forces.i-promonixes.ru

Private Person  (Proxy Registrant)

Domain Information

The domain forces.i-promonixes.ru is registered by proxy through REGRU-REG-RIPN and was originally registered in April of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Steinsel, Luxembourg within Luxembourg which resides on the RIPE Network Coordination Centre network.
Remove Malware from forces.i-promonixes.ru - Powered by Reason Core Security
Registrar:
REGRU-REG-RIPN

Server location:
Luxembourg, Luxembourg (LU)

Create date:
Friday, April 25, 2014

Expires date:
Saturday, April 25, 2015

ASN:
AS5577 ROOT root SA,LU

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.ITRiver., PUP.ITRiver.Z, PUP.ITRiver (M)
100.00%

MicroWorld eScan
Gen:Heur.Krypt.12
66.67%

McAfee
PUP-FFD!EAF2074CFB55, PUP-FNB
66.67%

NANO AntiVirus
Riskware.Win32.Krap.bsaoor, Riskware.Win32.Krap.cypjlh
66.67%

Bitdefender
Gen:Heur.Krypt.12
66.67%

Lavasoft Ad-Aware
Gen:Heur.Krypt.12
66.67%

Sophos
Mal/LdMon-B
66.67%

Comodo Security
TrojWare.Win32.Kryptik.BZSP
66.67%

F-Secure
Gen:Heur.Krypt.12
66.67%

VIPRE Antivirus
Trojan.Win32.LoadMoney.f, Threat.4823650
66.67%

Emsisoft Anti-Malware
Gen:Heur.Krypt.12
66.67%

G Data
Gen:Heur.Krypt.12
66.67%

AhnLab V3 Security
PUP/Win32.LoadMoney
66.67%

Fortinet FortiGate
Riskware/LMN
66.67%

AVG
Win32/Cryptor
66.67%

The domain forces.i-promonixes.ru has been seen to resolve to the following IP address.

adrendns1.net
May 5, 2014

File downloads found at URLs served by forces.i-promonixes.ru.

URL:
http://forces.i-promonixes.ru/

Web server:
nginx

Remove Malware from forces.i-promonixes.ru - Powered by Reason Core Security