home

c.script-version.org

Whois Privacy Corp.

Domain Information

Currently this domain has been known to host various forms of malware. The hosted servers are located in Dublin, Dublin City within Ireland which resides on the Amazon Technologies Inc. network.
Registrar:
TLD Registrar Solutions Ltd.

Server location:
Dublin City, Ireland (IE)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:
script-version.org

Whois:
3 script-version.org records

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP, Adware.Generic.AT (M)
96.00%

avast!
Win32:FakeDownload-F [PUP], Win32:FakeDownload-E [PUP], Win32:FakeDownload-G [PUP]
6.00%

McAfee
Program.MultiPlug-FXN
4.00%

Microsoft Security Essentials
Threat.Undefined
4.00%

AVG
Adware Generic6.AQHF, Adware Generic6.AQHY
4.00%

Emsisoft Anti-Malware
Gen:Variant.Razy.6292
4.00%

F-Secure
Variant.Razy.6292
4.00%

VIPRE Antivirus
Threat.5180739
4.00%

Norman
Gen:Variant.Razy.6292
2.00%

The domain c.script-version.org has been seen to resolve to the following 9 IP addresses.

54.72.130.67
ns1.ibspark.com
April 10, 2016

52.27.146.26
ec2-52-27-146-26.us-west-2.compute.amazonaws.com
July 19, 2015

52.26.71.172
ec2-52-26-71-172.us-west-2.compute.amazonaws.com
July 19, 2015

52.27.166.51
ec2-52-27-166-51.us-west-2.compute.amazonaws.com
July 19, 2015

52.24.161.49
ec2-52-24-161-49.us-west-2.compute.amazonaws.com
July 16, 2015

52.26.142.209
ec2-52-26-142-209.us-west-2.compute.amazonaws.com
July 1, 2015

52.11.167.137
ec2-52-11-167-137.us-west-2.compute.amazonaws.com
July 1, 2015

54.69.228.231
ec2-54-69-228-231.us-west-2.compute.amazonaws.com
May 21, 2015

54.149.241.47
ec2-54-149-241-47.us-west-2.compute.amazonaws.com
May 21, 2015

File downloads found at URLs served by c.script-version.org.

