home

gerenciador.nzs.com.br

Financeiro GrupoNZN

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Server location:
Massachusetts, United States (US)

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:
nzs.com.br

Whois:
2 nzs.com.br records

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.NoZebraNetworka.f, PUP.Installer.Binstall, PUP.installCore.NoZebraNetworka (M), PUP.installCore (M), PUP.installCore.NoZebraN (M)
100.00%

Malwarebytes
PUP.Optional.InstallCore, PUP.Optional.Downloader
4.17%

VIPRE Antivirus
InstallCore
4.17%

K7 AntiVirus
Unwanted-Program
4.17%

Trend Micro House Call
Suspicious_GEN.F47V0920, Suspicious_GEN.F47V0805
4.17%

ESET NOD32
Win32/InstallCore.OZ (variant), Win32/InstallCore.PZ (variant)
4.17%

AVG
Generic
4.17%

Baidu Antivirus
Adware.Win32.InstallCore
4.17%

McAfee
Artemis!B95DBEE533D4
2.08%

F-Prot
W32/InstallCore.AC.gen
2.08%

Avira AntiVirus
ADWARE/InstallCore.Gen9
2.08%

Sophos
Install Core Click run software
2.08%

The domain gerenciador.nzs.com.br has been seen to resolve to the following 91 IP addresses.

23.219.88.153
a23-219-88-153.deploy.static.akamaitechnologies.com
August 18, 2016

23.219.88.112
a23-219-88-112.deploy.static.akamaitechnologies.com
August 18, 2016

23.62.6.91
a23-62-6-91.deploy.static.akamaitechnologies.com
July 23, 2016

23.62.6.83
a23-62-6-83.deploy.static.akamaitechnologies.com
July 23, 2016

23.67.250.88
a23-67-250-88.deploy.static.akamaitechnologies.com
July 14, 2016

23.67.250.120
a23-67-250-120.deploy.static.akamaitechnologies.com
July 14, 2016

104.96.220.241
a104-96-220-241.deploy.static.akamaitechnologies.com
June 2, 2016

104.96.220.139
a104-96-220-139.deploy.static.akamaitechnologies.com
May 27, 2016

104.96.221.186
a104-96-221-186.deploy.static.akamaitechnologies.com
May 27, 2016

184.28.17.187
a184-28-17-187.deploy.static.akamaitechnologies.com
May 27, 2016

184.51.126.112
a184-51-126-112.deploy.static.akamaitechnologies.com
May 27, 2016

104.96.220.192
a104-96-220-192.deploy.static.akamaitechnologies.com
May 18, 2016

104.96.220.177
a104-96-220-177.deploy.static.akamaitechnologies.com
May 17, 2016

104.96.220.99
a104-96-220-99.deploy.static.akamaitechnologies.com
May 17, 2016

104.96.220.248
a104-96-220-248.deploy.static.akamaitechnologies.com
May 16, 2016

104.96.220.193
a104-96-220-193.deploy.static.akamaitechnologies.com
May 16, 2016

104.96.221.177
a104-96-221-177.deploy.static.akamaitechnologies.com
May 16, 2016

104.96.221.160
a104-96-221-160.deploy.static.akamaitechnologies.com
May 16, 2016

184.51.126.105
a184-51-126-105.deploy.static.akamaitechnologies.com
April 13, 2016

65.158.47.27
April 8, 2016

65.158.47.48
April 7, 2016

65.158.47.32
April 7, 2016

65.202.58.80
March 11, 2016

65.202.58.88
March 11, 2016

168.143.242.209
February 29, 2016

184.51.126.83
a184-51-126-83.deploy.static.akamaitechnologies.com
February 23, 2016

184.51.126.82
a184-51-126-82.deploy.static.akamaitechnologies.com
February 23, 2016

184.28.17.226
a184-28-17-226.deploy.static.akamaitechnologies.com
February 1, 2016

198.47.116.68
January 5, 2016

198.47.116.33
January 5, 2016

 
Showing 30 of 91 IP Addresses

File downloads found at URLs served by gerenciador.nzs.com.br.

