home

s1.vipboxsportsapp.com

WHOIS PRIVACY PROTECTION SERVICE, INC.  (Proxy Registrant)

Domain Information

The domain s1.vipboxsportsapp.com is registered by proxy through ENOM, INC. and was originally registered in September of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in London, England within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrar:
ENOM, INC.

Server location:
England, United Kingdom (GB)

Create date:
Thursday, September 13, 2012

Expires date:
Tuesday, September 13, 2016

Updated date:
Tuesday, January 12, 2016

ASN:
AS17025 ABOVENET-CUSTOMER - Abovenet Communications, Inc,US

Root domain:
vipboxsportsapp.com

Whois:
3 vipboxsportsapp.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.TerraFirmaInternetConsulting.Z, PUP.Installer.CoolMirageltd.Z, PUP.TerraFirmaInternetConsulting.Installer (M), PUP.CoolMirage.Installer (M), PUP.TerraFir.Installer (M), PUP (M), PUP.CoolMirage (M)
100.00%

Dr.Web
Adware.Downware.902, Adware.Downware.861, Adware.Downware.573, Adware.Downware.487
32.00%

avast!
Win32:Downloader-TPG [PUP], NSIS:Oneclick-Z [PUP]
28.00%

SUPERAntiSpyware
Adware.Downware, PUP.BundleInstaller
28.00%

Comodo Security
Application.Win32.MCool.A, Application.Win32.Agent.Y, Application.Win32.Downware.G
28.00%

VIPRE Antivirus
Iminent
28.00%

Avira AntiVirus
APPL/CoolMirage.Gen6, ADWARE/Adware.Gen6
28.00%

NANO AntiVirus
Riskware.Nsis.Downware.yrefc, Trojan.Script.Downware.cujzax, Riskware.Nsis.Downware.czyjkl
24.00%

Sophos
FT Downloader, 1 Click Downloader, 1 Click Downloader (PUA)
20.00%

McAfee
Artemis!710BFCC07BFC, Artemis!0864E73B2EC5, Artemis!78BE91942ABC, Adware-SweetIM
20.00%

ESET NOD32
Win32/Adware.1ClickDownload, Win32/Adware.1ClickDownload.AM
16.00%

Fortinet FortiGate
Riskware/1ClickDownload
8.00%

Trend Micro House Call
TROJ_GEN.F47V1115, TROJ_GEN.F47V0424
8.00%

Malwarebytes
PUP.BundleInstaller.DW
4.00%

XVirus List
Win32.Detected
4.00%

The domain s1.vipboxsportsapp.com has been seen to resolve to the following 3 IP addresses.

98.124.243.34
February 13, 2016

94.31.29.96
94.31.29.96.IPYX-077437-ZYO.above.net
September 1, 2015

108.161.189.4
December 18, 2013

File downloads found at URLs served by s1.vipboxsportsapp.com.

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(30).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(19).exe  (vipboxsportsapp_setup.exe)

11 / 68    (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(14).exe  (VipBoxSportsApp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(7).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/VIPB/.../VipBoxSportsApp_setup(3).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(36).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(31).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(7).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(36).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(31).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/VIPB/.../VipBoxSportsApp_setup(31).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(30).exe  (vipboxsportsapp_setup.exe)

9 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(31).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(31).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(21).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(21).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(19).exe  (vipboxsportsapp_setup.exe)

1 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(28).exe  (vipboxsportsapp_setup.exe)

13 / 68    (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(34).exe  (vipboxsportsapp_setup.exe)

9 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(11).exe  (vipboxsportsapp_setup.exe)

12 / 68    (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(36).exe  (vipboxsportsapp_setup.exe)

6 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(34).exe  (VipBoxSportsApp_setup.exe)

7 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(31).exe  (VipBoxSportsApp_setup.exe)

12 / 68    (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(11).exe  (VipBoxSportsApp_setup.exe)

3 / 68      (Adware)
http://s1.vipboxsportsapp.com/download/.../VipBoxSportsApp_setup(34).exe  (vipboxsportsapp_setup.exe)

The following 76 files have been seen to comunicate with s1.vipboxsportsapp.com in live environments.

TCP » 94.31.29.96:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 94.31.29.96:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 94.31.29.96:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 94.31.29.96:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 94.31.29.96:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 94.31.29.96:443
online-guardian.exe

TCP » 94.31.29.96:443
browser.exe (speed browser by Fast Applications)

TCP » 94.31.29.96:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 94.31.29.96:80
crossbrowse.exe (Crossbrowse)

TCP » 94.31.29.96:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 94.31.29.96:443
online-guardian-v2.exe

TCP » 94.31.29.96:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 94.31.29.96:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 94.31.29.96:80
snakeclassics.exe (by GamesPub)

TCP » 94.31.29.96:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 94.31.29.96:80
apptrailers.exe

TCP » 94.31.29.96:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 94.31.29.96:80
jingling.exe

TCP » 94.31.29.96:80
bricksbreakingii.exe (by GamesPub)

TCP » 94.31.29.96:443
onlineguardian-v2.exe

 
Latest 20 of 86 files

URL:
http://s1.vipboxsportsapp.com/

Google Analytics:
UA-2249740

Title:
“Vipboxsportsapp.com”

Description:
“Find Cash Advance, Debt Consolidation and more at Vipboxsportsapp.com. Get the best of Insurance or Free Credit Report, browse our section on Cell Phones or learn about Life Insurance. Vipboxsportsapp.com is the site for Cash Advance.”

Web server:
Microsoft-IIS/8.5 (ASP.NET) (Version: 4.0.30319)

Facebook:
Shares:  2
Comments:  2

Statistics are for the previous month.

07zbu0gt6.com

08i8b4384.com

0g32br5rsg.com

0hnuuf2.com

0j2fxpvon.com

0k8wezr.com

0nosjf31uh.com

0o99hbzi.com

0p78qfr8q7.com

0softwaredreams.com

0uezhjx.com

0vin60f6.com

0x1m8x59b.com

1-vinstaller.com

1000descargas.com

123-telecharger.com

18v3y9y0ob.com

1btvoy0pn.com

1mmkkv2sfi.com

1r2qzosuf.com

1sfrtvms6.com

1tvonline.net

2-vinstaller.com

225bkry1.com

22aaf3.com

27call.com

27q2gqueo.com

29u3wfmjg.com

2k18x8b34s.com

2m891odz.com

30 of 685 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.