home

www.funnier-download.com

ziv dascalu

Domain Information

The domain www.funnier-download.com registered by ziv dascalu was initially registered in November of 2014 through GANDI SAS. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrar:
GANDI SAS

Server location:
Virginia, United States (US)

Create date:
Sunday, November 30, 2014

Expires date:
Monday, November 30, 2015

Updated date:
Sunday, November 30, 2014

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Root domain:
funnier-download.com

Whois:
1 funnier-download.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

AhnLab V3 Security
PUP/Win32.Amonetiz, PUP/Win32.Amonetize
100.00%

Avira AntiVirus
ADWARE/Adware.Gen4, Adware/Amonetize.314368.1, Adware/Amonetize.575168.3, Adware/Amonetize.576200.16, Adware/Amonetize.576192.24
92.86%

Reason Heuristics
PUP.Installer.SVANTRANS.m, PUP.Installer.ITLGROUP.?, PUP.Installer.AMGRUP.AA, PUP.Installer.AMGRUP.n, PUP.Installer.AMGRUP.?
92.86%

ESET NOD32
Win32/Amonetize.CH (variant), Win32/Amonetize.CK (variant), Win32/Amonetize.DE (variant)
85.71%

McAfee
W32/Virut.n.gen, Artemis!092124BC2924, Artemis!FEC98D512BE4, Trojan.Artemis!DE732793E0EA, Artemis!02A8E09A32D8, Artemis!8A1F404C4B83, Artemis!F23EBE58EE48, Artemis!A215709E1BCE
85.71%

Trend Micro House Call
Suspicious_GEN.F47V1204, TROJ_GEN.R08NH09LM14, Suspicious_GEN.F47V1224, TROJ_GEN.R047H07LU14, Suspicious_GEN.F47V1230, Suspicious_GEN.F47V1231
71.43%

Sophos
Generic PUA KI, Generic PUA IF, Generic PUA GD, Generic PUA GJ, Generic PUA JG, Generic PUA HM, Amonetize, Generic PUA JK
71.43%

K7 AntiVirus
Unwanted-Program , Trojan
57.14%

AVG
Generic
57.14%

Qihoo 360 Security
HEUR/QVM10.1.Malware.Gen
57.14%

avast!
Win32:Vitro, Win32:Adware-gen [Adw], Win32:Malware-gen, Win32:PUP-gen [PUP]
57.14%

Fortinet FortiGate
W32/Virut.CE, Adware/Amonetize, Riskware/Amonetize
50.00%

NANO AntiVirus
Riskware.Win32.Amonetize.djsswg, Riskware.Win32.Amonetize.dkinix, Riskware.Win32.Amonetize.dlgsuu, Trojan.Win32.Adfltnet.dlwosi
50.00%

Dr.Web
Trojan.Amonetize.279, Trojan.Amonetize.341, Trojan.Adfltnet.71
50.00%

MicroWorld eScan
Win32.Virtob.Gen.12, Gen:Variant.Adware.Netfilter.2, Gen:Variant.Application.Bundler.Amonetize.21
42.86%

The domain www.funnier-download.com has been seen to resolve to the following IP address.

54.243.123.240
ec2-54-243-123-240.compute-1.amazonaws.com
January 18, 2015

File downloads found at URLs served by www.funnier-download.com.

30 / 68    (Adware)
http://www.funnier-download.com/tdownload.php?s1=62c136adea52ad906c75f1fae8edd7bc2c00038d&t1=1417727127&myref=dm&campid=8173&version=1.1.5.26&instid[appname]=Windows Loader 2.3.0 By Daz&instid[appsetupurl]=https://copy.com/.../Windows Loader Registry Patch.exe  (watremover2.2.6setup__9029_i1417627599_il35523.exe)

10 / 68    (Adware)
http://www.funnier-download.com/download.php?campid=11476&version=1.1.5.26&instid[appname]=nuevo_mix_prince_royce_2014.mp3&instid[appsetupurl]=http://static.convertonmp3.com/downloads/08/3b/nuevo_mix_prince_royce_2014.mp3?h=t5l-mzNICcGa0orGwkNzVw&e=1420198897&instid[cmdline]=%temp%/Download&instid[appimageurl]=http://youtubemp4s.com/apple-touch-icon.png&prefix=nuevo.mix.prince.royce.2014.mp3&instid[thankyoupage]=http://convertonmp3.com  (heroes and generals hack october 2014 no survey no password__10967_i1436325746_il311680.exe)

12 / 68    (Adware)
http://www.funnier-download.com/download.php?campid=11476&version=1.1.5.26&instid[appname]=Romeo_Santos_Propuesta_Indecente.mp3&instid[appsetupurl]=http://static.convertonmp3.com/downloads/ae/4a/Romeo_Santos_Propuesta_Indecente.mp3?h=RsVg2KuhgFsNNs14-Rrbcg&e=1419982657&instid[cmdline]=%temp%/Download&instid[appimageurl]=http://youtubemp4s.com/apple-touch-icon.png&prefix=Romeo.Santos.Propuesta.Indecente.mp3&instid[thankyoupage]=http://convertonmp3.com  (file.downloader__9581_il263.exe)

