a.ad-sys.com

Methilonia ltd

Domain Information

The domain a.ad-sys.com registered by Methilonia ltd was initially registered in May of 2012 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dulles, Virginia within the United States which resides on the RIPE Network Coordination Centre network.
Registrar:
GODADDY.COM, LLC

Server location:
Virginia, United States (US)

Create date:
Tuesday, May 8, 2012

Expires date:
Sunday, May 8, 2016

Updated date:
Wednesday, June 26, 2013

ASN:
AS16265 LEASEWEB LeaseWeb B.V.

Root domain:

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Amonetizeltd.c, PUP.Installer.Amonetizeltd.g, PUP.Amonetize.Bundler (M), PUP.Bundlore.Bundler (M), PUP.Widdit.SimplyTe.Bundler (M), PUP.Solimba.Bechiro.Bundler (M), PUP.Adknowledge.WARPINST.Bundler (M), Win32.Generic, PUP.Outbrowse.Bundler (M), PUP.Solimba (M), PUP.Widdit (M), PUP.Adknowledge (M), PUP.installCore (M)
100.00%

McAfee
Artemis!F1362209B584, Artemis!39F95AC03112
4.17%

Malwarebytes
PUP.Optional.InstallMonetizer
4.17%

VIPRE Antivirus
Conduit, Amonetize
4.17%

ESET NOD32
Win32/Amonetize (variant)
4.17%

Trend Micro House Call
TROJ_GEN.F47V1114
2.08%

Dr.Web
Adware.Downware.1655
2.08%

K7 AntiVirus
Unwanted-Program
2.08%

avast!
Win32:Malware-gen
2.08%

Kaspersky
not-a-virus:Downloader.Win32.Agent
2.08%

Sophos
Amonetize
2.08%

IKARUS anti.virus
Win32.Malware
2.08%

The domain a.ad-sys.com has been seen to resolve to the following 2 IP addresses.

-entry
December 22, 2013

-entry
December 22, 2013

File downloads found at URLs served by a.ad-sys.com.

 
Latest 30 of 206 download URLs

The following 5 files have been seen to comunicate with a.ad-sys.com in live environments.

URL:
http://a.ad-sys.com/

SSL certificate subject:
CN=*.ad-sys.com, OU=Domain Control Validated - RapidSSL(R), OU=See www.rapidssl.com/resources/cps (c)13, OU=GT29815558, SERIALNUMBER=8YI3XLCkUHgH/SpNiUkb8tdoiEqMNPos

SSL certificate issuer:
CN=RapidSSL CA, O="GeoTrust, Inc.", C=US

Web server:
Apache

Compete.com:
US visitors:  575,019

Statistics are for the previous month.