www.unziplite.com

Moniker Privacy Services  (Proxy Registrant)

Domain Information

The domain www.unziplite.com is registered by proxy through Moniker Online Services and was originally registered in July of 2011. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Cloudfront CDN service which utilizes a number of proxy IP Addresses (see below).
Registrar:
Moniker Online Services

Server location:
Virginia, United States (US)

Create date:
Thursday, July 28, 2011

Expires date:
Thursday, July 28, 2016

Updated date:
Friday, July 17, 2015

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.BestDownloadManager.J, PUP.AmnisTechnology.M, PUP.Installer.BestDownloadManager.E, PUP.AmnisTechnology.Optional.Installer.Meta (L)
100.00%

ESET NOD32
Win32/KBM (variant), Win32/InstallCore.JE.gen (variant)
75.00%

Dr.Web
Adware.Plugin.85, Trojan.Packed.25266
75.00%

Trend Micro House Call
TROJ_GEN.F47V0902, TROJ_GEN.F47V1218
50.00%

VIPRE Antivirus
sterkly LLC
50.00%

AVG
AdInject.Bdmngr
50.00%

McAfee
Artemis!BD4748A4EC8E, Artemis!A3FBD9422CA9
50.00%

McAfee Web Gateway
Artemis!BD4748A4EC8E, Artemis!A3FBD9422CA9
50.00%

Vba32 AntiVirus
Downware.InstallCore, suspected of Trojan.Downloader.gen.h
50.00%

herdProtect (fuzzy)
a variant of 1d3978353f9b0683b635b92f49f5584abdc7af4d
25.00%

Bkav FE
W32.Clod38d.Trojan
25.00%

Avira AntiVirus
ADWARE/InstallCore.Gen7
25.00%

Malwarebytes
PUP.Optional.BundleInstaller.A
25.00%

Agnitum Outpost
Riskware.Agent
25.00%

Fortinet FortiGate
Riskware/MultiPlug
25.00%

The domain www.unziplite.com has been seen to resolve to the following 10 IP addresses.

server-54-192-194-32.iad53.r.cloudfront.net
December 1, 2015

server-54-192-193-132.iad53.r.cloudfront.net
December 1, 2015

server-54-230-195-235.iad53.r.cloudfront.net
December 1, 2015

server-54-230-195-158.iad53.r.cloudfront.net
December 1, 2015

server-54-230-195-58.iad53.r.cloudfront.net
December 1, 2015

server-54-230-194-246.iad53.r.cloudfront.net
December 1, 2015

server-54-230-194-95.iad53.r.cloudfront.net
December 1, 2015

server-54-230-193-164.iad53.r.cloudfront.net
December 1, 2015

February 1, 2014

February 1, 2014

File downloads found at URLs served by www.unziplite.com.

2 / 68      (PUP)
http://www.unziplite.com/download  (setup-unzipliteu.exe)

11 / 68    (Adware)

5 / 68      (PUP)
http://www.unziplite.com/download  (unziplite-0.2.exe)

10 / 68    (Adware)

URL:
http://www.unziplite.com/

Google Analytics:
UA-21970171

Title:
“Free Compression and Encryption Software - Free Compression and Encryption Software - UnzipLiteUnzipLite | UnzipLite – Zip and Unzip, Rar and Unrar your Compressed FilesFree Compression and En...”

Network:
Amazon Cloudfront

Web server:
AmazonS3

Facebook:
Likes:  6
Shares:  6
Comments:  1

Statistics are for the previous month.