The domain byvue.com is registered by proxy through DOMAIN.COM, LLC and was originally registered in March of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Virginia, United States (US)
Friday, March 16, 2012
Wednesday, March 16, 2016
Tuesday, March 03, 2015
AS14618 AMAZON-AES - Amazon.com, Inc.,US
Detections (82% detected)
Win32.Sector.21, infected with BackDoor.Infector.133, riskware program Program.Unwanted.733
Qihoo 360 Security
PUA 'Install Core Click run software'
K7 Gateway Antivirus
a variant of f4a269982dfe7c9d9d223f6c2d9ad291a767a9b2, a variant of 34e451057c8869615669b268a55ec20b119406d6, a variant of 524b82eecbe6fb6c67eaddae41fcf0595f2a0546
The domain byvue.com has been seen to resolve to the following 4 IP addresses.
May 30, 2014
May 1, 2014
May 1, 2014
File downloads found at URLs served by byvue.com.
The following file have been seen to comunicate with byvue.com in live environments.
“Neverblue - Lead Generation | Client Acquisition | Mobile Advertising | Performance Marketing”
Amazon Web Services (AWS), running an EC2 instance
SSL certificate subject:
CN=byvue.com, OU=Domain Control Validated
SSL certificate issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc."
Statistics above are for the previous month of November 2016.