install.winzip.com

WinZip Computing LLC

Domain Information

The domain install.winzip.com registered by WinZip Computing LLC was initially registered in November of 1994 through Network Solutions, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the Cable & Wireless Americas Operations, Inc. network.
Remove Malware from install.winzip.com - Powered by Reason Core Security
Registrar:
Network Solutions, LLC

Server location:
New York, United States (US)

Create date:
Tuesday, November 01, 1994

Expires date:
Monday, October 31, 2016

Updated date:
Monday, September 02, 2013

ASN:
AS1273 CW Cable and Wireless Worldwide plc

Root domain:

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Trend Micro House Call
TROJ_GEN.RCBH1A7, TROJ_GEN.F47V0809, TROJ_GEN.F47V0126, HV_ZYX_CA08282F.TOMC, TROJ_GEN.F47V1010, TROJ_GEN.F47V0314, Suspicious_GEN.F47V0725, TROJ_GEN.F47V0905, TROJ_GEN.F47V0718, Suspicious_GEN.F47V1105
97.78%

Dr.Web
Adware.Downware.1348, Adware.Downware.1923, Adware.Downware.9329
91.11%

Sophos
Open Install, PUA 'Open Install', Open Install (PUA), Generic PUA OI (PUA)
91.11%

K7 AntiVirus
Unwanted-Program , Adware , Trojan
91.11%

K7 Gateway Antivirus
Unwanted-Program , Adware , Trojan
91.11%

Antiy Labs AVL
AdWare/Win32.OpenInstall, Trojan/Win32.Autoit, Trojan/Win32.Agent, GrayWare[AdWare]/Win32.OpenInstall
86.67%

Bkav FE
W32.Clod5eb.Trojan, W32.Clodbe5.Trojan, W32.HfsAdware, W32.Clod1bf.Trojan, W32.Clod080.Trojan, W32.Clodfcb.Trojan
84.44%

McAfee
Artemis!D016930F0FA5, Artemis!6ED6AF019F8B, Artemis!88CCA8B6BEAF, Artemis!8778E28C80F1, Artemis!939158CA4778, Artemis!2E01559AB146, Artemis!91FB167B383E, Artemis!1FBCDE761504
80.00%

McAfee Web Gateway
Artemis!D016930F0FA5, Artemis!6ED6AF019F8B, Artemis!88CCA8B6BEAF, Artemis!8778E28C80F1, Artemis!939158CA4778, Artemis!0AB167625A7A
80.00%

Agnitum Outpost
Riskware.OpenInstall, Trojan.Rogue
77.78%

ESET NOD32
Win32/OpenInstall (variant), Win32/OpenInstall potentially unwanted (variant)
75.56%

Fortinet FortiGate
Riskware/OpenInstall, Riskware/Wajam, W32/OpenInstall
73.33%

Emsisoft Anti-Malware
Trojan.Win32.OpenInstall.AMN, Trojan.Generic.10143455, Adware.Generic.1426641
64.44%

XVirus List
Win.Detected, Win32.Detected
62.22%

Vba32 AntiVirus
Backdoor.Swrort.aur, Trojan.Agent
48.89%

The domain install.winzip.com has been seen to resolve to the following 29 IP addresses.