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=flo rida gdfr ft. sage the gemini audio&filesize=&product_title=flo rida gdfr ft. sage the gemini audio&installer_file_name=flo rida gdfr ft. sage the gemini audio&product_file_name=flo rida gdfr ft. sage the gemini audio.mp3&product_download_url=http://.../fil.php?s=srv0007&id=687474703a2f2f6d757a796b6f686f6c6963792e706c2f77702d636f6e74656e742f75706c6f6164732f323031332f30392f466c6f2d526964612d474446522d66742e2d536167652d5468652d47656d696e692d417564696f2e6d70332f53495a4533303433343734&t=Flo Rida Gdfr Ft Sage The Gemini Audio.mp3&tm=true&dl=1  (flo rida gdfr ft. sage the gemini audio.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name= Lee Seung Gi – Return&filesize=&product_title= Lee Seung Gi – Return&installer_file_name= Lee Seung Gi – Return&product_file_name= Lee Seung Gi – Return.mp3&product_download_url=http://.../fil.php?s=srv0004&id=2d34303337343733315f3137373139393634352f53495a45&t=Lee seung gi - Return.mp3&perm=go&dl=1  (-lee seung gi – return.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=jamie xx - girl&filesize=&product_title=jamie xx - girl&installer_file_name=jamie xx - girl&product_file_name=jamie xx - girl.mp3&product_download_url=http://.../fil.php?s=srv0007&id=687474703a2f2f7777772e626972702e666d2f6d757369632f706c61796c697374732f323031342f6d61792d323031342f3032392532302d2532304a616d696525323078782532302d2532304769726c2e6d70332f53495a4533393535373833&t=Jamie xx - Girl.mp3&tm=true&dl=1  (jamie xx - girl.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=joe jonas e demi lovato - this is me&filesize=&product_title=joe jonas e demi lovato - this is me&installer_file_name=joe jonas e demi lovato - this is me&product_file_name=joe jonas e demi lovato - this is me.mp3&product_download_url=http://.../fil.php?s=srv0007&id=687474703a2f2f393435666d2e636f6d2e62722f6c616e63616d656e746f732f6d70332f4a4f455f4a4f4e41535f455f44454d495f4c4f5641544f5f2d5f544849535f49535f4d452e6d70332f53495a4531343631373130&t=Joe jonas e demi lovato - This is me.mp3&tm=true&dl=1  (joe jonas e demi lovato - this is me.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=?????? ????? - ????? (????? ??????)&filesize=&product_title=?????? ????? - ????? (????? ??????)&installer_file_name=?????? ????? - ????? (????? ??????)&product_file_name=?????? ????? - ????? (????? ??????).mp3&product_download_url=http://.../download.php?id=ecf9591a0e108b15d848b96b20340fcc  (- (.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=don moen - god is able&filesize=&product_title=don moen - god is able&installer_file_name=don moen - god is able&product_file_name=don moen - god is able.mp3&product_download_url=http://.../fil.php?s=srv0007&id=687474703a2f2f7777772e74696e6c616e68766965742e6f72672f746e70612f6169722f323031302f30323237323831302f6e6861632f3032253230253230476f64253230697325323061626c652e6d70332f53495a45373535383530&t=Don moen - God is able.mp3&tm=true&dl=1  (don moen - god is able.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=don moen - i will sing&filesize=&product_title=don moen - i will sing&installer_file_name=don moen - i will sing&product_file_name=don moen - i will sing.mp3&product_download_url=http://.../fil.php?s=srv0007&id=687474703a2f2f746f726f6e746f796f756e676e616b2e636f6d2f6262732f7461626c652f636f6d6d756e5f302f75706c6f61642f446f6e2532304d6f656e2532302d2532304925323057696c6c25323053696e672e6d70332f53495a4534353938333438&t=Don moen - I will sing.mp3&tm=true&dl=1  (don moen - i will sing.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=don moen - firm foudation&filesize=&product_title=don moen - firm foudation&installer_file_name=don moen - firm foudation&product_file_name=don moen - firm foudation.mp3&product_download_url=http://.../fil.php?s=srv0007&id=687474703a2f2f7777772e74696e6c616e68766965742e6f72672f746e70612f6169722f323031302f30393034303531302f6e6861632f30352532305f4669726d5f666f756e646174696f6e2e6d70332f53495a4531343438373933&t=Don moen - Firm foudation.mp3&tm=true&dl=1  (don moen - firm foudation.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=don moen - o mighty cross&filesize=&product_title=don moen - o mighty cross&installer_file_name=don moen - o mighty cross&product_file_name=don moen - o mighty cross.mp3&product_download_url=http://.../fil.php?s=srv0007&id=687474703a2f2f7777772e74696e6c616e68766965742e6f72672f746e70612f6169722f323031302f30333230323131302f6e6861632f30382532302532304f2532306d696768747925323063726f73732e6d70332f53495a45373236383538&t=Don moen - O mighty cross.mp3&tm=true&dl=1  (don moen - o mighty cross.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=don moen - sendas Dios hara&filesize=&product_title=don moen - sendas Dios hara&installer_file_name=don moen - sendas Dios hara&product_file_name=don moen - sendas Dios hara.mp3&product_download_url=http://.../fil.php?s=srv0001&id=663764303461662f53495a4534323631383037&t=Don moen - Sendas dios hara.mp3&tm=true&dl=1  (don moen - sendas dios hara.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=don moen - jesus we enthrone you&filesize=&product_title=don moen - jesus we enthrone you&installer_file_name=don moen - jesus we enthrone you&product_file_name=don moen - jesus we enthrone you.mp3&product_download_url=http://.../fil.php?s=srv0007&id=687474703a2f2f7777772e61646f6e61692e65732f303039656e74726574656e696d69656e746f2f6d75736963612f646f6e5f6d6f656e2f4a657375732532307765253230656e7468726f6e65253230596f752e6d70332f53495a4531373430393739&t=Don moen - Jesus we enthrone you.mp3&tm=true&dl=1  (don moen - jesus we enthrone you.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=don moen - i worship you, almighty god&filesize=&product_title=don moen - i worship you, almighty god&installer_file_name=don moen - i worship you, almighty god&product_file_name=don moen - i worship you, almighty god.mp3&product_download_url=http://.../fil.php?s=srv0007&id=687474703a2f2f746f726f6e746f796f756e676e616b2e636f6d2f6262732f7461626c652f636f6d6d756e5f302f75706c6f61642f646f6e5f6d6f656e5f2d5f495f576f72736869705f596f752c5f416c6d69676874795f476f642e6d70332f53495a4533383037323332&t=Don moen - I worship you almighty god.mp3&tm=true&dl=1  (don moen - i worship you, almighty god.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=don moen - godisgoodallthetime - donmoen&filesize=&product_title=don moen - godisgoodallthetime - donmoen&installer_file_name=don moen - godisgoodallthetime - donmoen&product_file_name=don moen - godisgoodallthetime - donmoen.mp3&product_download_url=http://.../fil.php?s=srv0007&id=687474703a2f2f632d342d632e636f6d2f4d5033732f4d55534943414c5f5354594c45532f636f756e7472792d626c756567726173732f476f644973476f6f64416c6c54686554696d652d446f6e4d6f656e2e6d70332f53495a45323433333931&t=Don moen - Godisgoodallthetime donmoen.mp3&tm=true&dl=1  (don moen - godisgoodallthetime - donmoen.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name= Don Moen ? I Just Want To Be Where You Are - Don Moen&filesize=&product_title= Don Moen ? I Just Want To Be Where You Are - Don Moen&installer_file_name= Don Moen ? I Just Want To Be Where You Are - Don Moen&product_file_name= Don Moen ? I Just Want To Be Where You Are - Don Moen.mp3&product_download_url=http://mp3bank.info/.../fil.php?s=srv0004&id=31373436323839365f36313738323136392f53495a4534383634303730&t=Don moen i just want to be where you are - Don moen.mp3&perm=go&dl=1  (-don moen i just want to be where you are - don moen.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=don moen - Bueno es Dios, siempre fiel&filesize=&product_title=don moen - Bueno es Dios, siempre fiel&installer_file_name=don moen - Bueno es Dios, siempre fiel&product_file_name=don moen - Bueno es Dios, siempre fiel.mp3&product_download_url=http://.../fil.php?s=srv0001&id=396235313763302f53495a4535323633353135&t=Don moen - Bueno es dios siempre fiel.mp3&tm=true&dl=1  (don moen - bueno es dios, siempre fiel.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=Crazy In Love - 50 Shades Of Grey - Sofia Karlberg&filesize=&product_title=Crazy In Love - 50 Shades Of Grey - Sofia Karlberg&installer_file_name=Crazy In Love - 50 Shades Of Grey - Sofia Karlberg&product_file_name=Crazy In Love - 50 Shades Of Grey - Sofia Karlberg.mp3&product_download_url=http://.../fil.php?s=srvsc&id=6d4a594551496a3136344d432f53495a4533303439383437&t=Crazy in love - 50 shades of grey sofia karlberg.mp3&tm=true&dl=1  (crazy in love - 50 shades of grey - sofia karlberg.exe)

