esd.nzs.com.br

Financeiro GrupoNZN

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Remove Malware from esd.nzs.com.br - Powered by Reason Core Security
Server location:
Massachusetts, United States (US)

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.,US

Root domain:

Scanner detections:
Detections  (90% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Binstall.i, PUP.Binstall.CC, PUP.Binstall.c, PUP.Binstall.a, PUP.Binstall.Y, PUP.Binstall.AA, PUP.ExtendedSetup.b, PUP.ExtendedSetup.W, PUP.installCore.Binstall (M), PUP.installCore.ExtendedSetup (M), PUP.installCore.ISBRInstaller (M)
97.67%

VIPRE Antivirus
InstallCore.b, Trojan.Win32.Generic, Adware.InstallCore, Threat.4150696
55.81%

Sophos
Install Core Click run software, PUA 'Install Core Click run software'
53.49%

McAfee
Artemis!09FF2A4BE69E, Artemis!1BEE43351615, Artemis!B4A1A20910FE, Artemis!6D3E7AFEAE6D, Artemis!762AD94CACD1, CryptInno, Artemis!721FBF47CB5A, Artemis!EFA1ADB52FEF, CryptInno!7F8089F2B280, Artemis!C9E5EC011FD1, Artemis!9569364FA840, Artemis!B6945083DAE2
51.16%

Dr.Web
Trojan.Packed.25266, Adware.InstallCore.354, Trojan.Packed.24524, Trojan.InstallCore.7
51.16%

McAfee Web Gateway
Artemis!09FF2A4BE69E, Artemis!1BEE43351615, Artemis!B4A1A20910FE, Artemis!6D3E7AFEAE6D, Artemis!762AD94CACD1, CryptInno
51.16%

ESET NOD32
Win32/InstallCore.NZ (variant), Win32/InstallCore.OG (variant), Win32/InstallCore.ND (variant), Win32/InstallCore.LM (variant)
51.16%

Malwarebytes
PUP.Optional.Installcore, PUP.Optional.InstallCore, PUP.Optional.InstallCore.A, PUP.Optional.ExtendedSetup
48.84%

Trend Micro House Call
TROJ_GEN.F47V0424, TROJ_GEN.F47V0515, TROJ_GEN.F47V0429, TROJ_GEN.F47V0521, Suspicious_GEN.F47V0619, TROJ_GEN.F47V0403, TROJ_GEN.F47V0401
46.51%

K7 AntiVirus
Unwanted-Program
46.51%

Fortinet FortiGate
Riskware/InstallCore
44.19%

Avira AntiVirus
Adware/InstallCore.OG, Adware/InstallCore.NZ, Adware/InstallCore.aerc, Adware/InstallCore.NZ.1, ADWARE/InstallCore.Gen, Adware/InstallCore.A.166
44.19%

Qihoo 360 Security
Malware.QVM06.Gen, Win32/Virus.Adware.fa3, Win32/Virus.Adware.faa, Win32/Virus.Adware.65f, Win32/Virus.Adware.3f4, Win32/Virus.Adware.26a
44.19%

Comodo Security
Application.Win32.Installcore.IO, Application.Win32.InstallCore.JEIQ, Application.Win32.InstallCore.OKI, Application.Win32.InstallCore.~ND
44.19%

K7 Gateway Antivirus
Unwanted-Program
41.86%

The domain esd.nzs.com.br has been seen to resolve to the following 38 IP addresses.

a23-62-7-35.deploy.static.akamaitechnologies.com
August 13, 2015

a23-67-250-120.deploy.static.akamaitechnologies.com
May 4, 2015

a23-67-250-88.deploy.static.akamaitechnologies.com
May 4, 2015

a72-247-9-160.deploy.akamaitechnologies.com
May 4, 2015

a72-247-9-114.deploy.akamaitechnologies.com
May 4, 2015

May 4, 2015

a23-67-243-25.deploy.static.akamaitechnologies.com
May 4, 2015

a23-62-7-65.deploy.static.akamaitechnologies.com
December 2, 2014

a23-62-7-19.deploy.static.akamaitechnologies.com
December 2, 2014

a23-15-7-138.deploy.static.akamaitechnologies.com
November 2, 2014

a23-61-250-17.deploy.static.akamaitechnologies.com
November 1, 2014

a23-61-250-18.deploy.static.akamaitechnologies.com
November 1, 2014

a23-15-9-153.deploy.static.akamaitechnologies.com
October 9, 2014

a23-15-9-161.deploy.static.akamaitechnologies.com
October 9, 2014

a184-25-157-83.deploy.static.akamaitechnologies.com
September 22, 2014

a184-25-157-91.deploy.static.akamaitechnologies.com
September 22, 2014

a23-15-7-163.deploy.static.akamaitechnologies.com
September 18, 2014

September 18, 2014

September 18, 2014

a23-0-160-72.deploy.static.akamaitechnologies.com
September 3, 2014

a23-0-160-17.deploy.static.akamaitechnologies.com
September 3, 2014

a23-0-160-58.deploy.static.akamaitechnologies.com
September 3, 2014

a184-51-126-59.deploy.static.akamaitechnologies.com
August 22, 2014

a184-51-126-51.deploy.static.akamaitechnologies.com
August 22, 2014

a23-15-7-152.deploy.static.akamaitechnologies.com
August 17, 2014

a23-15-7-147.deploy.static.akamaitechnologies.com
August 17, 2014

a23-0-160-83.deploy.static.akamaitechnologies.com
August 16, 2014

a23-0-160-42.deploy.static.akamaitechnologies.com
August 16, 2014

a23-0-160-25.deploy.static.akamaitechnologies.com
August 16, 2014

May 29, 2014

 
Showing 30 of 38 IP Addresses

File downloads found at URLs served by esd.nzs.com.br.

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

18 / 68    (Adware)

1 / 68      (Adware)

22 / 68    (Adware)

0 / 68
http://esd.nzs.com.br/programas/.../mp10setup.exe  (b32908a0ace948234420f17fa62422e8)

1 / 68      (Adware)

16 / 68    (Adware)

0 / 68

18 / 68    (Adware)

13 / 68    (Adware)

15 / 68    (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

8 / 68      (Adware)
http://esd.nzs.com.br/programas/48923/.../atube-catcher-387955-32-bits.exe  (icreinstall_atube-catcher-387955-32-bits.exe)

 
Latest 30 of 257 download URLs

The following 516 files have been seen to comunicate with esd.nzs.com.br in live environments.

 
Latest 20 of 535 files

URL:
http://esd.nzs.com.br/

Web server:
Apache

Remove Malware from esd.nzs.com.br - Powered by Reason Core Security