www.funnier-download.com

ziv dascalu

Domain Information

The domain www.funnier-download.com registered by ziv dascalu was initially registered in November of 2014 through GANDI SAS. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrar:
GANDI SAS

Server location:
Virginia, United States (US)

Create date:
Sunday, November 30, 2014

Expires date:
Monday, November 30, 2015

Updated date:
Sunday, November 30, 2014

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

AhnLab V3 Security
PUP/Win32.Amonetiz, PUP/Win32.Amonetize
100.00%

Avira AntiVirus
ADWARE/Adware.Gen4, Adware/Amonetize.314368.1, Adware/Amonetize.575168.3, Adware/Amonetize.576200.16, Adware/Amonetize.576192.24
92.86%

Reason Heuristics
PUP.Installer.SVANTRANS.m, PUP.Installer.ITLGROUP.?, PUP.Installer.AMGRUP.AA, PUP.Installer.AMGRUP.n, PUP.Installer.AMGRUP.?
92.86%

ESET NOD32
Win32/Amonetize.CH (variant), Win32/Amonetize.CK (variant), Win32/Amonetize.DE (variant)
85.71%

McAfee
W32/Virut.n.gen, Artemis!092124BC2924, Artemis!FEC98D512BE4, Trojan.Artemis!DE732793E0EA, Artemis!02A8E09A32D8, Artemis!8A1F404C4B83, Artemis!F23EBE58EE48, Artemis!A215709E1BCE
85.71%

Trend Micro House Call
Suspicious_GEN.F47V1204, TROJ_GEN.R08NH09LM14, Suspicious_GEN.F47V1224, TROJ_GEN.R047H07LU14, Suspicious_GEN.F47V1230, Suspicious_GEN.F47V1231
71.43%

Sophos
Generic PUA KI, Generic PUA IF, Generic PUA GD, Generic PUA GJ, Generic PUA JG, Generic PUA HM, Amonetize, Generic PUA JK
71.43%

K7 AntiVirus
Unwanted-Program , Trojan
57.14%

AVG
Generic
57.14%

Qihoo 360 Security
HEUR/QVM10.1.Malware.Gen
57.14%

avast!
Win32:Vitro, Win32:Adware-gen [Adw], Win32:Malware-gen, Win32:PUP-gen [PUP]
57.14%

Fortinet FortiGate
W32/Virut.CE, Adware/Amonetize, Riskware/Amonetize
50.00%

NANO AntiVirus
Riskware.Win32.Amonetize.djsswg, Riskware.Win32.Amonetize.dkinix, Riskware.Win32.Amonetize.dlgsuu, Trojan.Win32.Adfltnet.dlwosi
50.00%

Dr.Web
Trojan.Amonetize.279, Trojan.Amonetize.341, Trojan.Adfltnet.71
50.00%

MicroWorld eScan
Win32.Virtob.Gen.12, Gen:Variant.Adware.Netfilter.2, Gen:Variant.Application.Bundler.Amonetize.21
42.86%

The domain www.funnier-download.com has been seen to resolve to the following IP address.

ec2-54-243-123-240.compute-1.amazonaws.com
January 18, 2015

File downloads found at URLs served by www.funnier-download.com.

10 / 68    (Adware)
http://www.funnier-download.com/tdownload.php?s1=d6d5d2724a5de89c84ca7890d3ff933866862a50  (heroes and generals hack october 2014 no survey no password__10967_i1436325746_il311680.exe)

The following file have been seen to comunicate with www.funnier-download.com in live environments.