regcure.pldownload.net

ParetoLogic Inc.

Domain Information

The domain regcure.pldownload.net registered by ParetoLogic Inc. was initially registered in February of 2010 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Wednesday, February 10, 2010

Expires date:
Friday, February 10, 2017

Updated date:
Tuesday, February 16, 2016

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

Root domain:

Scanner detections:
Detections  (60% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.ParetoLogic.Optional.Installer.Meta (L)
85.71%

Jiangmin
Trojan/Agent.jjau
14.29%

The domain regcure.pldownload.net has been seen to resolve to the following 4 IP addresses.

May 20, 2016

ip-50-63-202-89.ip.secureserver.net
February 23, 2016

December 2, 2014

bitcast-a.bitgravity.com
January 10, 2014

File downloads found at URLs served by regcure.pldownload.net.

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

The following 2 files have been seen to comunicate with regcure.pldownload.net in live environments.

URL:
http://regcure.pldownload.net/

Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)