The domain unzip-it.com is registered by proxy through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM and was originally registered in February of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM
Virginia, United States (US)
Thursday, February 13, 2014
Monday, February 13, 2017
Monday, January 25, 2016
AS14618 AMAZON-AES - Amazon.com, Inc.,US
Detections (100% detected)
Threat.4788237, Threat.5084491, Threat.4371328, Threat.4786018
PUP.Bundler.InstallCore, PUP.installCore (M), PUP.NewMedia.Installer.installCore.Installer (M)
Win32/InstallCore.ZC potentially unwanted application, Win32/InstallCore.YL potentially unwanted application, Win32/InstallCore.XX potentially unwanted application
Trend Micro House Call
Qihoo 360 Security
a variant of f3e077f25303573649a3e631f7a97c2c72d77340, a variant of 7c09f0bd9ede7803f3a807d3b192817397fdf3e6
The domain unzip-it.com has been seen to resolve to the following 7 IP addresses.
January 31, 2016
January 6, 2016
May 6, 2015
May 5, 2015
May 5, 2015
August 17, 2014
August 1, 2014
File downloads found at URLs served by unzip-it.com.
Amazon Web Services (AWS), running an EC2 instance
Statistics above are for the previous month of January 2017.