wwc.dindownload.com

WHOISGUARD, INC.  (Proxy Registrant)

Domain Information

The domain wwc.dindownload.com is registered by proxy through ENOM, INC. and was originally registered in September of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Portland, Oregon within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.
Registrar:
ENOM, INC.

Server location:
Oregon, United States (US)

Create date:
Monday, September 30, 2013

Expires date:
Friday, September 30, 2016

Updated date:
Monday, August 31, 2015

Root domain:

Scanner detections:
Detections  (83% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.WorldSetup.U, PUP.installCore.WorldSetup.Installer (M), PUP.installCore.WorldSetup (M), PUP.installCore (M)
80.00%

Rising Antivirus
PE:Malware.AntiWare!1.5593
20.00%

avast!
Win32:SMSSend-CCS [PUP]
20.00%

herdProtect (fuzzy)
a variant of da889fd95df19dca28c564882b37817ca9ef6c1d
20.00%

Sophos
Install Core
20.00%

Comodo Security
Application.Win32.Installcore.WS
20.00%

Dr.Web
Trojan.Packed.24524
20.00%

VIPRE Antivirus
Trojan.Win32.Generic
20.00%

ESET NOD32
Win32/Injected (variant)
20.00%

AVG
Generic5
20.00%

Malwarebytes
PUP.Optional.Bundle
20.00%

K7 AntiVirus
Unwanted-Program
20.00%

Agnitum Outpost
Trojan.Injected
20.00%

Avira AntiVirus
ADWARE/InstallCore.Gen7
20.00%

G Data
Win32.Application.InstallCore
20.00%

The domain wwc.dindownload.com has been seen to resolve to the following IP address.

ec2-54-201-130-102.us-west-2.compute.amazonaws.com
March 20, 2014

File downloads found at URLs served by wwc.dindownload.com.