1 / 68      (Malware)
http://c.script-version.org/de/?q=hb/L5TZRjDReZyS2LFVyOwkjPoe GlC5xNXNxm4k5G9iHxbHtP6A50yNbfS 5hvi2j 5wOVRjzMu Q5u5WYO/ bwzqmOziqN59/kP48jNEjKFXM2IYohhKWwW3Nsym4H8p/NZPtx61ng77trwcpmKGz3aUKcWVCqjSN4Qp1GZ6BbVkuRAbIP9dYHlf5VJp5 roQud5Mk8tpBrizrBl5ziMtweybsl/ZewdBmdfeVzNAv0TapJp1pBcyO y7OggoFcr/BkqmWL8sH298XN5hq41BodQ81UvbZExqeUluIKV5NE5nE9M4S/.../bS59Y16L45  (musictime deluxe musictime deluxemusictime deluxemusictime deluxemusictime deluxeyou will also like )

3 / 68      (PUP)
http://c.script-version.org/de/?q=Lt09X6ae7/yH9g09/X52sM/oSwTx6iggLGgV4MrOU1W8iNN4EJuiRiIm0w7CD31FN7QGB6iTnDnKj11XnDSKzoMCJgLKTSYf/uSlRGVcZJl8PhbFSF/vREE7ybYurM2IozDs4 bW9MEkPRc64iOWHhnhEt/.../nxVq8i165lrAsVFh9AB  (shoot bubble deluxe for pc.exe)

