The domain get.file17desktop.com registered by OutBrowse was initially registered in May of 2014 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrar:
GODADDY.COM, LLC
Server location:
Virginia, United States (US)
Create date:
Sunday, May 25, 2014
Expires date:
Wednesday, May 25, 2016
Updated date:
Tuesday, June 16, 2015
ASN:
AS14618 AMAZON-AES - Amazon.com, Inc., US
Google Safe Browsing:
unwanted
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.OUTBROWSE.M, PUP.OUTBROWSE.U, PUP.ClickYes.M, PUP.TikiTaka.M, PUP.YesApps.Z, PUP.SalyutemPlyus.M, PUP.ClickToStart, PUP.Outbrowse.StartNow.Bundler (M), PUP.Outbrowse.ClickYes.Bundler (M), PUP.Outbrowse.Bundler (M), PUP.Outbrowse.Salyutem.Bundler (M), PUP.Outbrowse.ClickToS.Bundler (M), PUP.Outbrowse (M)
100.00%
Malwarebytes
PUP.Optional.Outbrowse, PUP.Optional.OutBrowse, PUP.Optional.ClickYes
56.25%
AVG
Generic, Downloader, Potentially harmful program Downloader.CVZ
56.25%
McAfee
Adware-OutBrowse.b, Adware-OutBrowse.c, Program.Adware-OutBrowse.c
43.75%
VIPRE Antivirus
Trojan.Win32.Generic, Threat.4784459, Threat.4150696
43.75%
Dr.Web
Adware.Downware.2081, Trojan.OutBrowse.5, infected with Trojan.OutBrowse.37, Trojan.OutBrowse.51
37.50%
Avira AntiVirus
APPL/OutBrowse.lwasp, APPL/Downloader.Gen, APPL/Outbrowse.Gen
37.50%
AhnLab V3 Security
PUP/Win32.OutBrowse, PUP/Win32.Eorezo
37.50%
Trend Micro House Call
Suspici.079D5EA7, Suspici.7B6A9C43, Suspici.0C6DACD5, Suspici.D7386B62, Suspici.202D3B0F
37.50%
ESET NOD32
Win32/OutBrowse.AY potentially unwanted application, Win32/OutBrowse.BK potentially unwanted application, Win32/OutBrowse.BO potentially unwanted application
37.50%
K7 AntiVirus
Unwanted-Program
31.25%
Agnitum Outpost
Trojan.Packed, PUA.OutBrowse
25.00%
G Data
Win32.Application.Outbrowse, MemScan:Application.Bundler.Outbrowse
25.00%
IKARUS anti.virus
PUA.OutBrowse, Trojan-Clicker.Win32.Agent
25.00%
Kaspersky
not-a-virus:AdWare.Win32.OutBrowse
18.75%
The domain get.file17desktop.com has been seen to resolve to the following 5 IP addresses.
ec2-54-175-102-143.compute-1.amazonaws.com
May 16, 2016
ec2-50-17-254-254.compute-1.amazonaws.com
January 28, 2016
ec2-23-21-196-192.compute-1.amazonaws.com
January 28, 2016
ec2-23-21-166-12.compute-1.amazonaws.com
December 31, 2014
ec2-50-19-236-133.compute-1.amazonaws.com
November 2, 2014
File downloads found at URLs served by get.file17desktop.com.
URL:
http://get.file17desktop.com/
Network:
Amazon Web Services (AWS), running an EC2 instance
Web server:
Microsoft-IIS/8.0 (ASP.NET) (Version: 4.0.30319)