ec2-52-73-2-4.compute-1.amazonaws.com
February 1, 2016

ec2-52-71-138-213.compute-1.amazonaws.com
February 1, 2016

ec2-54-86-143-86.compute-1.amazonaws.com
January 28, 2016

ec2-52-4-35-225.compute-1.amazonaws.com
January 28, 2016

ec2-52-5-25-102.compute-1.amazonaws.com
January 3, 2016

ec2-54-85-221-118.compute-1.amazonaws.com
January 3, 2016

ec2-52-6-244-137.compute-1.amazonaws.com
December 25, 2015

ec2-54-209-196-253.compute-1.amazonaws.com
December 25, 2015

ec2-54-175-166-39.compute-1.amazonaws.com
December 16, 2015

ec2-52-5-218-108.compute-1.amazonaws.com
December 16, 2015

ec2-54-172-229-232.compute-1.amazonaws.com
November 12, 2015

ec2-52-1-134-10.compute-1.amazonaws.com
November 12, 2015

ec2-54-208-220-40.compute-1.amazonaws.com
November 7, 2015

ec2-52-7-147-195.compute-1.amazonaws.com
November 7, 2015

ec2-52-7-239-232.compute-1.amazonaws.com
October 29, 2015

ec2-52-4-58-225.compute-1.amazonaws.com
October 29, 2015

ec2-52-7-100-174.compute-1.amazonaws.com
October 7, 2015

ec2-54-210-168-104.compute-1.amazonaws.com
October 7, 2015

April 11, 2014

rsvd-akamai-142.136.188.204.in-addr.arpa
March 14, 2014

rsvd-akamai-151.136.188.204.in-addr.arpa
March 14, 2014

a23-66-230-146.deploy.static.akamaitechnologies.com
February 5, 2014

a23-66-230-122.deploy.static.akamaitechnologies.com
February 5, 2014

a96-17-197-19.deploy.akamaitechnologies.com
January 8, 2014

a23-66-231-51.deploy.static.akamaitechnologies.com
January 8, 2014

December 26, 2013

December 26, 2013

a23-67-244-153.deploy.static.akamaitechnologies.com
August 5, 2013

a23-67-244-162.deploy.static.akamaitechnologies.com
August 5, 2013

File downloads found at URLs served by install.winzip.com.

15 / 68    (PUP)
http://install.winzip.com/.../WinZip175.exe  (6fc53d0f2ab89003c58ad9fd70d1e083)

23 / 68    (PUP)
http://install.winzip.com/.../WinZip165Multi-language.exe  (082beba84847affa4c28c4e67ed6f325)

21 / 68    (PUP)
http://install.winzip.com/.../WinZip170.exe  (87082fffb59df3a8e2796cda9d4b5fbb)

20 / 68    (PUP)
http://install.winzip.com/.../WinZip165.exe  (157e085be6c946e8aee57b53abc489ea)

9 / 68      (PUP)
http://install.winzip.com/.../WinZipRegistryOptimizer.exe  (b957aec5b9ada79ae77369cf797afcee)

10 / 68    (PUP)
http://install.winzip.com/.../WinZipDriverUpdater.exe  (ca1c7fc0292da404988223c46f28a963)

21 / 68    (PUP)
http://install.winzip.com/.../WinZip170.exe  (9683359bda4e02d8b5371795553867b6)

30 / 68    (PUP)
http://install.winzip.com/.../WinZip170.exe  (e6d0c73baddb2558759af492adcf3a10)

5 / 68      (PUP)
http://install.winzip.com/.../WinZipRegistryOptimizer.exe  (127b7d3d55f6376941133768e5f7e5bf)

21 / 68    (PUP)
http://install.winzip.com/.../WinZip170.exe  (69c9189e002b4d08f266c3b099725508)

26 / 68    (PUP)
http://install.winzip.com/.../WinZip170.exe  (cf8306e6444288a3bb811a29c4408e4b)

21 / 68    (PUP)
http://install.winzip.com/.../WinZip170.exe  (1194315d7bafd9944c253ea1e4f59de8)

2 / 68
http://install.winzip.com/.../WinZipRegistryOptimizer.exe  (d535c2f7d9d77f3d233bd621291910e3)

21 / 68    (PUP)
http://install.winzip.com/.../WinZip170.exe  (29ec5f46bd6f25cef25e72db3f806492)

15 / 68    (PUP)
http://install.winzip.com/.../WinZip170.exe  (d016930f0fa54ec0b3d54f0b2d416e86)

17 / 68    (PUP)
http://install.winzip.com/.../WinZip165.exe  (b7c7cb04dc0c0fabf54d04fb121aef9f)

31 / 68    (PUP)
http://install.winzip.com/.../WinZip170.exe  (2e01559ab1467e3d77b7ae233a7aeead)

9 / 68      (PUP)
http://install.winzip.com/.../WinZipRegistryOptimizer.exe  (1dee37023a4ba304b945af5924704604)

23 / 68    (PUP)
http://install.winzip.com/.../WinZip170.exe  (17587cad48c37c70ca20d44873d4068f)

10 / 68    (PUP)
http://install.winzip.com/.../WinZip170.exe  (7571742e2a42f8b06dfee60c365ae18f)

23 / 68    (PUP)
http://install.winzip.com/.../WinZip170.exe  (b1d1834c6692cd290c594423907def2b)

12 / 68    (PUP)

7 / 68      (PUP)

14 / 68    (PUP)

17 / 68    (PUP)

14 / 68    (PUP)

14 / 68    (PUP)

4 / 68      (PUP)
http://install.winzip.com/.../WinZipRegistryOptimizer.exe  (51e75d159558690358f993107467de3e)

17 / 68    (PUP)

36 / 68    (PUP)

 
Latest 30 of 211 download URLs

The following 25 files have been seen to comunicate with install.winzip.com in live environments.

 
Latest 20 of 25 files

URL:
http://install.winzip.com/

Google Analytics:
UA-229838

Title:
“WinZip for Windows, Mac and Mobile - Zip Files, Unzip Files”

Web server:
nginx/1.2.1

Compete.com:
US visitors:  28,709

Statistics are for the previous month.

Remove Malware from install.winzip.com - Powered by Reason Core Security