download.cdn.jzip.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain download.cdn.jzip.com is registered by proxy through GODADDY.COM, LLC and was originally registered in November of 2000. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the nLayer Communications Internal/Backbone network.
Remove Malware from download.cdn.jzip.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
New York, United States (US)

Create date:
Thursday, November 02, 2000

Expires date:
Thursday, November 02, 2017

Updated date:
Wednesday, September 09, 2015

ASN:
AS4436 AS-GTT-4436 - nLayer Communications, Inc.,US

Root domain:

Google Safe Browsing:
malware,unwanted

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.BandooMedia.J, PUP.Optional.Installer.BandooMedia.T, PUP.Optional.Installer.T, PUP.Optional.Installer.Q, PUP.Installer.DiscordiaLimited.H, Win32.Generic.Bandoo.Installer.Meta, PUP.Bandoo.BandooMedia.Installer (M)
100.00%

Dr.Web
Adware.Bandoo.12, Adware.Bandoo.13, Adware.Bandoo.11, Adware.Bandoo.7
78.26%

ESET NOD32
Win32/Toolbar.SearchSuite (variant)
73.91%

Trend Micro House Call
TROJ_GEN.F47V0314, TROJ_GEN.F47V0401, TROJ_GEN.F47V0516, Suspicious_GEN.F47V0617, Suspicious_GEN.F47V0723, TROJ_APPINIT.BMH
52.17%

Fortinet FortiGate
Adware/Toolbar, Riskware/Toolbar_SearchSuite, W32/Toolbar.SEARCHSUITE, Riskware/Win64_SearchSuite, Riskware/SearchSuite
47.83%

McAfee
Artemis!587378581006, Artemis!0ED7CC860460, Generic PUP.y, Artemis!128DE21C54CE, Artemis!1309A19146A8
34.78%

McAfee Web Gateway
Artemis!587378581006, Artemis!0ED7CC860460, Generic PUP.y, Artemis!128DE21C54CE, Artemis!PUP
34.78%

Malwarebytes
PUP.Optional.Bandoo.A, PUP.Optional.SearchSuite
21.74%

Avira AntiVirus
ADWARE/Adware.Gen, Adware/SeaSuite.d.6
21.74%

Baidu Antivirus
Win32.Toolbar.SearchSuite, Adware.Win64.SearchSuite
21.74%

NANO AntiVirus
Trojan.Win32.Downware.crewao
17.39%

AVG
MalSign.Generic
17.39%

Antiy Labs AVL
AdWare/Win32.Bandoo
13.04%

Filseclab Twister
W32.Toolbar.SearchSuite.hdph
13.04%

Rising Antivirus
PE:Trojan.Dropper!6.1BE
13.04%

The domain download.cdn.jzip.com has been seen to resolve to the following 61 IP addresses.

February 11, 2016

February 11, 2016

a23-220-148-41.deploy.static.akamaitechnologies.com
February 7, 2016

a23-220-148-18.deploy.static.akamaitechnologies.com
February 7, 2016

a23-15-7-131.deploy.static.akamaitechnologies.com
January 30, 2016

a96-6-113-226.deploy.akamaitechnologies.com
May 5, 2015

a96-6-113-161.deploy.akamaitechnologies.com
May 5, 2015

a173-223-204-90.deploy.static.akamaitechnologies.com
May 4, 2015

a173-223-204-83.deploy.static.akamaitechnologies.com
May 4, 2015

a173-223-205-114.deploy.static.akamaitechnologies.com
May 4, 2015

a173-223-205-40.deploy.static.akamaitechnologies.com
May 4, 2015

a184-26-44-106.deploy.static.akamaitechnologies.com
May 4, 2015

a184-26-44-98.deploy.static.akamaitechnologies.com
May 4, 2015

a184-25-157-80.deploy.static.akamaitechnologies.com
May 3, 2015

a184-25-157-82.deploy.static.akamaitechnologies.com
May 3, 2015

a23-67-243-56.deploy.static.akamaitechnologies.com
May 2, 2015

a184-29-105-177.deploy.static.akamaitechnologies.com
April 14, 2015

a184-50-229-153.deploy.static.akamaitechnologies.com
September 5, 2014

a184-50-229-167.deploy.static.akamaitechnologies.com
September 5, 2014

ip-69-31-29-191.nlayer.net
September 5, 2014

ip-69-31-29-199.nlayer.net
September 5, 2014

a23-77-208-176.deploy.static.akamaitechnologies.com
September 3, 2014

a23-77-208-160.deploy.static.akamaitechnologies.com
September 3, 2014

a23-62-6-40.deploy.static.akamaitechnologies.com
September 2, 2014

a23-62-6-43.deploy.static.akamaitechnologies.com
September 2, 2014

a184-29-106-49.deploy.static.akamaitechnologies.com
September 2, 2014

a184-29-106-57.deploy.static.akamaitechnologies.com
September 2, 2014

a23-62-7-64.deploy.static.akamaitechnologies.com
September 2, 2014

a23-62-7-66.deploy.static.akamaitechnologies.com
September 2, 2014

a23-0-160-40.deploy.static.akamaitechnologies.com
August 24, 2014

 
Showing 30 of 61 IP Addresses

File downloads found at URLs served by download.cdn.jzip.com.

1 / 68      (PUP)

5 / 68      (PUP)

1 / 68      (PUP)
http://download.cdn.jzip.com/.../jZipV1c.exe  (e8be6456222349d31cff450843bf7ad6)

1 / 68      (PUP)

13 / 68    (PUP)
http://download.cdn.jzip.com/cdn/r/.../jZipSetup.exe  (4724774ce9d301eab888636f43108614)

5 / 68      (PUP)
http://download.cdn.jzip.com/cdn/r/.../jZipSetup.exe  (7cd0ff227efc95de6ceae4d5603b60dd)

11 / 68    (PUP)

4 / 68      (PUP)

3 / 68      (PUP)
http://download.cdn.jzip.com/.../jZipV1.exe  (0d50775f62220588f62ea73fd0b42742)

4 / 68      (PUP)

7 / 68      (PUP)

3 / 68      (PUP)

3 / 68      (PUP)

3 / 68      (PUP)

10 / 68    (PUP)

15 / 68    (PUP)

5 / 68      (PUP)

11 / 68    (PUP)
http://download.cdn.jzip.com/r/cdn/.../jZipV1.exe  (caa3c2c28572bba7887596dd36681c2d)

10 / 68    (PUP)
http://download.cdn.jzip.com/r/cdn/.../jZipV1.exe  (00d1df4020592527d3c427e4771d63f4)

3 / 68      (PUP)

17 / 68    (PUP)

17 / 68    (PUP)

5 / 68      (PUP)

10 / 68    (PUP)
http://download.cdn.jzip.com/r/cdn/.../jZipV1.exe  (dc72339cfe63884840f05e32436e33b6)

2 / 68      (PUP)

7 / 68      (PUP)

5 / 68      (PUP)

17 / 68    (PUP)

17 / 68    (PUP)

7 / 68      (PUP)

 
Latest 30 of 186 download URLs

The following 234 files have been seen to comunicate with download.cdn.jzip.com in live environments.

 
Latest 20 of 249 files

URL:
http://download.cdn.jzip.com/

Web server:
Apache

Remove Malware from download.cdn.jzip.com - Powered by Reason Core Security