jp.download366.info

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain jp.download366.info is registered by proxy through GoDaddy.com, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrar:
GoDaddy.com, LLC

Server location:
Virginia, United States (US)

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Root domain:

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.BechiroSL.G, PUP.Installer.SETUPPROCESS.P, PUP.Installer.AppsInstallerSL.H, PUP.Solimba.Firseria.Bundler (M), PUP.Solimba (M)
100.00%

K7 Gateway Antivirus
Unwanted-Program , Trojan
40.00%

VIPRE Antivirus
DownloadMR
40.00%

Sophos
Solimba Installer
40.00%

G Data
Win32.Application.Morstar
40.00%

Vba32 AntiVirus
Downware.Morstar
40.00%

ESET NOD32
Win32/FirseriaInstaller (variant)
40.00%

NANO AntiVirus
Trojan.Win32.Morstar.creklv
20.00%

Kaspersky
not-a-virus:Downloader.Win32.Morstar
20.00%

Agnitum Outpost
PUA.Downloader
20.00%

Comodo Security
Application.Win32.Bechiro.BDC
20.00%

Dr.Web
Trojan.DownLoader11.3516
20.00%

Avira AntiVirus
TR/Dropper.Gen
20.00%

Kingsoft AntiVirus
Win32.Troj.DownMorstar.o.(kcloud)
20.00%

Rising Antivirus
PE:PUF.FirseriaInstaller@CV!1.9C54
20.00%

The domain jp.download366.info has been seen to resolve to the following 6 IP addresses.

ec2-52-20-26-1.compute-1.amazonaws.com
August 15, 2016

ec2-52-86-173-174.compute-1.amazonaws.com
April 21, 2016

ec2-54-210-177-99.compute-1.amazonaws.com
April 21, 2016

ec2-54-243-100-6.compute-1.amazonaws.com
May 5, 2014

ec2-23-21-247-193.compute-1.amazonaws.com
May 5, 2014

January 6, 2014

File downloads found at URLs served by jp.download366.info.

1 / 68      (Adware)

1 / 68      (Adware)

9 / 68      (Adware)

18 / 68    (Adware)

1 / 68      (Adware)

URL:
http://jp.download366.info/

Google Analytics:
UA-18063553

Title:
“Download366”

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
nginx