install.podoweb.net

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain install.podoweb.net is registered by proxy through GODADDY.COM, LLC and was originally registered in February of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Diego, California within the United States which resides on the Level 3 Communications, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
California, United States (US)

Create date:
Wednesday, February 12, 2014

Expires date:
Sunday, February 12, 2017

Updated date:
Monday, April 11, 2016

ASN:
AS54761 ARIN-SAMBREEL-SVCS - Sambreel Services, LLC,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.PodoWeb.S, PUP.Yontoo.SilverSa.Installer (M)
100.00%

Lavasoft Ad-Aware
Adware.SwiftBrowse.CO
50.00%

Emsisoft Anti-Malware
Adware.SwiftBrowse.CO
50.00%

ESET NOD32
Win64/BrowseFox.AQ potentially unwanted application
50.00%

MicroWorld eScan
Adware.SwiftBrowse.CO
50.00%

nProtect
Adware.SwiftBrowse.CO
50.00%

Bitdefender
Adware.SwiftBrowse.CO
50.00%

F-Secure
Adware.SwiftBrowse.CO
50.00%

G Data
Adware.SwiftBrowse.CO
50.00%

AhnLab V3 Security
Win-PUP/BrowseFox.Gen
50.00%

IKARUS anti.virus
PUA.MSIL.BrowseFox
50.00%

AVG
Generic
50.00%

The domain install.podoweb.net has been seen to resolve to the following IP address.

November 29, 2014

File downloads found at URLs served by install.podoweb.net.

1 / 68      (PUP)
http://install.podoweb.net/ud  (podowebuninstaller.exe)

12 / 68    (Adware)
http://install.podoweb.net/ud  (podowebuninstaller.exe)

URL:
http://install.podoweb.net/

SSL certificate subject:
CN=*.podoweb.net, OU=Domain Control Validated - RapidSSL(R), OU=See www.rapidssl.com/resources/cps (c)15, OU=GT32665181

SSL certificate issuer:
CN=RapidSSL SHA256 CA - G3, O=GeoTrust Inc., C=US

Web server:
Microsoft-IIS/7.5 (ASP.NET)