minilua-miniluacom.netdna-ssl.com

NetDNA, LLC.

Domain Information

The domain minilua-miniluacom.netdna-ssl.com registered by NetDNA, LLC. was initially registered in February of 2011 through MARKMONITOR INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Jose, California within the United States which resides on the SoftLayer Technologies Inc. network.
Registrar:
MARKMONITOR INC.

Server location:
California, United States (US)

Create date:
Wednesday, February 02, 2011

Expires date:
Thursday, February 02, 2017

Updated date:
Wednesday, October 16, 2013

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc., US

Root domain:

Scanner detections:
Detections  (95% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.ExtendedSetup.O, PUP.Installer.MaxSetup.O, PUP.Installer.STMSetup.O, PUP.installCore.MaxSetup.Installer (M), PUP.installCore.WorldSetup.Installer (M), PUP.installCore.STMSetup.Installer (M), PUP.installCore.WorldSet.Installer (M), PUP.installCore.Extended.Installer (M)
92.31%

K7 AntiVirus
Unwanted-Program , Trojan
17.95%

K7 Gateway Antivirus
Unwanted-Program , Trojan
17.95%

Dr.Web
Trojan.Packed.24524, Adware.InstallCore.386, Trojan.DownLoader11.13453
17.95%

Sophos
Install Core Click run software
17.95%

VIPRE Antivirus
InstallCore, InstallCore.b, Threat.4786018
15.38%

Avira AntiVirus
ADWARE/InstallCore.A.9, ADWARE/InstallCore.Gen7, Adware/InstallCore.A.439, Adware/InstallCore.A.577, ADWARE/InstallCore.Gen9
15.38%

Vba32 AntiVirus
Downware.InstallCore, AdWare.InstallCore
12.82%

AVG
MalSign.InstallC, Generic
12.82%

Qihoo 360 Security
Malware.QVM20.Gen, Win32/Virus.Adware.f22
10.26%

ESET NOD32
Win32/InstallCore.OU potentially unwanted application, Win32/InstallCore.ON potentially unwanted application
10.26%

Baidu Antivirus
Trojan.Win32.InstallCore, Adware.Win32.Somoto
10.26%

ESET NOD32
Win32/InstallCore.IJ (variant), Win32/Kryptik.BWAM (variant), Win32/Somoto
7.69%

Norman
InstallCore.CERT
7.69%

McAfee Web Gateway
CryptInno, BehavesLike.Win32.CryptInno.bc, Artemis
7.69%

The domain minilua-miniluacom.netdna-ssl.com has been seen to resolve to the following 4 IP addresses.

94.63.1732.ip4.static.sl-reverse.com
May 16, 2016

94.31.29.227.IPYX-077437-ZYO.above.net
March 1, 2016

May 31, 2014

94.31.29.224.IPYX-077437-ZYO.above.net
February 8, 2014

File downloads found at URLs served by minilua-miniluacom.netdna-ssl.com.

1 / 68      (Adware)

1 / 68      (Adware)

2 / 68      (false positives)

1 / 68      (inconclusive)

The following 5 files have been seen to comunicate with minilua-miniluacom.netdna-ssl.com in live environments.

URL:
http://minilua-miniluacom.netdna-ssl.com/

Google Analytics:
UA-16008425

Title:
“X2 Network”

SSL certificate subject:
CN=*.netdna-ssl.com, OU=Domain Control Validated

SSL certificate issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc."

Web server:
NetDNA-cache/2.2