» zik.co.il
Overview
Analysis
IPs Addresses (1)
Downloads (4)
Network (1)

zik.co.il

Domain Information

Server location:

Utah, United States (US)

ASN:

AS46606 UNIFIEDLAYER-AS-1 - Unified Layer, US

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.Installer.Babylon, PUP.Babylon.BabylonSoftware.Installer (M), PUP.Babylon.BabylonS.Installer (M), Threat.Win.Reputation.IMP

100.00%

Dr.Web

Adware.Searcher.2766, Adware.Babylon.36

50.00%

Agnitum Outpost

PUA.Toolbar.Babylon

25.00%

Trend Micro House Call

Suspicious_GEN.F47V0119

25.00%

ESET NOD32

Win32/Toolbar.Babylon.AD (variant)

25.00%

IKARUS anti.virus

PUA.Toolbar.Babylon

25.00%

NANO AntiVirus

Riskware.Win32.Searcher.dotdbm

25.00%

K7 AntiVirus

Trojan

25.00%

The domain zik.co.il has been seen to resolve to the following IP address.

198.57.151.25

198-57-151-25.unifiedlayer.com

June 5, 2016

File downloads found at URLs served by zik.co.il.

1 / 68 (Malware)

http://zik.co.il/b9lreq (babylon10_setup_ns.exe)

8 / 68 (Adware)

http://zik.co.il/q (babylon10_setup_ns.exe)

2 / 68 (Adware)

http://zik.co.il/b9lreq (babylon10_setup_ns.exe)

1 / 68 (Adware)

http://zik.co.il//b9lreq (babylon10_setup_ns.exe)

The following file have been seen to comunicate with zik.co.il in live environments.

TCP » 198.57.151.25:80

UCBrowser.exe (UC Browser by UCWeb)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.