The domain howto-produce.com is registered by proxy through GODADDY.COM, LLC and was originally registered in February of 2015. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrant:
Domains By Proxy, LLC
Registrar:
GODADDY.COM, LLC
Server location:
Arizona, United States (US)
Create date:
Sunday, February 8, 2015
Expires date:
Thursday, February 8, 2018
Updated date:
Tuesday, February 9, 2016
ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC
Scanner detections:
Detections (98% detected)
Scan engine
Details
Detections
Qihoo 360 Security
Win32/Virus.Adware.cbc, HEUR/QVM42.0.Malware.Gen, HEUR/QVM42.1.Malware.Gen, Win32/Trojan.Dropper.2c7, Win32/Trojan.Dropper.cca
46.00%
Avira AntiVirus
TR/Dropper.A.5761, TR/Dropper.A.7664, TR/Dropper.A.8166, TR/Dropper.A.8215, TR/Dropper.A.9011, TR/Dropper.A.9504, TR/Dropper.A.9578
42.00%
Reason Heuristics
PUP.Similar.ZoomWebLists.Installer.Meta (M), PUP.SeeWeblists.Zzoom.Installer.Meta (M), PUP.Similar.ZoomWebLists.Meta (M)
40.00%
AVG
Generic6, Generic_r, Adware Generic6.BSCT, Adware Generic_r.ANJ
38.00%
AhnLab V3 Security
PUP/Win32.OutBrowse, PUP/Win32.Downloader
34.00%
NANO AntiVirus
Riskware.Win32.Similagro.dpewpg, Trojan.Win32.Inject.dpzkuh, Riskware.Win32.Similagro.dojpqq, Trojan.Win32.Ransom.dtleij
32.00%
McAfee
Artemis!CB5BC32E042D, RDN/Generic PUP.x!c2b, Artemis!C6B43A304BB3, Artemis!831094B4CA8E, Artemis!242CA958B7E3, Artemis!7DBBBF30E285, Artemis!DC522A118E17
28.00%
ESET NOD32
Generik.CYETINY (variant), Win32/Adware.Similagro (variant)
26.00%
avast!
Evo-gen [Susp], Win32:Trojan-gen, Win32:Adware-gen [Adw], Win32:Malware-gen, Win32:Dropper-gen [Drp]
22.00%
Dr.Web
Threat.Undefined, Trojan.DownLoader14.13136, Trojan.DownLoader14.43919, Trojan.DownLoader14.50118, Trojan.DownLoader14.52256, Trojan.DownLoader14.47468
22.00%
Baidu Antivirus
Adware.Win32.Similagro, Trojan.Win32.Inject
20.00%
Emsisoft Anti-Malware
Gen:Variant.Graftor.179647, Gen:Variant.Mikey.10622, Gen:Variant.Zusy.129063, Gen:Variant.Adware.Graftor.242801, Adware.Similagro
16.00%
Kaspersky
not-a-virus:AdWare.Win32.Similagro, Trojan.Win32.Inject, UDS:DangerousObject.Multi.Generic
16.00%
IKARUS anti.virus
PUA.Similagro, Trojan.SuspectCRC
16.00%
Comodo Security
Application.Win32.AdWare.Similagro.EA
16.00%
The domain howto-produce.com has been seen to resolve to the following IP address.
ip-184-168-221-40.ip.secureserver.net
January 5, 2016
File downloads found at URLs served by howto-produce.com.
The following 11 files have been seen to comunicate with howto-produce.com in live environments.
URL:
http://howto-produce.com/
Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)
Related Domains