» www.egybest.me
Overview
Analysis
IPs Addresses (2)
Downloads (1)
Website Detail
Statistics
Related Domains (2)

www.egybest.me

WhoisGuard, Inc. (Proxy Registrant)

Domain Information

The domain www.egybest.me is registered by proxy through eNom, Inc.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Phoenix, Arizona within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).

Registrant:

WhoisGuard, Inc.

Registrar:

eNom, Inc.

Server location:

Arizona, United States (US)

ASN:

AS13335 CLOUDFLARENET - CloudFlare, Inc., US

Root domain:

Whois:

1 egybest.me record

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Agnitum Outpost

PUA.Amonetize

100.00%

Dr.Web

Trojan.Amonetize.341

100.00%

AhnLab V3 Security

PUP/Win32.Amonetiz

100.00%

ESET NOD32

Win32/Amonetize.CK (variant)

100.00%

AVG

Generic

100.00%

Reason Heuristics

PUP.Installer.AMGRUP.t

100.00%

avast!

Win32:Adware-gen [Adw]

100.00%

Emsisoft Anti-Malware

Gen:Variant.Adware.Netfilter

100.00%

F-Secure

Gen:Variant.Adware.Netfilter.2

100.00%

Lavasoft Ad-Aware

Gen:Variant.Adware.Netfilter.2

100.00%

McAfee

Trojan.Artemis!DE732793E0EA

100.00%

Norman

Gen:Variant.Adware.Netfilter.2

100.00%

MicroWorld eScan

Gen:Variant.Adware.Netfilter.2

100.00%

Trend Micro House Call

TROJ_GEN.R08NH09LM14

100.00%

Bitdefender

Gen:Variant.Adware.Netfilter.2

100.00%

The domain www.egybest.me has been seen to resolve to the following 2 IP addresses.

April 13, 2016

April 13, 2016

File downloads found at URLs served by www.egybest.me.

20 / 68 (Adware)

http://www.egybest.me/.../????_????_?????_?????_????.html (combat.arms.framework.aimbot__6629_i1433384134_il25049.exe)

URL:

http://www.egybest.me/

Google Analytics:

UA-9923694

Title:

“تحميل و مشاهدة افلام HD اون لاين | EgyBest”

Description:

“تحميل و مشاهدة افلام HD اون لاين مجانا و روابط سريعة و مباشرة. افضل الافلام الاجنبية بجودة HD BluRay 1080p 720p حصريا على موقع ايجي بست”

SSL certificate subject:

CN=sni38463.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:

CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:

cloudflare-nginx

Facebook:

Likes: 10

Shares: 34

Comments: 7

Statistics are for the previous month.

Related Domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.