www.gonvisor.com

Gonzalo -

Domain Information

The domain www.gonvisor.com registered by Gonzalo - was initially registered in October of 2009 through 1 & 1 INTERNET AG. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Karlsruhe, Baden-Wurttemberg within Germany which resides on the RIPE Network Coordination Centre network.
Remove Malware from www.gonvisor.com - Powered by Reason Core Security
Registrar:
1 & 1 INTERNET AG

Server location:
Baden-Wurttemberg, Germany (DE)

Create date:
Saturday, October 31, 2009

Expires date:
Monday, October 31, 2016

Updated date:
Sunday, November 01, 2015

ASN:
AS8560 ONEANDONE-AS 1&1 Internet AG,DE

Root domain:

Scanner detections:
Detections  (83% detected)

Scan engine
Details
Detections

McAfee
Artemis!DA68700EB54B, LiveSoftAction, Artemis!950C8B40088B, Artemis!E56CEFEEEB5F, Artemis!0F32D61EC9F1
100.00%

Dr.Web
Adware.Conduit.3, Adware.Downware.6461, Adware.Iminent.36, Adware.Iminent.25, Trojan.PWS.Stealer.13174
100.00%

McAfee Web Gateway
Artemis!DA68700EB54B, BehavesLike.Win32.LiveSoftAction.bc, BehavesLike.Win32.LiveSoftAction.tc, Artemis!PUP
100.00%

ESET NOD32
Win32/Wajam (variant), Win32/GetNow.B potentially unwanted (variant), Win32/GetNow.I potentially unwanted (variant), Win32/ClientConnect (variant)
100.00%

Reason Heuristics
PUP.Installer.Conduit.W, PUP.Installer.IMINENTTECHNOLOGYSRL, Threat.Sien.Bundler, PUP.Sien.Bundler, PUP.Conduit.Installer
100.00%

Trend Micro House Call
TROJ_GEN.F47V0306, TROJ_GEN.R04AH06LK14, Suspicious_GEN.F47V0416, TROJ_GEN.R00GH09EH15
80.00%

VIPRE Antivirus
Conduit, Trojan.Win32.Generic, LiveSoftAction
80.00%

Fortinet FortiGate
Riskware/Wajam, Riskware/GetNow, W32/GetNow.I, Riskware/Toolbar_Conduit
80.00%

Panda Antivirus
PUP/Conduit.A, Trj/Genetic.gen, PUP/Multitoolbar
80.00%

K7 Gateway Antivirus
Unwanted-Program , Riskware , Adware
80.00%

K7 AntiVirus
Unwanted-Program , Riskware , Adware
80.00%

AVG
Generic, GetNow
80.00%

Malwarebytes
PUP.Optional.Conduit, PUP.Optional.LiveSoftAction, PUP.Optional.ClientConnect
60.00%

Antiy Labs AVL
Trojan/Win32.TSGeneric, RiskWare[Downloader:not-a-virus]/Win32.Agent
60.00%

G Data
Application.Generic.994955, Gen:Variant.Adware.Jaiko.615, Win32.Application.Conduit
60.00%

The domain www.gonvisor.com has been seen to resolve to the following IP address.

clienteservidor.es
May 10, 2014

File downloads found at URLs served by www.gonvisor.com.

20 / 68    (Adware)
http://www.gonvisor.com/.../?dl_name=GonVisor_2_31_Viewer.exe  (577f24ee228d330f331848a8fdc8d8aa54bdf267b3126a75699f0187f29b4dda)

26 / 68    (Adware)
http://www.gonvisor.com/.../?dl_name=GonVisor__2_42.exe  (e56cefeeeb5fa8bb50f943f6ab60dcda)

16 / 68    (Adware)
http://www.gonvisor.com/?dl_name=GonVisor__2_42.exe  (96dfce3d0693692e89e03f59f8443d49)

0 / 68

28 / 68    (PUP)
http://www.gonvisor.com/.../?dl_name=GonVisor_2_31.exe  (4d6d3e5a9b799121b2d306e0d42a802b)

10 / 68    (PUP)

10 / 68    (PUP)

Facebook:
Likes:  26
Shares:  103
Comments:  13

Statistics are for the previous month.

Remove Malware from www.gonvisor.com - Powered by Reason Core Security