cdnus.wawosodadol.com

Privacy Protection Service INC d/b/a PrivacyProtect.org  (Proxy Registrant)

Domain Information

The domain cdnus.wawosodadol.com is registered by proxy through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM and was originally registered in November of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Frankfurt Am Main, Hessen within Germany which resides on the Leaseweb USA, Inc. network.
Remove Malware from cdnus.wawosodadol.com - Powered by Reason Core Security
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM

Server location:
Hessen, Germany (DE)

Create date:
Thursday, November 21, 2013

Expires date:
Friday, November 21, 2014

Updated date:
Tuesday, March 25, 2014

ASN:
AS30633 LEASEWEB-US - Leaseweb USA, Inc.

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.BundleInstaller.A
100.00%

Dr.Web
Trojan.Packed.24524
100.00%

Vba32 AntiVirus
Downware.InstallCore
100.00%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
100.00%

Reason Heuristics
PUP.WorldSetup.H, PUP.WorldSetup.X
100.00%

Norman
InstallCore.WCDD
50.00%

ESET NOD32
Win32/InstallCore.IO (variant)
50.00%

Qihoo 360 Security
HEUR/Malware.QVM20.Gen
50.00%

VIPRE Antivirus
InstallCore
50.00%

K7 AntiVirus
Unwanted-Program
50.00%

K7 Gateway Antivirus
Unwanted-Program
50.00%

Comodo Security
Application.Win32.Installcore.BB
50.00%

Avira AntiVirus
ADWARE/InstallCore.Gen7
50.00%

Sophos
Install Core
50.00%

G Data
Win32.Application.InstallCore
50.00%

The domain cdnus.wawosodadol.com has been seen to resolve to the following 4 IP addresses.

hosted-by.leaseweb.com
May 1, 2014

50.115.122.45.static.westdc.net
May 1, 2014

hosted-by.leaseweb.com
May 1, 2014

May 1, 2014

File downloads found at URLs served by cdnus.wawosodadol.com.

14 / 68    (Adware)

8 / 68      (Adware)

The following 13 files have been seen to comunicate with cdnus.wawosodadol.com in live environments.

URL:
http://cdnus.wawosodadol.com/

Web server:
nginx/1.4.7

Remove Malware from cdnus.wawosodadol.com - Powered by Reason Core Security