» freechecknow.checkerweb.com
Overview
Analysis
IPs Addresses (1)
Downloads (15)
Website Detail
Related Domains (9)

freechecknow.checkerweb.com

Code-M LTD

Domain Information

The domain freechecknow.checkerweb.com registered by Code-M LTD was initially registered in January of 2015 through REGISTRAR OF DOMAIN NAMES REG.RU LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Fort Lauderdale, Florida within the United States which resides on the Infolink Global Corporation network.

Registrant:

Code-M LTD

Registrar:

REGISTRAR OF DOMAIN NAMES REG.RU LLC

Server location:

Florida, United States (US)

Create date:

Wednesday, January 14, 2015

Expires date:

Thursday, January 14, 2016

Updated date:

Wednesday, January 14, 2015

ASN:

AS15083 INFOLINK-MIA-US - Infolink Global Corporation,US

Root domain:

checkerweb.com

Whois:

1 checkerweb.com record

Google Safe Browsing:

phishing

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

Threat.installCore.Installer, PUP.installCore.Installer, PUP.installCore.OOOServisM.Installer (M), PUP.installCore.OOOServi.Installer (M)

100.00%

avast!

Malware-gen

60.00%

ESET NOD32

Win32/InstallCore.YL potentially unwanted application, Win32/InstallCore.YK potentially unwanted application

60.00%

K7 AntiVirus

Adware

60.00%

Dr.Web

Trojan.InstallCore.314

60.00%

Bkav FE

W32.HfsAdware

53.33%

VIPRE Antivirus

Threat.4150696

53.33%

AVG

Generic

53.33%

Comodo Security

Application.Win32.InstallCore.DQY, Application.Win32.InstallCore.DBX

46.67%

Vba32 AntiVirus

Malware-Cryptor.InstallCore.gen

40.00%

Baidu Antivirus

Adware.Win32.InstallCore

33.33%

Avira AntiVirus

PUA/InstallCore.Gen

33.33%

Qihoo 360 Security

HEUR/QVM06.1.Malware.Gen

33.33%

NANO AntiVirus

Riskware.Win32.InstallCore.dqvwob

26.67%

herdProtect (fuzzy)

a variant of 64d30119197dcba37247a27bd9aae89b4d5dbc83, a variant of 57cc7a08bc735164c785de2494e5d9ce26f352b4

13.33%

The domain freechecknow.checkerweb.com has been seen to resolve to the following IP address.

65.111.162.187

May 6, 2015

File downloads found at URLs served by freechecknow.checkerweb.com.

1 / 68 (Adware)

http://freechecknow.checkerweb.com/dl.php?conversion_id=14273468964033&app_id=4&lp_id=962&v=ico&stub_id=149&v_id=IMlrQpUgVNGv97BdvfvlMXYH8Bbu dUeBACvWXgNHB4=&dist_id=918&channel=ssqfc3&CID=03_107695657_249d0723-091b-41ae-9320-25829d81ee45&AFID=354468_ (adobe_flash_setup.exe)

1 / 68 (Adware)

http://freechecknow.checkerweb.com/.../g9JirHrXRDyNB2 u3LwFFSKTivoW7zX5KY=&dist_id=918&channel=ssqfc3&CID=03_107487526_58d96ea3-1283-4a67-a9e4-2521d1172402&AFID=354468_ (adobe_flash_setup.exe)

1 / 68 (Adware)

http://freechecknow.checkerweb.com/dl.php?conversion_id=14273402863498&app_id=4&lp_id=963&v=ico&stub_id=148&v_id=kJGAobdxLrrFtI8HGJc5YCpnbWW3TDU0LJfld3Udf5E=&dist_id=917&channel=ssqfc2&CID=03_107303084_2929c3b0-c6e4-41dc-a219-8588a39d91c0&AFID=354468_ (adobe_flash_setup.exe)

