jp.download366.info

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain jp.download366.info is registered by proxy through GoDaddy.com, LLC (R171-LRMS) and was originally registered in November of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Remove Malware from jp.download366.info - Powered by Reason Core Security
Registrar:
GoDaddy.com, LLC (R171-LRMS)

Server location:
Virginia, United States (US)

Create date:
Friday, November 16, 2012

Expires date:
Sunday, November 16, 2014

Updated date:
Thursday, October 24, 2013

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.BechiroSL.G, PUP.Installer.SETUPPROCESS.P, PUP.Installer.AppsInstallerSL.H
100.00%

K7 Gateway Antivirus
Unwanted-Program , Trojan
66.67%

VIPRE Antivirus
DownloadMR
66.67%

Sophos
Solimba Installer
66.67%

G Data
Win32.Application.Morstar
66.67%

Vba32 AntiVirus
Downware.Morstar
66.67%

ESET NOD32
Win32/FirseriaInstaller (variant)
66.67%

NANO AntiVirus
Trojan.Win32.Morstar.creklv
33.33%

Kaspersky
not-a-virus:Downloader.Win32.Morstar
33.33%

Agnitum Outpost
PUA.Downloader
33.33%

Comodo Security
Application.Win32.Bechiro.BDC
33.33%

Dr.Web
Trojan.DownLoader11.3516
33.33%

Avira AntiVirus
TR/Dropper.Gen
33.33%

Kingsoft AntiVirus
Win32.Troj.DownMorstar.o.(kcloud)
33.33%

Rising Antivirus
PE:PUF.FirseriaInstaller@CV!1.9C54
33.33%

The domain jp.download366.info has been seen to resolve to the following 3 IP addresses.

ec2-54-243-100-6.compute-1.amazonaws.com
May 5, 2014

ec2-23-21-247-193.compute-1.amazonaws.com
May 5, 2014

January 6, 2014

File downloads found at URLs served by jp.download366.info.

9 / 68      (Adware)

18 / 68    (Adware)

1 / 68      (Adware)

URL:
http://jp.download366.info/

Google Analytics:
UA-18063553

Title:
“Download366”

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
nginx (PHP/5.3.10-1ubuntu3.7)

Alexa:
Global rank:  28,116
Backlinks:  64

Statistics are for the previous month (Alexa statistics are for entire download366.info).

Remove Malware from jp.download366.info - Powered by Reason Core Security