www.ziputil.net

Privacy Protection Service INC d/b/a PrivacyProtect.org  (Proxy Registrant)

Domain Information

The domain www.ziputil.net is registered by proxy through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM and was originally registered in February of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Remove Malware from www.ziputil.net - Powered by Reason Core Security
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Wednesday, February 22, 2012

Expires date:
Wednesday, February 22, 2017

Updated date:
Friday, January 29, 2016

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore.FriedCookie.Installer (M), PUP.installCore.ComboApps.Installer (M), PUP.installCore.JumpyApps.Installer (M), PUP.installCore.DDPlatforms.Installer (M)
98.00%

ESET NOD32
Win32/InstallCore.GZ potentially unwanted application, Win32/Kryptik.BWJC trojan
6.00%

Dr.Web
Trojan.Packed.24524
6.00%

VIPRE Antivirus
Threat.4786018
6.00%

Bkav FE
W32.Clodffa.Trojan
4.00%

K7 AntiVirus
Unwanted-Program
4.00%

K7 Gateway Antivirus
Unwanted-Program
4.00%

Comodo Security
Application.Win32.InstallCore.IX
4.00%

McAfee Web Gateway
BehavesLike.Win32.CryptInno.jc
4.00%

Avira AntiVirus
ADWARE/InstallCore.Gen7
4.00%

G Data
Win32.Application.InstallCore
4.00%

Vba32 AntiVirus
Downware.InstallCore
4.00%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
4.00%

Microsoft Security Essentials
Threat.Undefined
2.00%

Emsisoft Anti-Malware
Trojan.Generic.15539276
2.00%

The domain www.ziputil.net has been seen to resolve to the following 31 IP addresses.

November 7, 2015

ip-50-63-202-104.ip.secureserver.net
May 5, 2015

unallocated.barefruit.co.uk
August 1, 2014

ec2-54-197-239-246.compute-1.amazonaws.com
June 21, 2014

ec2-184-73-205-143.compute-1.amazonaws.com
June 21, 2014

ec2-50-19-247-199.compute-1.amazonaws.com
June 21, 2014

ec2-23-23-228-190.compute-1.amazonaws.com
June 21, 2014

ec2-54-243-86-8.compute-1.amazonaws.com
April 20, 2014

ec2-23-21-204-175.compute-1.amazonaws.com
April 20, 2014

ec2-23-23-138-157.compute-1.amazonaws.com
April 20, 2014

ec2-75-101-166-230.compute-1.amazonaws.com
April 20, 2014

ec2-54-243-90-91.compute-1.amazonaws.com
February 12, 2014

ec2-23-23-134-198.compute-1.amazonaws.com
February 12, 2014

ec2-174-129-244-8.compute-1.amazonaws.com
February 12, 2014

ec2-184-73-236-207.compute-1.amazonaws.com
February 12, 2014

ec2-23-21-250-214.compute-1.amazonaws.com
February 3, 2014

ec2-54-243-103-131.compute-1.amazonaws.com
February 3, 2014

ec2-50-17-197-204.compute-1.amazonaws.com
February 3, 2014

ec2-54-243-102-75.compute-1.amazonaws.com
February 3, 2014

ec2-107-22-185-1.compute-1.amazonaws.com
January 29, 2014

ec2-184-72-222-180.compute-1.amazonaws.com
January 29, 2014

ec2-107-22-227-133.compute-1.amazonaws.com
January 29, 2014

ec2-54-243-66-23.compute-1.amazonaws.com
January 29, 2014

ec2-107-21-210-82.compute-1.amazonaws.com
January 22, 2014

ec2-54-197-252-160.compute-1.amazonaws.com
January 22, 2014

ec2-50-19-214-31.compute-1.amazonaws.com
January 22, 2014

ec2-54-225-134-12.compute-1.amazonaws.com
January 22, 2014

ec2-54-243-251-84.compute-1.amazonaws.com
January 4, 2014

ec2-23-21-96-123.compute-1.amazonaws.com
January 4, 2014

ec2-54-235-141-45.compute-1.amazonaws.com
January 4, 2014

 
Showing 30 of 31 IP Addresses

File downloads found at URLs served by www.ziputil.net.

1 / 68      (Adware)

The following 141 files have been seen to comunicate with www.ziputil.net in live environments.

 
Latest 20 of 141 files

URL:
http://www.ziputil.net/

Title:
“ziputil.net”

Web server:
Apache

Remove Malware from www.ziputil.net - Powered by Reason Core Security