dds10.fb-hosting-apps.com

Whois Privacy Corp.

Domain Information

The domain dds10.fb-hosting-apps.com registered by Whois Privacy Corp. was initially registered in January of 2013 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrar:
INTERNET.BS CORP.

Server location:
Virginia, United States (US)

Create date:
Saturday, January 05, 2013

Expires date:
Monday, January 05, 2015

Updated date:
Thursday, December 05, 2013

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.

Scanner detections:
Detections  (89% detected)

Scan engine
Details
Detections

Avira AntiVirus
ADWARE/Adware.Gen2
88.89%

Malwarebytes
PUP.Optional.Amonetize.A
83.33%

Trend Micro House Call
TROJ_GEN.F47V0324, TROJ_GEN.F47V0327, TROJ_GEN.R0CBH05CV14, TROJ_GEN.F47V0330, TROJ_GEN.R0CBH07D514, TROJ_GEN.F47V0406, TROJ_GEN.F47V0407
83.33%

AhnLab V3 Security
PUP/Win32.Amonetiz
83.33%

McAfee
Artemis!AD1C27B3C61F, Artemis!E4BB4EE78BBB, RDN/Generic PUP.x!bxh, Artemis!31EAC5D0E8D7, Artemis!AAD320A99B7B, Artemis!7860B0534C10, Artemis!0EAAA6E39EAF, Artemis!8BACD444878F, Artemis!E73EFB444A18, Artemis!9D6078C1BB3F, Artemis!1D86C2A7D656
77.78%

Sophos
Amonetize
77.78%

McAfee Web Gateway
Artemis!AD1C27B3C61F, Artemis!E4BB4EE78BBB, RDN/Generic PUP.x!bxh, Artemis!31EAC5D0E8D7, Artemis!AAD320A99B7B, Artemis!7860B0534C10
77.78%

ESET NOD32
Win32/Amonetize.AJ (variant)
77.78%

Kaspersky
not-a-virus:HEUR:AdWare.Win32.Amonetize, not-a-virus:AdWare.Win32.Amonetize
72.22%

avast!
Win32:Amonetize-AD [PUP], Win32:Amonetize-AF [PUP], Win32:Amonetize-AK [PUP], Win32:Amonetize-AM [PUP], Win32:Amonetize-Y [PUP]
72.22%

Fortinet FortiGate
Riskware/Amonetize, Adware/Amonetize
66.67%

Qihoo 360 Security
Win32/Virus.Adware.932
66.67%

Baidu Antivirus
Adware.Win32.Amonetize
66.67%

Dr.Web
Adware.Downware.2467, Adware.Downware.2453, Adware.Downware.2250
61.11%

Reason Heuristics
Threat.Win.Reputation.IMP, (M), PUP.Win.Reputation
55.56%

The domain dds10.fb-hosting-apps.com has been seen to resolve to the following 2 IP addresses.

ec2-54-235-189-159.compute-1.amazonaws.com
April 26, 2014

ec2-54-225-181-84.compute-1.amazonaws.com
April 26, 2014

File downloads found at URLs served by dds10.fb-hosting-apps.com.

 
Latest 30 of 86 download URLs

The following 5 files have been seen to comunicate with dds10.fb-hosting-apps.com in live environments.

URL:
http://dds10.fb-hosting-apps.com/

Title:
“Connect”

Description:
“Connect is a map and address book of all your friends. It syncs your contacts from many sources (Facebook, LinkedIn, Instagram, Twitter, Foursquare, your iPhone, and more) and lets you know when they travel and check in nearby.”

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Apache