dl.intellidownload.com

chen wenjie

Domain Information

The domain dl.intellidownload.com registered by chen wenjie was initially registered in July of 2013 through THREADSUPPLY.COM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Beaumaris, Victoria within Australia which resides on the Asia Pacific Network Information Centre network.
Registrar:
GODADDY.COM, LLC

Server location:
Victoria, Australia (AU)

Create date:
Monday, July 08, 2013

Expires date:
Wednesday, July 08, 2015

Updated date:
Wednesday, July 02, 2014

ASN:
AS133618 TRELLIAN-AS-AP Trellian Pty. Limited,AU

Scanner detections:
Detections  (87% detected)

Scan engine
Details
Detections

ESET NOD32
Win32/BundleInstaller potentially unwanted application, Win32/BundleInstaller.A potentially unwanted application
82.86%

Dr.Web
Threat.Undefined, Adware.Downware.351, infected with Trojan.Crossrider.33276, infected with Trojan.Siggen6.33552, BackDoor.BlackEnergy.42, Detection.Undefined
65.71%

McAfee
Generic.tfr!cn, Generic.dx!F141D77DB397, Generic.dx!9BB1DE9E0F82, RDN/Generic PUP.x!bc, Trojan.RDN/Generic.tfr!q, Trojan.Artemis!CE73168241A6, Program.Artemis!910B46A23F84, Generic Downloader.x!gkl
65.71%

VIPRE Antivirus
Threat.4150696, Trojan.Win32.Generic
51.43%

AVG
Could be an adware MultiBundle
45.71%

avast!
Downloader-XR [PUP], NSIS:Downloader-XR [PUP], Adware-DZ [PUP], Downloader-XZ [PUP], NSIS:Adware-DZ [PUP]
37.14%

Sophos
EasyDownloads, Generic PUA PD, Generic PUA MD, Generic PUA JH, Mal/Generic-S, PUA 'EasyDownloads' (of type Adware), Generic PUA HF (PUA)
37.14%

Fortinet FortiGate
Riskware/BundleInstaller, W32/BundleInstaller, W32/BundleInstaller.GKL!tr
37.14%

Kaspersky
not-a-virus:Downloader.Win32.Agent
37.14%

Norman
Obfuscated_VPE.AVK, Obfuscated_VPE.AJC, Obfuscated_VPE.RU, Obfuscated_VPE.BSS, Obfuscated_VPE.BDS, W32/Obfuscated_VPE.RU.dropper
34.29%

Trend Micro House Call
HV_BUNDLEINSTALLER_CI05282A.RDXN, HV_OBFUSCATED_CB242AF3.TOMC, TROJ_GEN.R0C1C0EH814, TROJ_GEN.R047C0PAD15, HV_OBFUSCATED_CI052BEF.RDXN
34.29%

NANO AntiVirus
Riskware.Nsis.Babylon.cwhyhv, Trojan.Win32.Downware.cfaght, Trojan.Nsis.Downware.xiktv, Riskware.Nsis.Babylon.cvvuwk, Riskware.Nsis.Downloader.cvvuxw
34.29%

SUPERAntiSpyware
Trojan.Agent/Gen-Dropper, Trojan.Agent/Gen-Downloader
34.29%

McAfee Web Gateway
Heuristic.BehavesLike.Win32.Suspicious-PKR.G, BehavesLike.Win32.Downloader.cc, BehavesLike.Win32.Trojan.cc, BehavesLike.Win32.AdwareOkit.dc
34.29%

G Data
NSIS.Application.Fetcher, Win32.Trojan.Agent.MAG5TG, NSIS:Malware-gen
34.29%

The domain dl.intellidownload.com has been seen to resolve to the following 3 IP addresses.

lb-182-243.above.com
May 5, 2015

August 1, 2014

January 17, 2014

File downloads found at URLs served by dl.intellidownload.com.

3 / 68      (PUP)

3 / 68      (PUP)

2 / 68      (PUP)

4 / 68      (PUP)

16 / 68    (PUP)

17 / 68    (PUP)

5 / 68      (PUP)

5 / 68      (PUP)

3 / 68      (PUP)

7 / 68      (PUP)

20 / 68    (PUP)

 
Latest 30 of 39 download URLs

The following 9 files have been seen to comunicate with dl.intellidownload.com in live environments.

URL:
http://dl.intellidownload.com/

Google Analytics:
UA-48689684

Title:
“intellidownload.com”

Description:
“intellidownload.com is your first and best source for information about intellidownload . Here you will also find topics relating to issues of general interest. We hope you find what you are looking for!”

Web server:
Apache (PHP/5.4.39-0+deb7u2)

30 of 618 related domains