y9807akgtzcrolb.nidetafzy.ru
Private Person (Proxy Registrant)
Domain Information
The domain y9807akgtzcrolb.nidetafzy.ru is registered by proxy through REGRU-RU and was originally registered in September of 2015. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Amsterdam, Noord-Holland within Netherlands which resides on the Latin American and Caribbean IP address Regional Registry network.
Registrant:
Private Person
Server location:
Noord-Holland, Netherlands (NL)
Create date:
Wednesday, September 30, 2015
Expires date:
Friday, September 30, 2016
ASN:
AS59711 FORTUNIX-AS Fortunix Networks L.P.,GB
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.ZAXAR.Installer (M), PUP.Amonitize.Daemon.Installer (M)
100.00%
SUPERAntiSpyware
Trojan.Agent/Gen-KD
33.33%
ESET NOD32
Win32/ZaxarGames.I potentially unwanted application
33.33%
avast!
Win32:Adware-gen [Adw]
33.33%
Dr.Web
Adware.Zaxar.22
33.33%
McAfee
Artemis!734A9C8B4771
33.33%
Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
33.33%
Qihoo 360 Security
HEUR/QVM42.1.Malware.Gen
33.33%
The domain y9807akgtzcrolb.nidetafzy.ru has been seen to resolve to the following IP address.
File downloads found at URLs served by y9807akgtzcrolb.nidetafzy.ru.
URL:
http://y9807akgtzcrolb.nidetafzy.ru/
Web server:
nginx/1.4.2 (PHP/5.4.17)
Related Domains