14 / 68    (Adware)
http://www.funnier-download.com/download.php?version=1.1.5.26&campid=5160&instid[appsetupurl]=http://bit.ly/1w1T2eJ&instid[cmdline]=/S&instid[appimageurl]=http://oi59.tinypic.com/2ew18b5.jpg&prefix=Google Play Gift Card Code Generator Tool&instid[appname]=Google Play Gift Card Code Generator Tool&instid[thankyoupage]=http://.../thank-you.html&ti1=4786727  (facebook hack tool march 201 downloader__3687_i1420709535_il377953.exe)

24 / 68    (PUP)
http://www.funnier-download.com/download.php?campid=11476&version=1.1.5.26&instid[appname]=OSMANI_GARCIA_feat_PITBULL_SENSATO_El_Taxi_Official_Video_HD.mp3&instid[appsetupurl]=http://static.convertonmp3.com/downloads/f5/70/OSMANI_GARCIA_feat_PITBULL_SENSATO_El_Taxi_Official_Video_HD.mp3?h=nzTZ-FH85miu8FJxfdIZPg&e=1421335961&instid[cmdline]=%temp%/Download&instid[appimageurl]=http://youtubemp4s.com/apple-touch-icon.png&prefix=OSMANI.GARCIA.feat.PITBULL.SENSATO.El.Taxi.Official.Video.HD.mp3&instid[thankyoupage]=http://convertonmp3.com  ({blocked}.exe)

22 / 68    (Adware)
http://www.funnier-download.com/download.php?version=1.1.5.26&campid=6629&instid[appname]=Rhythm.rascal.3.2.crack.download.keygen&instid[appsetupurl]=http://download.freesoftindex.com/software/SoundCloudDownloader_Setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.freesoftindex.com/img/150x150/soundcloud.png&prefix=Rhythm.rascal.3.2.crack.download.keygen&instid[thankyoupage]=http://.../finish.php&ti1=10196-0-soundcloud-b:chrome-t:29  (moviestarplanet hack rar downloader__3687_i1430634423_il643191.exe)

8 / 68      (Adware)
http://www.funnier-download.com/download.php?version=1.1.5.26&campid=5160&instid[appsetupurl]=http://bitly.com&instid[cmdline]=/S&instid[appimageurl]=http://oi59.tinypic.com/2ew18b5.jpg&prefix=MinecraftForceopAdminhack&instid[appname]=MinecraftForceopAdminhack&instid[thankyoupage]=http://.../thank-you.html&ti1=5021114  (the sims 4 installer__5160_i1426826851_il7522.exe)

10 / 68    (Adware)
http://www.funnier-download.com/tdownload.php?s1=7961d09a8c993e55c5b759d7f58b8ee57432bd87&t1=1420381505&myref=dm&campid=10967&version=1.1.5.26&instid[appname]=Adobe Creative Cloud keygen DEC 2014 crack free download new&instid[appsetupurl]=http://files.jymbi.in/hck/Setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://s3.amazonaws.com/.../downloadall.png&prefix=Adobe Creative Cloud keygen DEC 2014 crack free download new&AMt=1420381323993&AMh=7fn2b4gxIWmb09igS84d2Ie2zMXUjQgM3KAUfCzDKPbVydo5QZMSwcespsmVBC1AtdCH3iBb48loOaw3  (heroes and generals hack october 2014 no survey no password__10967_i1436325746_il311680.exe)

10 / 68    (Adware)
http://www.funnier-download.com/tdownload.php?s1=541e09fd405925227e13172544cf041128d9507a&t1=1420507309&myref=dm&campid=6196&version=1.1.5.26&instid[appname]=8 Ball Pool Hack Tool Setup&instid[appsetupurl]=http://.../wp-content/uploads/2014/04/8 Ball Pool Hack Tool Setup.zip&instid[appimageurl]=http://www.hilekolik.com/wp-content/uploads/2013/02/8-ball-pool-120x120.jpg&prefix=8BallPoolHackToolSetup&instid[thankyoupage]=http://.../thank-you&AMt=1420507136434&AMh=7fn2b4gxIWmb09igS84d2Ie2zMXUjQgM3KAUfCzDKPbVydo5QZMSwcespsmVBC1AtdCH3iBb48loOaw3  (heroes and generals hack october 2014 no survey no password__10967_i1436325746_il311680.exe)

10 / 68    (Adware)
http://www.funnier-download.com/tdownload.php?s1=d6d5d2724a5de89c84ca7890d3ff933866862a50  (heroes and generals hack october 2014 no survey no password__10967_i1436325746_il311680.exe)

