URLs served by gerenciador.nznja.com.br.

8 / 68      (Adware)

10 / 68    (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

9 / 68      (Adware)

1 / 68      (Adware)

15 / 68    (Adware)

1 / 68      (Adware)

8 / 68      (Adware)

10 / 68    (Adware)

10 / 68    (Adware)

URL:
http://gerenciador.nznja.com.br/

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Microsoft-HTTPAPI/2.0