dw.cbsi.com

CBS Interactive Inc.

Domain Information

The domain dw.cbsi.com registered by CBS Interactive Inc. was initially registered in July of 1993 through MARKMONITOR INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the CBS Interactive Inc. network.
Registrar:
MARKMONITOR INC.

Server location:
New York, United States (US)

Create date:
Tuesday, July 20, 1993

Expires date:
Sunday, July 19, 2015

Updated date:
Monday, October 10, 2011

ASN:
AS6623 CBSI-1 - CBS Interactive Inc.

Root domain:

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.WebInstall.U, PUP.Installer.WebInstall.W, PUP.Installer.WebInstall.Y, PUP.Installer.WebInstall.Q, PUP.Installer.ProinstallApplicationsSRL, PUP.Installer.WebInstall.P, PUP.Installer.WebInstall.c, PUP.Installer.WebInstall.?, PUP.Installer.CBS, PUP.Optional.Installer, PUP.Bundler.CBS, PUP.Installer.Spigot
100.00%

Dr.Web
Adware.Downware.1159, Adware.Downware.9446, Adware.Downware.8742, Threat.Undefined
95.83%

VIPRE Antivirus
Threat.4782786, Threat.5066599, Threat.4866784, WebInstall
91.67%

avast!
Adware-BGE [PUP], PUP-gen [PUP], InstMonetizer-BB [PUP], Adware-RW [PUP], Win32:Adware-BGE [PUP]
81.25%

NANO AntiVirus
Riskware.Nsis.Downware.dlgjls, Trojan.Nsis.Downloader.dnpqiz, Trojan.Nsis.Downloader.doczdj
77.08%

ESET NOD32
Win32/DownloadAdmin.G potentially unwanted application, Win32/InstallMonetizer.AZ potentially unwanted application, Win32/Spigot.A potentially unwanted application
75.00%

Agnitum Outpost
PUA.Downware
72.92%

K7 Gateway Antivirus
Trojan , Dialer , DoS-Trojan
64.58%

K7 AntiVirus
Trojan , Dialer
33.33%

Avira AntiVirus
ADWARE/Adware.Gen, APPL/Downloader.Gen, Adware/AgentCV.A.9407, TR/Trash.Gen, APPL/Widgi.opqa
25.00%

AVG
Generic, Downloader
12.50%

F-Secure
Adware.BrowseFox.AG, Adware.Eorezo.CD, Riskware.Gen:Variant.Application.Graftor
6.25%

McAfee Web Gateway
BehavesLike.Win32.Downloader.bc, BehavesLike.Win32.AdwareSweet.bc, BehavesLike.Win32.Suspicious.bc
6.25%

Antiy Labs AVL
Trojan[Packed]/Win32.Katusha
6.25%

Rising Antivirus
NS:PUF.SilenceInstaller!1.9DDF
6.25%

The domain dw.cbsi.com has been seen to resolve to the following 2 IP addresses.

phx1-dw-cbsi-xw-lb.cnet.com
February 2, 2014

phx2-dw-cbsi-xw-lb.cnet.com
December 18, 2013

File downloads found at URLs served by dw.cbsi.com.

 
Latest 30 of 205 download URLs

The following 21 files have been seen to comunicate with dw.cbsi.com in live environments.

 
Latest 20 of 23 files

URL:
http://dw.cbsi.com/

SSL certificate subject:
CN=*.cbsi.com, OU=Admin, O=CBS Interactive Inc., L=San Francisco, S=California, C=US

SSL certificate issuer:
CN=DigiCert High Assurance CA-3, OU=www.digicert.com, O=DigiCert Inc, C=US

Web server:
Apache/2.4.3