1 / 68      (Malware)
http://c.script-version.org/v24377?self_redirect=0&product_name=The Sims 4 Full Version&filesize=798kB&filesizeBytes=798461&product_title=phpnuke.org - The Sims 4 Full Version&installer_file_name=the-sims-4-full-version&product_file_name=product&product_download_url=http://www.thesims.com/en-us/the-sims-4#/product&icon=http://media.phpnuke.org/000/973/.../fd5_ec8_100_70-the-sims-4.jpg  (the-sims-4-full-version.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=From Ashes To New - I Will Show You lyric Video&filesize=&product_title=From Ashes To New - I Will Show You lyric Video&installer_file_name=From Ashes To New - I Will Show You lyric Video&product_file_name=From Ashes To New - I Will Show You lyric Video.mp3&product_download_url=http://.../download.php?id=29ad105407a06c7a88ecbf2dfe1fb58a  (from ashes to new - i will show you lyric video.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=diplo ft. nicky da b - express yourself&filesize=&product_title=diplo ft. nicky da b - express yourself&installer_file_name=diplo ft. nicky da b - express yourself&product_file_name=diplo ft. nicky da b - express yourself.mp3&product_download_url=http://.../fil.php?s=srv0007&id=687474703a2f2f766f6c302e6d757369632d62617a6161722e70726f2f73616d706c65732f766f6c31302f3530382f3530383732322f707265766965772d626234323566336533352e6d70332e6d70332f53495a4531343431353736&t=Diplo ft nicky da b - Express yourself.mp3&tm=true&dl=1  (diplo ft. nicky da b - express yourself.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=High (feat. Skizzy Mars)- Cam Meekins&filesize=&product_title=High (feat. Skizzy Mars)- Cam Meekins&installer_file_name=High (feat. Skizzy Mars)- Cam Meekins&product_file_name=High (feat. Skizzy Mars)- Cam Meekins.mp3&product_download_url=http://.../download.php?id=84b1331e67a254dac912799740238e42  (high (feat. skizzy mars)- cam meekins.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=Aronchupa - I'm an albatraoz &filesize=&product_title=Aronchupa - I'm an albatraoz &installer_file_name=Aronchupa - I'm an albatraoz &product_file_name=Aronchupa - I'm an albatraoz .mp3&product_download_url=http://.../fil.php?s=srv0001&id=303564623835382f53495a4532363731373533&t=Aronchupa - Im an albatraoz.mp3&tm=true&dl=1  (aronchupa - i'm an albatraoz.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name= David Guetta Ft. Nicki Minaj & Afrojack - Hey Mama&filesize=&product_title= David Guetta Ft. Nicki Minaj & Afrojack - Hey Mama&installer_file_name= David Guetta Ft. Nicki Minaj & Afrojack - Hey Mama&product_file_name= David Guetta Ft. Nicki Minaj & Afrojack - Hey Mama.mp3&product_download_url=http://mp3bank.info/.../fil.php?s=srv0004&id=2d32383838343332395f3332363937383635352f53495a4533333136383932&t=David guetta ft nicki minaj afrojack - Hey mama.mp3&perm=go&dl=1  (-david guetta ft. nicki minaj.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=Showtek - We Like To Party (slander & Nghtmre Festival Trap Edit)&filesize=&product_title=Showtek - We Like To Party (slander & Nghtmre Festival Trap Edit)&installer_file_name=Showtek - We Like To Party (slander & Nghtmre Festival Trap Edit)&product_file_name=Showtek - We Like To Party (slander & Nghtmre Festival Trap Edit).mp3&product_download_url=http://.../fil.php?s=srvsc&id=6137515a4a524e7668655a392f53495a4534323733363331&t=Showtek - We like to party slander nghtmre festival trap edit.mp3&tm=true&dl=1  ({blocked}.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name= Tabb&Sound n Grace -Dach&filesize=&product_title= Tabb&Sound n Grace -Dach&installer_file_name= Tabb&Sound n Grace -Dach&product_file_name= Tabb&Sound n Grace -Dach.mp3&product_download_url=http://.../fil.php?s=srv0004&id=393132353930385f3334323336363933342f53495a4539313031313837&t=Tabbsound n grace - Dach.mp3&perm=go&dl=1  (-tabb.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=So Little Time Lyrics by Arkarna&filesize=&product_title=So Little Time Lyrics by Arkarna&installer_file_name=So Little Time Lyrics by Arkarna&product_file_name=So Little Time Lyrics by Arkarna.mp3&product_download_url=http://.../download.php?id=63ae548f858f77ab5b66d3776368e8a1  (so little time lyrics by arkarna.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=Faith no More Easy&filesize=&product_title=Faith no More Easy&installer_file_name=Faith no More Easy&product_file_name=Faith no More Easy.mp3&product_download_url=http://.../download.php?id=6ca26b27684f00b8edb2d0442c6a07fd  (faith no more easy.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=Bach - Marcello Adagio&filesize=&product_title=Bach - Marcello Adagio&installer_file_name=Bach - Marcello Adagio&product_file_name=Bach - Marcello Adagio.mp3&product_download_url=http://.../fil.php?s=srv0001&id=333865353863352f53495a4531313032323032&t=Bach - Marcello adagio.mp3&tm=true&dl=1  (bach - marcello adagio.exe)

