wiseconvert.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain wiseconvert.com is registered by proxy through GODADDY.COM, LLC and was originally registered in January of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Remove Malware from wiseconvert.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Saturday, January 28, 2012

Expires date:
Saturday, January 28, 2017

Updated date:
Tuesday, February 02, 2016

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

Scanner detections:
Detections  (94% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Conduit.O, PUP.Installer.Conduit.K, PUP.4203.Conduit.N, PUP.4503.Conduit.O, PUP.Conduit.L, PUP.4327.Conduit.O, PUP.Conduit.I, PUP.4506.Conduit.O, PUP.4327.Conduit.N, PUP.Bundler.Perion.Installer, PUP.Conduit.Bundler (M), PUP.Perion.Bundler.Conduit (M), PUP.Perion.Bundler.Conduit.Installer (M)
95.92%

Dr.Web
Adware.Conduit.6, Adware.BGuard.15, Adware.Downware.1237, Threat.Undefined, Adware.Conduit.87
42.86%

VIPRE Antivirus
Conduit, Threat.4786236
38.78%

ESET NOD32
Win32/Toolbar.Conduit, Win32/OpenCandy, Win32/Toolbar.Conduit.AE, Win32/ClientConnect (variant)
24.49%

Malwarebytes
PUP.Optional.Conduit.A, PUP.Optional.ClientConnect
22.45%

Baidu Antivirus
Adware.Win32.Conduit, PUA.Win32.ClientConnect
22.45%

Trend Micro House Call
TROJ_GEN.F47V0812, Suspicious_GEN.F47V0622, Suspici.0C6DACD5, Suspicious_GEN.F47V0702, TROJ_GEN.F47V0530, Suspicious_GEN.F47V0804
20.41%

AVG
Generic
20.41%

avast!
Win32:Adware-BRM [PUP]
18.37%

McAfee
Artemis!EF9D495A9385, Artemis!D6E193EDE639, Artemis!BB8114981373, Artemis!AC444346464D, Program.Artemis!6B1C675B5C05, Artemis!34B4F924D94A, Artemis!8A4503289BEB, Artemis!0449E6F7E9A6, Artemis!05C8BEB519F7
18.37%

Fortinet FortiGate
Riskware/Toolbar_Conduit, Riskware/ClientConnect
16.33%

McAfee Web Gateway
Artemis!EF9D495A9385, Artemis!D6E193EDE639, Artemis!PUP, Artemis!6B1C675B5C05, Artemis!34B4F924D94A, Artemis!8A4503289BEB
16.33%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), Win32.HeurC.KVM099.a.(kcloud)
12.24%

IKARUS anti.virus
PUA.Toolbar.Conduit, PUA.ClientConnect, Trojan.Trash
12.24%

K7 Gateway Antivirus
Unwanted-Program
10.20%

The domain wiseconvert.com has been seen to resolve to the following 2 IP addresses.

ip-50-63-202-52.ip.secureserver.net
February 8, 2016

184.173.251.169-static.reverse.softlayer.com
December 27, 2013

File downloads found at URLs served by wiseconvert.com.

1 / 68      (PUP)

0 / 68

1 / 68      (Adware)
http://wiseconvert.com/.../download_sp.php  (wiseconvert_tsa23nw6b.exe)

1 / 68      (Adware)

7 / 68      (PUP)

14 / 68    (PUP)

September 4, 2014

URL:
http://wiseconvert.com/

Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)

Remove Malware from wiseconvert.com - Powered by Reason Core Security