www.eliminarspyware.com

spy magic

Domain Information

The domain www.eliminarspyware.com registered by spy magic was initially registered in September of 2012 through NAME.COM, INC.. Currently this domain has been known to host various forms of malware. The hosted servers are located in Chicago, Illinois within the United States which resides on the Latin American and Caribbean IP address Regional Registry network.
Registrar:
NAME.COM, INC.

Server location:
Illinois, United States (US)

Create date:
Friday, September 21, 2012

Expires date:
Wednesday, September 21, 2016

Updated date:
Friday, March 18, 2016

ASN:
AS32475 SINGLEHOP-INC - SingleHop,US

Scanner detections:
Malware distribution  (67% detected)

Scan engine
Details
Detections

Dr.Web
Trojan.Siggen5.45084, Trojan.KillProc.36496
66.67%

Trend Micro House Call
TROJ_GEN.F47V1009
33.33%

Reason Heuristics
PUP.Optional.Installer.SpeedyPCSoftware.W
33.33%

Bkav FE
W32.NeshtaB.PE
33.33%

MicroWorld eScan
Win32.Neshta.A
33.33%

nProtect
Virus/W32.Neshta
33.33%

CMC Antivirus
Virus.Win32.Neshta!O
33.33%

Quick Heal
W32.Neshta.C8
33.33%

McAfee
W32/HLLP.41472.e
33.33%

VIPRE Antivirus
Virus.Win32.Neshta.a
33.33%

The Hacker
W32/Netshta.gen
33.33%

K7 Gateway Antivirus
Virus
33.33%

K7 AntiVirus
Virus
33.33%

NANO AntiVirus
Virus.Win32.Neshta.cdby
33.33%

AVG
Win32/DH
33.33%

The domain www.eliminarspyware.com has been seen to resolve to the following 2 IP addresses.

ip-181-224-144-92.siteground.com
April 7, 2016

host371.hostmonster.com
December 27, 2013

File downloads found at URLs served by www.eliminarspyware.com.

14 / 68    (Malware)

2 / 68      (PUP)
http://www.eliminarspyware.com/speedypcpro  (speedypc pro installer.exe)

1 / 68      (inconclusive)

The following file have been seen to comunicate with www.eliminarspyware.com in live environments.

URL:
http://www.eliminarspyware.com/

Title:
“Eliminar Spyware | Quite el spyware en Windows PC”

Web server:
nginx