software.dowload-wiz.com

WHOISGUARD, INC.  (Proxy Registrant)

Domain Information

The domain software.dowload-wiz.com is registered by proxy through ENOM, INC. and was originally registered in June of 2015. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the Digital Ocean, Inc. network.
Registrar:
ENOM, INC.

Server location:
New York, United States (US)

Create date:
Monday, June 1, 2015

Expires date:
Thursday, June 1, 2017

Updated date:
Monday, May 2, 2016

ASN:
AS393406 DIGITALOCEAN-ASN-NY3 - Digital Ocean, Inc.,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Vittalia.InstallAssistant.Installer (M), PUP.Vittalia.InstallA.Installer (M)
100.00%

Dr.Web
Adware.Downware.11360
44.44%

ESET NOD32
Win32/DownloadAssistant.A potentially unwanted application
44.44%

Lavasoft Ad-Aware
Gen:Variant.Graftor.185458
44.44%

F-Secure
Adware.Eorezo.BZ
44.44%

Bkav FE
W32.HfsAdware
44.44%

MicroWorld eScan
Gen:Trojan.Heur.JP.7u0@auFSn6mi
44.44%

Malwarebytes
PUP.Optional.DownloadAssistant
44.44%

NANO AntiVirus
Trojan.Win32.Vittalia.dqfrig
44.44%

Avira AntiVirus
PUA/DownloadAssistant.Gen4
44.44%

AhnLab V3 Security
PUP/Win32.Downware
44.44%

AVG
Generic
44.44%

avast!
Xpaj-gen
44.44%

McAfee
Trojan.Artemis!7DBA5489C35D
44.44%

Zillya! Antivirus
Trojan.FakeAV.Win32.314885
44.44%

The domain software.dowload-wiz.com has been seen to resolve to the following 2 IP addresses.

fd-06-do-e-ny-2.pingdatanetwork.com
February 27, 2016

useastone.pingdatanetwork.com
July 7, 2015

File downloads found at URLs served by software.dowload-wiz.com.

The following 5 files have been seen to comunicate with software.dowload-wiz.com in live environments.

URL:
http://software.dowload-wiz.com/

Title:
“Welcome to nginx!”

Web server:
nginx/1.4.6 (Ubuntu)

30 of 35 related domains