The domain zghost.net registered by Starline Alliance LTD. was initially registered in October of 2014 through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Haarlem, Noord-Holland within Netherlands which resides on the RIPE Network Coordination Centre network.
Registrant:
Starline Alliance LTD.
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM
Server location:
Noord-Holland, Netherlands (NL)
Create date:
Thursday, October 23, 2014
Expires date:
Friday, October 23, 2015
Updated date:
Thursday, October 23, 2014
ASN:
AS62403 DISKGROUP Disk Group Ltd.,CZ
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.LTDIDDostoinstvo.X, PUP.TIMP.Bundler, PUP.TIMP.SAASMIKRO.Bundler (M), PUP.TIMP.LTDIDDostoinstvo.Bundler (M), PUP.TIMP.STROYBIZNESPROYEKT.Bundler (M), PUP.TIMP.LTDIDDos.Bundler (M), PUP.TIMP.STROYBIZ.Bundler (M), PUP.TIMP.SAASMIKR.Bundler (M), PUP.TIMP (M)
100.00%
ESET NOD32
Win32/bmMedia.DZ potentially unwanted application, Win32/bmMedia.EI potentially unwanted application
16.67%
avast!
Win32:Rootkit-gen [Rtk], Win32:Adware-CFV [PUP]
16.67%
VIPRE Antivirus
Threat.4150696, Threat.5064464
16.67%
Dr.Web
Trojan.Packed.29217
16.67%
AVG
Generic, Win32/Heim
16.67%
Emsisoft Anti-Malware
Gen:Variant.Graftor.163663, Adware.Agent.PNT
12.50%
Lavasoft Ad-Aware
Gen:Variant.Graftor.163663, Adware.Agent.PNT
12.50%
F-Secure
Gen:Variant.Graftor.163663, Adware.Agent.PNT
12.50%
Norman
Gen:Variant.Graftor.163663, Adware.Agent.PNT
12.50%
Bkav FE
HW32.Packed, W32.HfsAdware
12.50%
K7 AntiVirus
Unwanted-Program
12.50%
NANO AntiVirus
Trojan.Win32.BmMedia.ditjwt
12.50%
F-Prot
W32/A-fd59767e
12.50%
Agnitum Outpost
Riskware.Agent
12.50%
The domain zghost.net has been seen to resolve to the following IP address.
File downloads found at URLs served by zghost.net.
Subdomains
Related Domains