download.download-new.com

China Capital Investment Limited

Domain Information

The domain download.download-new.com registered by China Capital Investment Limited was initially registered in April of 2015 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
ZIGZAGNAMES.COM LLC

Server location:
Arizona, United States (US)

Create date:
Tuesday, April 14, 2015

Expires date:
Friday, April 14, 2017

Updated date:
Tuesday, March 15, 2016

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC

Root domain:

Scanner detections:
Detections  (94% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.OutBrowse.G, PUP.Installer.QuickDownloader.M, PUP.Outbrowse.Bundler (M), PUP.Adlogica.QuickDow.Bundler (M), PUP.Adknowledge.PremiumI.Bundler (M), PUP.Adknowledge.TINYINST.Bundler (M), PUP.Adlogica.FastDown.Bundler (M), PUP.Adknowledge.INSTALLD.Installer (M), PUP.Adknowledge.PremiumI.Installer (M), PUP.Outbrowse (M), PUP.Adlogica (M), PUP.Adknowledge (M), PUP.installCore (M)
93.62%

ESET NOD32
Win32/InstallCore.EL potentially unwanted application, Win32/InstallCore.BY potentially unwanted application, Win32/Sality.NBA virus
17.02%

avast!
Win32:Malware-gen, Win32:OutBrowse-CH [PUP]
12.77%

Microsoft Security Essentials
Threat.Undefined, SoftwareBundler:Win32/OutBrowse
10.64%

Dr.Web
Adware.Downware.1664, Adware.InstallCore.133
8.51%

VIPRE Antivirus
OutBrowse, InstallCore, Threat.4786018
6.38%

Malwarebytes
PUP.Optional.OutBrowse, PUP.Optional.Downloadster
4.26%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
4.26%

ESET NOD32
Win32/OutBrowse (variant), Win32/Toolbar.MyWebSearch (variant)
4.26%

Bkav FE
W32.Clodcb3.Trojan
2.13%

McAfee
Artemis!A15AAD90701F
2.13%

K7 AntiVirus
Unwanted-Program
2.13%

K7 Gateway Antivirus
Unwanted-Program
2.13%

Trend Micro House Call
TROJ_GEN.F47V1204
2.13%

Kaspersky
not-a-virus:Downloader.NSIS.OutBrowse
2.13%

The domain download.download-new.com has been seen to resolve to the following 15 IP addresses.

192.230.92.93.ip.incapdns.net
August 8, 2016

199.83.132.93.ip.incapdns.net
June 26, 2016

192.230.66.93.ip.incapdns.net
June 22, 2016

April 6, 2016

March 2, 2016

May 28, 2015

May 3, 2015

cf-190-93-252-129.cloudflare.com
October 9, 2014

cf-190-93-253-129.cloudflare.com
October 9, 2014

ip-184-168-221-65.ip.secureserver.net
April 14, 2014

January 17, 2014

January 17, 2014

January 17, 2014

January 17, 2014

(CloudFlare)
January 17, 2014

File downloads found at URLs served by download.download-new.com.

 
Latest 30 of 219 download URLs

The following 9 files have been seen to comunicate with download.download-new.com in live environments.

URL:
http://download.download-new.com/

Web server:
nginx/1.8.1