13 / 68 (Adware)

http://freechecknow.checkerweb.com/dl.php?conversion_id=14273408789868&app_id=4&lp_id=963&v=ico&stub_id=149&v_id=hfdNGGWQ2IQybAcUjMVHBxbR7SkJOREaX9mATfEfccQ=&dist_id=917&channel=ssqfc2&CID=03_107345265_b8af6664-0c77-4f8d-bd98-59424e94f5c4&AFID=354468_ (adobe_flash_setup.exe)

13 / 68 (Adware)

http://freechecknow.checkerweb.com/dl.php?conversion_id=14273439201736&app_id=4&lp_id=963&v=ico&stub_id=149&v_id=mwzbIC6CFBQ86q4z5g/.../uh7PDeg8r NR2g8Dg=&dist_id=917&channel=ssqfc2&CID=03_107537724_6baffdbe-52c4-4b4f-b213-bf8657acd740&AFID=354468_ (adobe_flash_setup.exe)

12 / 68 (Adware)

http://freechecknow.checkerweb.com/dl.php?conversion_id=14273447416607&app_id=4&lp_id=962&v=ico&stub_id=148&v_id=l8AklMeBgELomXPekALfsajDwRLjNb86RoKnlRYV0wQ=&dist_id=918&channel=ssqfc3&CID=03_107589001_bab0dd1f-39b4-4df8-aae3-ef223a87661f&AFID=354468_ (adobe_flash_setup.exe)

1 / 68 (Adware)

12 / 68 (Adware)

13 / 68 (Adware)

http://freechecknow.checkerweb.com/.../pvzJMIfnOg=&dist_id=918&channel=ssqfc3&CID=03_107597031_28f0432f-7847-4862-8e5c-67d60605b960&AFID=354468_ (adobe_flash_setup.exe)

13 / 68 (Adware)

http://freechecknow.checkerweb.com/dl.php?conversion_id=14273448847123&app_id=4&lp_id=962&v=ico&stub_id=149&v_id=66kUf1JMsS6 ZKrs40 Gj/yfoWRql/.../c=&dist_id=918&channel=ssqfc3&CID=03_107597066_7d29aaea-3950-4b44-8748-e585a22fcb08&AFID=354468_ (adobe_flash_setup.exe)

1 / 68 (Adware)

http://freechecknow.checkerweb.com/dl.php?conversion_id=14273448844297&app_id=4&lp_id=962&v=ico&stub_id=149&v_id=66kUf1JMsS6 ZKrs40 Gj/yfoWRql/.../c=&dist_id=918&channel=ssqfc3&CID=03_107597051_e552847b-fb40-4e01-8122-576846674790&AFID=354468_ (adobe_flash_setup.exe)

10 / 68 (Adware)

http://freechecknow.checkerweb.com/.../CWHlPog=&dist_id=538&channel=cocstjavau3&sid=M_35148994612d18b7f61f1427296651&ref=clickater.com&tid=e2c4x294d4u2z2_3dba8b8cbb2f536193a483e6ab34d287 (java_runtime_enviroment_setup.exe)

10 / 68 (Adware)

http://freechecknow.checkerweb.com/dl.php?conversion_id=14273388219402&app_id=63&lp_id=535&v=ico&stub_id=148&v_id=76tLSf2jVea5X oDo5FHbbORJHD6dszw9ilSft7QYfA=&dist_id=538&channel=cocstjavau3&sid=M_1204569691376226c9fb1427338786&ref=clickater.com&tid=e2c4x294d4u2z2_372468a41733eed531d336840ae58033 (java_runtime_enviroment_setup.exe)

9 / 68 (Adware)

http://freechecknow.checkerweb.com/dl.php?conversion_id=14273336994687&app_id=4&lp_id=962&v=ico&stub_id=149&v_id=q7F6yba4sfX6UA4RuXRpZsJBkQC55an 19SrggLFp8k=&dist_id=918&channel=ssqfc3&CID=03_106881182_afeb5e07-200c-410f-baab-1e661ee3468b&AFID=354468_ (adobe_flash_setup.exe)

URL:

http://freechecknow.checkerweb.com/

Title:

“Avyukta-e-Call Dialer”

Web server:

Apache/2.2.3 (CentOS)

Related Domains

theupdateonline24.com

theupdateschecker.org

video-updater.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.