The domain www.mynicepicks.com registered by Corp New Ventures Services was initially registered in October of 2015 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrant:
Corp New Ventures Services
Registrar:
DOMAINSAREFOREVER.NET LLC
Server location:
Northern Ireland, United Kingdom (GB)
Create date:
Monday, October 5, 2015
Expires date:
Wednesday, October 5, 2016
Updated date:
Monday, October 12, 2015
Scanner detections:
Detections (96% detected)
Scan engine
Details
Detections
avast!
NSIS:Adware-EH [PUP], NSIS:Ezula-BC [Adw], NSIS:Bundlore-B [Adw], Rootkit-gen [Rtk], NSIS:Adware-DM [Trj], NSIS:Adware-DR [Adw]
79.17%
VIPRE Antivirus
Bundlore, Trojan.Win32.Generic, InstallCore, Threat.4721115
75.00%
McAfee
GenericTRA-BJ!6E6FA0C56CD7, Artemis!90C726412EC2, Artemis!BF563BC793A9, RDN/Generic PUP.x!bch, RDN/Generic PUP.x!bnf, Artemis!79CD0BA3574F, Artemis!0BCD1FF0D3C0, RDN/Generic PUP.x!et, Artemis!D0696304D142, RDN/Generic PUP.x!bfb, GenericTRA-AR!7A1F2FE39DC2, RDN/Generic PUP.x!bnr, Generic Malware.nl!ats
75.00%
Avira AntiVirus
Adware/Bundlore.C, Adware/Zugo.C.2, Adware/Zugo.C.1, APPL/Downloader.Gen, ADWARE/Adware.Gen, ADWARE/InstallCore.Gen
75.00%
Dr.Web
Adware.Downware.514, Adware.Downware.438, Adware.Downware.830, Adware.SweetIM.3, Adware.Zugo.64, Adware.Toolbar.240, Trojan.DownLoader7.7108
70.83%
Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h, Adware.InstallCore.gen
70.83%
Malwarebytes
PUP.BundleInstaller.VG, PUP.Optional.Bundlore.A, Trojan.FakeVLC, PUP.Optional.AdBundle, PUP.Optional.BundleInstaller.VG
66.67%
ESET NOD32
Win32/Adware.Bundlore, Win32/TrojanDownloader.Adload.NMV, Win32/InstallCore (variant)
66.67%
Trend Micro House Call
TROJ_GEN.R0CBC0OI513, TROJ_GEN.F47V0406, TROJ_HEUR_0000028.TOMA, TROJ_GEN.R0CBH0AK113, TROJ_SPNR.14B713, TROJ_GE.0B3F6F3F
66.67%
NANO AntiVirus
Riskware.Nsis.Downware.yrefc, Trojan.Win32.VOPackage.dejkod, Riskware.Win32.WebToolbarInst.utxfq, Riskware.Win32.Toolbar.dgkvzs
66.67%
Fortinet FortiGate
Riskware/Bundlore, W32/Adload.NMV!tr.dldr, Adware/Zugo
62.50%
Sophos
vGrabber, VOPackage, vGrabber (PUA)
58.33%
Baidu Antivirus
Adware.Win32.Bundlore, Adware.Win32.Ask, Adware.Win32.InstallCore, AdWare.Win32.Bundlore, Hacktool.Win32.Toolbar
54.17%
Reason Heuristics
PUP.Bundlore.Q, PUP.Installer.Bundlore.F, PUP.Bundlore.T, PUP.Optional.Installer.F, PUP.InstallCore.Q, PUP.VGrabber.Installer.Bundler.Installer.Meta (L), PUP.Vittalia.InstallA.Installer (M)
45.83%
AVG
MultiBundle.H, AdInstaller.Bundlor, Adware Vopackage.D, Win32/Sality
33.33%
The domain www.mynicepicks.com has been seen to resolve to the following 3 IP addresses.
unallocated.barefruit.co.uk
May 5, 2015
File downloads found at URLs served by www.mynicepicks.com.
The following 233 files have been seen to comunicate with www.mynicepicks.com in live environments.
URL:
http://www.mynicepicks.com/