The domain www.fetch-files.com registered by Corp New Ventures Services was initially registered in July of 2015 through Moniker Online Services. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Portland, Oregon within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.
Registrant:
Corp New Ventures Services
Registrar:
PIPELINE DOMAINS, LLC
Server location:
Oregon, United States (US)
Create date:
Friday, July 31, 2015
Expires date:
Sunday, July 31, 2016
Updated date:
Friday, August 7, 2015
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.InstallPath.P, PUP.Installer.InstallPath.I, PUP.Installer.InstallPath.CC, PUP.Installer.DOZDEKORUM.I, PUP.Installer.DOZDEKORUM.?, PUP.Amonetize.ShetefSolutionsConsulting1998.Bundler (M), PUP.Brightcircle.SVANTRANS.Installer (M), PUP.Amonetize.DOZDEKOR.Bundler (M), PUP.Amonetize.ITLGROUP.Bundler (M), PUP.Brightcircle.SVANTRAN.Installer (M), PUP.Amonetize.InstallP.Installer (M), PUP.Amonetize (M)
100.00%
ESET NOD32
Win32/Amonetize.BS (variant), Win32/Amonetize.BT (variant), Win32/Amonetize.BW (variant), Win32/Amonetize.BY (variant), Win32/Amonetize.BP (variant)
72.92%
Avira AntiVirus
ADWARE/Adware.Gen4, Adware/Amonetize.519376.14, ADWARE/Adware.Gen2
68.75%
AhnLab V3 Security
PUP/Win32.Amonetize
60.42%
Sophos
Generic PUA LC, Generic PUA ID, Generic PUA IH, Generic PUA JF, Generic PUA GB, Amonetize, Generic PUA DD, Generic PUA MN, Generic PUA JJ, Generic PUA HJ, Generic PUA EC
60.42%
McAfee
Artemis!53103EA16119, Artemis!B0C48DED580F, Artemis!7FF4C57021D8, Artemis!F323E8483AAD, Artemis!48AD411DF3EC, Artemis!7C254E3442E5, RDN/Generic PUP.x!c2r, Artemis!5E6E0A2C004A, Artemis!C55EDE5B7A50, Artemis!77F07E4E1B60
56.25%
Fortinet FortiGate
Riskware/Amonetize, Adware/Amonetize
54.17%
G Data
Win32.Adware.Amonetize, Gen:Variant.Graftor.161610, Gen:Variant.Adware.Graftor.161610, Gen:Variant.Adware.Strictor.68509
54.17%
AVG
Generic_r, Generic5
52.08%
Malwarebytes
PUP.Optional.Amonetize, PUP.Optional.Monetizer
50.00%
Baidu Antivirus
Adware.Win32.Amonetize
41.67%
Qihoo 360 Security
Win32/Trojan.Dropper.c9f, HEUR/Malware.QVM10.Gen, HEUR/QVM10.1.Malware.Gen, Win32/Application.0f2
41.67%
NANO AntiVirus
Riskware.Win32.Downware.dgibky, Riskware.Win32.Downware.dgsnhp, Riskware.Win32.Downware.dhaxhs, Riskware.Win32.Downware.difhzb
39.58%
MicroWorld eScan
Gen:Variant.Graftor.161218, Gen:Variant.Adware.Strictor.68509, Gen:Variant.Application.Jaik.4831, Gen:Variant.Adware.Graftor.161610, Gen:Variant.Application.Bundler.Amonetize.18
39.58%
Bitdefender
Gen:Variant.Graftor.161610, Gen:Variant.Adware.Graftor.161610, Gen:Variant.Adware.Strictor.68509, Gen:Variant.Application.Jaik.4831
39.58%
The domain www.fetch-files.com has been seen to resolve to the following 6 IP addresses.
ec2-54-214-33-160.us-west-2.compute.amazonaws.com
October 9, 2014
ec2-54-245-104-86.us-west-2.compute.amazonaws.com
October 9, 2014
File downloads found at URLs served by www.fetch-files.com.
Latest 30 of 177 download URLs
The following 7 files have been seen to comunicate with www.fetch-files.com in live environments.
URL:
http://www.fetch-files.com/
Google Analytics:
UA-19309218
Title:
“fetch-files.com - This website is for sale! - fetch-files Resources and Information.”
Description:
“This website is for sale! fetch-files.com is your first and best source for information about fetch-files . Here you will also find topics relating to issues of general interest. We hope you find what you are looking for!”
Network:
Amazon Web Services (AWS), running an EC2 instance
Related Domains