securisedownload.com

Whois protection, this company does not own this domain name s.r.o.

Domain Information

The domain securisedownload.com registered by Whois protection, this company does not own this domain name s.r.o. was initially registered in April of 2016 through OVH. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Redwood City, California within the United States which resides on the SKYE network.
Registrar:
HEBEI GUOJI MAOYI (SHANGHAI) LTD DBA HEBEIDOMAINS.COM

Server location:
California, United States (US)

Create date:
Thursday, April 21, 2016

Expires date:
Friday, April 21, 2017

Updated date:
Thursday, April 21, 2016

ASN:
AS26008 NOMINUM-SKYE1 - SKYE

Scanner detections:
Detections  (92% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Kreapixel.M, PUP.Installer.Kreapixel.L, PUP.Installer.Kreapixel.I, PUP.Installer.Kreapixel.R, PUP.Kreapixel.R, PUP.Installer.Kreapixel.M, PUP.Installer.Kreapixel.FF, PUP.Installer.Kreapixel.P, PUP.Installer.Kreapixel.N, PUP.Kreapixel.Installer (M), PUP.Kreapixel.424Mo.Installer (M), PUP.Kreapixel.56Mo.Installer (M), PUP.InstallCore.RE11 (M)
97.30%

Trend Micro House Call
HV_ZYX_CA226679.TOMC, TROJ_GEN.F47V0328, TROJ_GEN.RC1H1E9, TROJ_GEN.F47V1104, TROJ_GEN.F47V0815, TROJ_GEN.F47V0829
32.43%

McAfee Web Gateway
Heuristic.BehavesLike.Win32.Suspicious-PKR.O
13.51%

F-Prot
W32/InstallCore.W.gen, W32/AutoIt.CE.gen
8.11%

Qihoo 360 Security
HEUR/Malware.QVM11.Gen
5.41%

Dr.Web
Adware.InstallCore, Trojan.Packed.194
5.41%

Avira AntiVirus
ADWARE/InstallCore.Gen
5.41%

AhnLab V3 Security
PUP/Win32.InstallCore
5.41%

ESET NOD32
Win32/InstallCore.AZ (variant)
5.41%

Rising Antivirus
PE:Trojan.Win32.Generic.12D30705!315819781, PE:Malware.XPACK-LNR/Heur!1.5594
5.41%

Jiangmin
Trojan/JboxGeneric.hwb
2.70%

Antiy Labs AVL
Trojan/Win32.SGeneric
2.70%

CMC Antivirus
Packed.Win32.InstallCore.1!O
2.70%

K7 AntiVirus
Unwanted-Program
2.70%

Microsoft Security Essentials
SoftwareBundler:Win32/DealPly
2.70%

The domain securisedownload.com has been seen to resolve to the following 16 IP addresses.

May 11, 2016

September 22, 2014

September 3, 2014

September 3, 2014

September 3, 2014

September 3, 2014

September 2, 2014

September 2, 2014

September 2, 2014

September 2, 2014

August 28, 2014

August 28, 2014

August 28, 2014

August 28, 2014

search.dnsassist.verizon.net
April 26, 2014

cluster015.ovh.net
February 27, 2014

File downloads found at URLs served by securisedownload.com.

1 / 68      (PUP)
http://securisedownload.com/.../Setup_V17FR.exe  (46d00c095a38c44e658153812714fea9)

1 / 68      (PUP)
http://securisedownload.com/.../Setup_AR.exe  (1c1f2272e1b4bca9aa7f0c5e3aa2dacb)

The following 83 files have been seen to comunicate with securisedownload.com in live environments.

 
Latest 20 of 87 files

URL:
http://securisedownload.com/

Title:
“securisedownload.com”

Web server:
Apache

Facebook:
Shares:  1

Statistics above are for the previous month of May 2017.