The domain getfile.eu is registered by proxy through Domain Robot. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Beaumaris, Victoria within Australia which resides on the Asia Pacific Network Information Centre network.
Registrant:
NOT DISCLOSED!
Server location:
Victoria, Australia (AU)
ASN:
AS133618 TRELLIAN-AS-AP Trellian Pty. Limited,AU
Scanner detections:
Detections (95% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.CORLEONGROUP.I, PUP.CORLEONGROUP.EE, PUP.CORLEONGROUP.?, PUP.CORLEONGROUP.N, PUP.CORLEONGROUP.S, PUP.InstallMonster.CORLEONGROUP (M), PUP.InstallMonster.CORLEONG (M), Threat.Win.Reputation.IMP, PUP.InstallMonster (M)
87.80%
ESET NOD32
Win32/InstallMonstr.CG potentially unwanted application, Win32/InstallMonstr.K potentially unwanted application, Win32/InstallMonstr.AC potentially unwanted application, Win32/InstallMonstr.C potentially unwanted application, Win32/InstallMonstr.H potentially unwanted application, Win32/InstallMonstr.M potentially unwanted application
26.83%
avast!
InstallMonstr-DY [PUP], InstallMonstr-AV [PUP], Win32:InstallMonstr-DK [PUP], Win32:InstallMonstr-AS [PUP], Win32:InstallMonstr-DL [PUP]
21.95%
VIPRE Antivirus
Threat.4845009, Threat.4150696
19.51%
Norman
InstallMonster.B, InstallMonstr.END, Gen:Variant.Strictor.49307, Gen:Variant.Adware.Symmi.26393, Gen:Variant.Zusy.81977
14.63%
Dr.Web
Trojan.InstallMonster.51, Trojan.InstallMonster.19, Trojan.InstallMonster.89, Trojan.InstallMonster.21, Trojan.InstallMonster.38
12.20%
Avira AntiVirus
APPL/InstallMonst.QA, APPL/InstallMonster.Gen, ADWARE/Adware.Gen
12.20%
Emsisoft Anti-Malware
Gen:Variant.Adware.Symmi.41729, Gen:Adware.SMSHoax, Gen:Variant.Strictor.49307, Gen:Variant.Adware.Strictor.40958
12.20%
MicroWorld eScan
Gen:Variant.Adware.Symmi.41729, Gen:Adware.SMSHoax.7, Gen:Variant.Strictor.49307
9.76%
NANO AntiVirus
Trojan.Win32.InstallMonster.dbipfy, Trojan.Win32.Monstruos.cukizd, Trojan.Win32.ArchSMS.dmnyfy
9.76%
Bitdefender
Gen:Variant.Adware.Symmi.41729, Gen:Adware.SMSHoax.7, Gen:Variant.Strictor.49307
9.76%
Agnitum Outpost
Riskware.Agent, PUA.Downloader, Trojan.Agent
9.76%
G Data
Gen:Variant.Adware.Symmi.41729, Gen:Adware.SMSHoax, Gen:Variant.Strictor.49307
9.76%
Rising Antivirus
PE:Malware.InstallMonstr!6.38, PE:Adware.SMSHoax!6.1370, PE:Trojan.StartPage!6.216
9.76%
AVG
Trojan horse FakeAV.ASLA, Trojan horse Generic34.AYMK, PSW.Banker6, Adware BundleApp.LY
9.76%
The domain getfile.eu has been seen to resolve to the following 5 IP addresses.
ip-70.32.1.32.hosted.by.gigenet.com
September 14, 2016
lb-182-251.above.com
October 29, 2015
File downloads found at URLs served by getfile.eu.
Latest 30 of 46 download URLs
The following 41 files have been seen to comunicate with getfile.eu in live environments.
Google Analytics:
UA-48689684
Title:
“getfile.eu - getfile Resources and Information.”
Description:
“getfile.eu is your first and best source for all of the information you’re looking for. From general topics to more of what you would expect to find here, getfile.eu has it all. We hope you find what you are searching for!”
Web server:
Apache/2.2.22 (Debian)
Related Domains
30 of 618 related domains