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../safari-92-81-4102642.exe  (safari-5-1-7-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/programas/urls/iron/.../bitlord-3-410268.exe  (bitlord-2-3-2-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../creative-docs-net-02-3-4102672.exe  (creative-docs-net-3-3-6-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/programas/urls/iron/.../youwave-android-1-4102513.exe  (youwave-android-2-3-4-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../volume-concierge-91-9-410273.exe  (volume-concierge-1-3-3-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../falcon-c--22-31-4102813.exe  (falcon-c--32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/sd/programas/urls/iron/.../free-download-manager.exe  (free-download-manager-3-9-4-build-1472-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../ares-music-4-21-4102881.exe  (ares-music-3-31-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../minisebran-2-01-4102741.exe  (minisebran-1-11-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/programas/urls/iron/.../skype-2-410261.exe  (skype-6-16-0-105-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../ip-shifter-34-51-4102791.exe  (ip-shifter-3-0-4-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../googolopoly-72-71-4102603.exe  (googolopoly-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../zu-9-3-410289.exe  (zu-2-0-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../sonic-time-attacked-73-81-410284.exe  (sonic-time-attacked-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../free-screen-to-video-35-61-4102772.exe  (free-screen-to-video-2-0-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/programas/urls/iron/.../adobe-reader-xi-5231_82504102.exe  (adobe-reader-xi-11-0-7-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../gimp-development-snapshot-45-12-4102692.exe  ({blocked}.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../windows-live-messenger-2009-25-01-4102762.exe  (windows-live-messenger-2009-14-0-8117-416-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/programas/urls/iron/.../advanced-ip-scanner-3-4102513.exe  (advanced-ip-scanner-2-3-2161-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/clickjogos/programas/urls/iron/.../v1-04-09-gameex.exe  (gameex-13-29-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../daemon-tools-ultra-5-02-4102813.exe  (daemon-tools-ultra-2-4-0-0280-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../remote-mouse-22-81-4102782.exe  (remote-mouse-2-541-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../samsung-kies-33-91-4102791.exe  (samsung-kies-3-2-14072-12-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../mp3-remix-player-03-02-410288.exe  (mp3-remix-player-3-311-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../ots-turntables-free-42-22-410288.exe  (ots-turntables-free-1-00-048-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../dj-audio-editor-35-22-410288.exe  (dj-audio-editor-4-8-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../winrar-72-01-4102713.exe  (winrar-5-10-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/programas/urls/iron/.../journal-macro-52-01-4102691.exe  (journal-macro-2-5-7-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/nocache/sd/programas/urls/iron/.../bitcomet.exe  (bitcomet-1-36-32-bits.exe)

1 / 68      (Adware)
http://gerenciador.nzs.com.br/programas/urls/iron/.../manycam-virtual-webcam-5231_82504102.exe  (manycam-virtual-webcam-4-0-78-32-bits.exe)

 
Latest 30 of 1,487 download URLs

The following 1182 files have been seen to comunicate with gerenciador.nzs.com.br in live environments.

TCP » 96.17.10.40:80
browser.exe (Browser)

TCP » 23.15.7.152:80
browser.exe (speed browser by Smart Applications)

TCP » 184.51.126.112:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.82:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.82:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 23.15.7.147:80
browser.exe (speed browser by Smart Applications)

TCP » 23.15.7.152:80
updateadmin.exe

TCP » 184.51.126.83:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.96.220.99:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.105:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.105:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.105:443
citrio.exe (Citrio by CatalinaGroup)

TCP » 184.51.126.83:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.105:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.59:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.83:443
messengertime.exe

TCP » 184.51.126.112:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 23.219.88.153:80
plugin.exe

TCP » 184.51.126.82:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.96.220.177:443
UCBrowser.exe (UC Browser by UCWeb)

 
Latest 20 of 1,260 files

URL:
http://gerenciador.nzs.com.br/

Web server:
Microsoft-HTTPAPI/2.0

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.