The domain www.pdfebooksx.com is registered by proxy through ENOM, INC. and was originally registered in August of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Phoenix, Arizona within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Registrant:
WHOIS PRIVACY PROTECTION SERVICE, INC.
Server location:
Arizona, United States (US)
Create date:
Friday, August 30, 2013
Expires date:
Tuesday, August 30, 2016
Updated date:
Tuesday, December 29, 2015
ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.ArturKozak.AA, PUP.Optional.Installer.p, Adware.WebPick.Installer.r, Adware.WebPick.Installer.b, Adware.WebPick.Installer.M, Adware.WebPick.Installer.R, Adware.WebPick.Installer.y, Adware.WebPick.Installer.FF, Adware.WebPick.Installer.s, Adware.WebPick.Installer.f, Adware.WebPick.Installer.AA, Adware.WebPick.Installer (M), Threat.Win.Reputation.IMP, PUP.WebPick.ItzhakSh (M), Adware (M), PUP.WebPick (M)
89.74%
NANO AntiVirus
Riskware.Win32.Downware.csjrwt, Trojan.Win32.AntiFW.cvgqot, Riskware.Win32.Downware.crcxkc, Riskware.Win32.InfoLeak.cvgqot
25.64%
avast!
Win32:InstalleRex-AH [PUP], Win32:InstalleRex-BI [PUP], Win32:Agent-AYLT [PUP]
25.64%
Kaspersky
not-a-virus:Downloader.Win32.AdLoad, Trojan.Win32.AntiFW, not-a-virus:HEUR:AdWare.Win32.MultiPlug
25.64%
Comodo Security
Application.Win32.InstalleRex.KG, Application.Win32.MultiPlug.PNU
25.64%
Avira AntiVirus
Adware/InstallRex.S, TR/Kazy.324119.11, TR/AntiFW.b.86, Adware/Adload.ger, Adware/Bloggo.A, TR/Crypt.XPACK.Gen5, TR/Kazy.324119.2
25.64%
G Data
Win32.Application.InstalleRex, Trojan.Generic.11424417, Trojan.Generic.11228699, Gen:Variant.Adware.MPlug.10, Gen:Variant.Strictor.65565
25.64%
Dr.Web
Trojan.WebPick.4, Trojan.WebPick.29, Adware.Downware.1719, Adware.Downware.1541, Trojan.Crossrider.36840
23.08%
AVG
MalSign.Generic, Trojan horse Crypt_s.GAB, Adware Generic_r.VD
23.08%
McAfee
PUP-FHQ!A9AE96D1CBD0, PUP-FHQ!2F3A32FD038E, PUP-FHQ!0523FD64CE71, MultiPlug-FQV, Program.MultiPlug-FQV, Program.MultiPlug-FRO
23.08%
Malwarebytes
PUP.Optional.InstalleRex, PUP.Optional.Installrex, PUP.Optional.Tarma, PUP.Optional.Installex
20.51%
VIPRE Antivirus
Trojan.Win32.Generic, Installerex/WebPick, Threat.4753027, Threat.4150696
20.51%
Vba32 AntiVirus
Downware.TSU, Downloader.AdLoad
20.51%
Rising Antivirus
PE:PUF.InstallRex!1.9E4C, PE:Malware.Adload!6.1085, PE:Trojan.AntiFW!6.17D6, PE:Malware.Adload!6.13C0, PE:Trojan.AntiFW!6.15B9
20.51%
The domain www.pdfebooksx.com has been seen to resolve to the following 7 IP addresses.
(CloudFlare)
January 18, 2014
(CloudFlare)
January 18, 2014
File downloads found at URLs served by www.pdfebooksx.com.
Latest 30 of 39 download URLs
URL:
http://www.pdfebooksx.com/
Google Analytics:
UA-2249740
Description:
“Find Cash Advance, Debt Consolidation and more at Pdfebooksx.com. Get the best of Insurance or Free Credit Report, browse our section on Cell Phones or learn about Life Insurance. Pdfebooksx.com is the site for Cash Advance.”
Web server:
Microsoft-IIS/8.5 (ASP.NET) (Version: 4.0.30319)
Statistics are for the previous month.
Related Domains
30 of 685 related domains