home

www.ffzadw.com

See PrivacyGuardian.org  (Proxy Registrant)

Domain Information

The domain www.ffzadw.com is registered by proxy through NAMESILO, LLC and was originally registered in November of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Frankfurt Am Main, Hessen within Germany which resides on the FDCservers.net network.
Registrar:
NAMESILO, LLC

Server location:
Hessen, Germany (DE)

Create date:
Saturday, November 1, 2014

Expires date:
Sunday, November 1, 2015

Updated date:
Saturday, November 1, 2014

ASN:
AS6461 ABOVENET - Abovenet Communications, Inc,US

Root domain:
ffzadw.com

Whois:
1 ffzadw.com record

Scanner detections:
Detections  (92% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.PluginUpdateSL.F, PUP.Softpulse.PluginUpdate.Bundler (M), PUP.Softpulse.PluginUp.Bundler (M)
100.00%

Dr.Web
Trojan.DownLoader11.36367
9.09%

AVG
Found Win32/DH{gRIxflCBB3lUTxVRgQkcU4ET}
9.09%

VIPRE Antivirus
Threat.4783235
9.09%

McAfee
SoftPulse.a
9.09%

Malwarebytes
PUP.Optional.DomaIQ
9.09%

K7 AntiVirus
Unwanted-Program
9.09%

F-Prot
W32/A-7a715aa1
9.09%

Norman
Malware
9.09%

Kaspersky
HEUR:Trojan.Win32.Generic
9.09%

Bitdefender
Gen:Variant.Application.Bundler.SoftPulse.3
9.09%

NANO AntiVirus
Trojan.Win32.Agent.dhzclw
9.09%

Lavasoft Ad-Aware
Gen:Variant.Application.Bundler.SoftPulse.3
9.09%

Comodo Security
Application.Win32.DomaIQ.FSX
9.09%

Sophos
SoftPulse
9.09%

The domain www.ffzadw.com has been seen to resolve to the following IP address.

50.7.158.186
November 4, 2014

File downloads found at URLs served by www.ffzadw.com.

1 / 68      (Adware)
http://www.ffzadw.com/file.php?geo=US&dv1=US_a208_pc_2014-11-02-23&clickid=1414984310  (setup.exe)

1 / 68      (Adware)
http://www.ffzadw.com/file.php?geo=MX&dv1=MX_a183_pc_2014-11-02-23&clickid=1414984787  (setup.exe)

1 / 68      (Adware)
http://www.ffzadw.com/file.php?geo=MX&dv1=MX_a183_pc_2014-11-02-23&clickid=1414984787  (setup.exe)

1 / 68      (Adware)
http://www.ffzadw.com/file.php?geo=MX&dv1=MX_a183_pc_2014-11-02-23&clickid=1414984553  (setup.exe)

1 / 68      (Adware)
http://www.ffzadw.com/file.php?geo=MX&dv1=MX_a183_pc_2014-11-02-22&clickid=1414982983  (setup.exe)

1 / 68      (Adware)
http://www.ffzadw.com/file.php?geo=CA&dv1=CA_a129_pc_2014-11-02-23&clickid=1414986252  (setup.exe)

1 / 68      (Adware)
http://www.ffzadw.com/file.php?geo=US&dv1=US_a208_pc_2014-11-02-23&clickid=1414986039  (setup.exe)

1 / 68      (Adware)
http://www.ffzadw.com/file.php?geo=MX&dv1=MX_a183_pc_2014-11-02-23&clickid=1414984294  (setup.exe)

1 / 68      (Adware)
http://www.ffzadw.com/file.php?geo=MX&dv1=MX_a183_pc_2014-11-02-23&clickid=1414984336  (setup.exe)

1 / 68      (Adware)
http://www.ffzadw.com/file.php?geo=MY&dv1=MY_a249_pc_2014-11-02-22&clickid=1414982892  (driver_updater.exe)

0 / 68
http://www.ffzadw.com/file.php?geo=DK&dv1=DK_a129_pc_2014-11-02-23&clickid=1414986899  (setup.exe)

20 / 68    (Adware)
http://www.ffzadw.com/file.php?geo=DK&dv1=DK_a129_pc_2014-11-02-23&clickid=1414986899  (setup.exe)

URL:
http://www.ffzadw.com/

Web server:
nginx (PHP/5.2.17p1)

Facebook:
Shares:  6

Statistics are for the previous month.

cdcxvi.com

cepbgt.com

cmmvqz.com

ctxxqp.com

feeuhk.com

yelwau.com

zapgfy.com

zbwhyb.com

zbwmkk.com

zdqynh.com

zdsucb.com

zefmjp.com

zgpedn.com

zhnxai.com

zinqtv.com

zixlvg.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.