gfs.ezdownloadpro.info

Rafael Leviev

Domain Information

Currently this domain has been known to host various forms of malware. The hosted servers are located in Munich, Bayern within Germany which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Rafael Leviev who is located in Shfela, Israel.
Registrar:
1API GmbH

Server location:
Bayern, Germany (DE)

ASN:
AS61969 TEAMINTERNET-AS Team Internet AG,DE

Root domain:

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP
100.00%

McAfee
Program.MultiPlug-FWG
25.00%

Emsisoft Anti-Malware
Gen:Variant.Adware.Graftor.176907, Gen:Variant.Adware.Mikey.8516
25.00%

Lavasoft Ad-Aware
Gen:Variant.Adware.Graftor.176907, Gen:Variant.Adware.Mikey.8516
25.00%

ESET NOD32
Win32/Adware.MultiPlug.FC application, Win32/Adware.MultiPlug.FK application
25.00%

F-Secure
Gen:Variant.Adware.Graftor, Gen:Variant.Adware.Mikey
25.00%

Sophos
PUA 'MultiPlug' (of type Adware)
25.00%

MicroWorld eScan
Gen:Variant.Adware.Graftor.176907, Gen:Variant.Adware.Mikey.8516
25.00%

Malwarebytes
PUP.Optional.Unizeto
25.00%

K7 AntiVirus
Unwanted-Program
25.00%

F-Prot
W32/MultiPlug.H.gen
25.00%

Bitdefender
Gen:Variant.Adware.Graftor.176907, Gen:Variant.Adware.Mikey.8516
25.00%

NANO AntiVirus
Riskware.Win32.MultiPlug.dooqpb, Riskware.Win32.MultiPlug.domoua
25.00%

Comodo Security
Application.Win32.AdWare.MultiPlug.VA
25.00%

Dr.Web
Trojan.DownLoader12.36250, Trojan.WebPick.5334
25.00%

The domain gfs.ezdownloadpro.info has been seen to resolve to the following 2 IP addresses.

June 25, 2016

February 25, 2016

File downloads found at URLs served by gfs.ezdownloadpro.info.

URL:
http://gfs.ezdownloadpro.info/

Title:
“ezdownloadpro.info”

Web server:
nginx