12 / 68    (Adware)
http://www.funnier-download.com/download.php?campid=10735&version=1.1.5.26&instid[appname]=Steam_Sale.mp4&instid[appsetupurl]=http://youtubemp4s.com/downloads/link/129188?h=-kT8E4B5qi4pYFBS3_fxlQ&e=1419883756&instid[cmdline]=%temp%/Download&instid[appimageurl]=http://youtubemp4s.com/apple-touch-icon.png&prefix=Steam.Sale.mp4&instid[thankyoupage]=http://youtubemp4s.com  (brazzersporngenerator__5160_i1434478919_il174451.exe)

20 / 68    (Adware)
http://www.funnier-download.com/download.php?version=1.1.5.26&campid=8497&instid[appname]=Internet Download Manager&instid[appsetupurl]=http://.../idman619build9.exe  (setup.exe)

19 / 68    (Adware)
http://www.funnier-download.com/download.php?version=1.1.5.26&campid=5160&instid[appsetupurl]=https://www.google.com/fht&instid[cmdline]=/S&instid[appimageurl]=http://oi59.tinypic.com/2ew18b5.jpg&prefix=Update File&instid[appname]=Update File&instid[thankyoupage]=http://.../thank-you.html&ti1=5116779  (dayz standalone steam keys generator v__5160_i1429919362_il13572.exe)

19 / 68    (Adware)
http://www.funnier-download.com/download.php?version=1.1.5.26&campid=5160&instid[appsetupurl]=http://www.google.com/HL&instid[cmdline]=/S&instid[appimageurl]=http://oi59.tinypic.com/2ew18b5.jpg&prefix=Update File v1.0.5&instid[appname]=Update File v1.0.5&instid[thankyoupage]=http://.../thank-you.html&ti1=5118760  (dayz standalone steam keys generator v__5160_i1429919362_il13572.exe)

9 / 68      (Adware)
http://www.funnier-download.com/download.php?version=1.1.5.26&campid=5160&instid[appsetupurl]=http://www.mediafire.com/download/aeyh8pq7jsnorbv/DoulCi Bypass Server - [ OFFICIAL ].rar&instid[cmdline]=/S&instid[appimageurl]=http://oi59.tinypic.com/2ew18b5.jpg&prefix=Icloud remover&instid[appname]=Icloud remover&instid[thankyoupage]=http://.../thank-you.html&ti1=5028764  (setup plants vs. zombies garden warfare full version download by r.g v1.07__6431_il376.exe)

7 / 68      (Adware)
http://www.funnier-download.com/download.php?version=1.1.5.26&campid=5160&instid[appsetupurl]=http://bitly.com&instid[cmdline]=/S&instid[appimageurl]=http://oi59.tinypic.com/2ew18b5.jpg&prefix=ListiaCreditshack&instid[appname]=ListiaCreditshack&instid[thankyoupage]=http://.../thank-you.html&ti1=4901422  (filedownloader__9581_il129.exe)

14 / 68    (Adware)
http://www.funnier-download.com/download.php?version=1.1.6.20&campid=6701&instid[appname]=DVMediaPlayer&instid[appsetupurl]=http://download.freesoftindex.com/software/DamnVid_Setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.freesoftindex.com/img/150x150/damnvid.png&prefix=DVMediaPlayer&instid[thankyoupage]=http://.../finish.php&ti1=9760-3-damnvid-b:chrome  (nitro pro 9.0.7.5 serial key _ crack__7457_il24396_3.exe)

19 / 68    (Adware)
http://www.funnier-download.com/download.php?version=1.1.5.26&campid=6629&instid[appname]=MediaPlayerSetup.7.3.3&instid[appsetupurl]=http://download.freesoftindex.com/software/DamnVid_Setup.exe&instid[cmdline]=&instid[appimageurl]=http://download.freesoftindex.com/img/filetypes/setup.png&prefix=MediaPlayerSetup.7.3.3&instid[thankyoupage]=http://.../finish.php&ti1=8833-0-damnvid-b:chrome-t:40  (kmspico 9.2.4__7628_il64.exe)

19 / 68    (Adware)
http://www.funnier-download.com/tdownload.php?s1=3df45d7ab7e95c830d397df0aa05fb936c501d40&t1=1419273071&myref=dm&campid=2309&version=1.1.5.26&instid[appname]=Anti-Trojan Elite&instid[appsetupurl]=http://www.remove-trojan.com/download/rtesetup.exe&instid[cmdline]=/S&instid[appimageurl]=http://.../1gBZliu&prefix=Anti.Trojan.Elite&AMt=1419272887850&AMh=7fn2b4gxIWmb09igS84d2Ie2zMXUjQgM3KAUfCzDKPbVydo5QZMSwcespsmVBC1AtdCH3iBb48loOaw3  (kmspico 9.2.4__7628_il64.exe)

The following file have been seen to comunicate with www.funnier-download.com in live environments.

TCP » 54.243.123.240:80
new_chrome.exe (Google Chrome by Google)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.