1 / 68      (Malware)
http://c.script-version.org/v24387?self_redirect=0&product_name=Hay Siempre Un Sentimiento Muerto En Un Coraz?n Roto&filesize=&product_title=Hay Siempre Un Sentimiento Muerto En Un Coraz?n Roto&installer_file_name=Hay Siempre Un Sentimiento Muerto En Un Coraz?n Roto&product_file_name=Hay Siempre Un Sentimiento Muerto En Un Coraz?n Roto.mp3&product_download_url=http://.../fil.php?s=srvsc&id=527a4131535073586b4d59362f53495a4537343737373036&t=Hay Siempre Un Sentimiento Muerto En Un Corazon Roto.mp3&tm=true&dl=1  (hay siempre un sentimiento muerto en un corazn roto.exe)

 
Latest 30 of 66 download URLs

The following 146 files have been seen to comunicate with c.script-version.org in live environments.

TCP » 54.72.130.67:80
simplefilesupdater.exe (SimpleFiles Application by http://simple-files.com/)

TCP » 54.72.130.67:80
yourfileupdater.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
uninstall12590625.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
uninstall5322109.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
yourfileupdater.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
uninstall190602.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
yourfileupdater.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
googleupdate.exe

TCP » 54.72.130.67:80
browserserver.exe

TCP » 54.72.130.67:80
sm.exe (System Monitor)

TCP » 54.72.130.67:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.130.67:80
uninstall129231.exe (SimpleFiles Application by http://simple-files.com/)

TCP » 54.72.130.67:80
sfupdater.exe (SimpleFiles Application by http://simple-files.com/)

TCP » 54.72.130.67:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 54.72.130.67:80
TBNotifier.exe (Ask TBNotifier by APN)

TCP » 54.72.130.67:80
pepperzip.exe

TCP » 54.72.130.67:80
internetenhancer.exe (Internet Enhancer)

TCP » 54.72.130.67:80
ssn.exe (ssn)

TCP » 54.72.130.67:443
mintcast_updater_service.exe (AutomaticUpdater)

TCP » 54.72.130.67:80
yacqq.exe

 
Latest 20 of 158 files

URL:
http://c.script-version.org/

Google Analytics:
UA-48689684

Title:
“script-version.org”

Web server:
nginx

1337xproxy.in

1clickdownloader.com

1dschool.com

1flymusic.com

1freesoftwareonline.com

215115638.com

360adstrack.com

4god.biz

4shared.net

55tjk.com

acidco.net

adexprt.me

adjalauto.com

adsclever.com

adsobject.com

adsservingowl.biz

adtrkx.com

africa-2010.com

agamefix.com

aiprosoft.com

alawar.it

all-baza.com

alwayswindcat.com

aminst.net

angelijah.com

angelijah.net

antivirus-gratuit.pro

anyras.com

app-mak.com

appapia.com

30 of 618 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.