» sub.chillaid.info
Overview
Analysis
IPs Addresses (1)
Downloads (1)
Network (1)
Website Detail

sub.chillaid.info

Sergi Avaliani

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the Bodis, LLC network.

Registrant:

Sergi Avaliani

Registrar:

InterNetworX Ltd. & Co. KG

Server location:

New York, United States (US)

ASN:

AS53665 BODIS-1 - Bodis, LLC,US

Root domain:

chillaid.info

Whois:

1 chillaid.info record

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Malwarebytes

PUP.Optional.Somoto

100.00%

VIPRE Antivirus

BetterInstaller

100.00%

avast!

Win32:Somoto-P [PUP]

100.00%

Dr.Web

Trojan.Packed.26824

100.00%

Avira AntiVirus

APPL/Somoto.hzis

100.00%

Sophos

Somoto BetterInstaller

100.00%

AVG

Generic

100.00%

Reason Heuristics

PUP.Installer.SITEONSPOT.F

100.00%

The domain sub.chillaid.info has been seen to resolve to the following IP address.

199.59.243.120

February 28, 2016

File downloads found at URLs served by sub.chillaid.info.

8 / 68 (Adware)

http://sub.chillaid.info/installers/bi_downloader/.../setup.exe (5ec8c43ab0526a1690f9342416658373)

The following file have been seen to comunicate with sub.chillaid.info in live environments.

TCP » 199.59.243.120:80

qvtp.crx

URL:

http://sub.chillaid.info/

Web server:

Microsoft-IIS/7.5 (ASP.NET)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.