The domain filesrv1.com registered by Corp New Ventures Services was initially registered in February of 2016 through ENOM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in West Chester, Ohio within the United States which resides on the Level 3 Communications, Inc. network.
Registrant:
Corp New Ventures Services
Registrar:
BLUE ANGEL DOMAINS LLC
Server location:
Ohio, United States (US)
Create date:
Tuesday, February 9, 2016
Expires date:
Thursday, February 9, 2017
Updated date:
Tuesday, February 16, 2016
ASN:
AS30152 BEYOND-HOSTING - Beyond Hosting, LLC,US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.InstallMetrix.FileVerified (M), PUP.InstallMetrix.FileVeri (M), PUP.InstallMetrix.FileVeri.Installer (M), PUP.InstallMetrix (M)
100.00%
avast!
Win32:Rootkit-gen [Rtk], Win32:Malware-gen
34.00%
AVG
Generic6, Adware Generic5.CHSX.dropper
34.00%
VIPRE Antivirus
Threat.5063683, Threat.4150696
34.00%
Dr.Web
Trojan.Domaiq.110, Trojan.Domaiq.16
34.00%
K7 AntiVirus
Adware
34.00%
NANO AntiVirus
Riskware.Win32.InstallMonster.dhazif, Trojan.Win32.Domaiq.dmxcza
34.00%
F-Prot
W32/A-215008ab, W32/S-a86f5fbc
34.00%
Norman
InstallMetrix.E, Dropped:Application.Generic.936355
34.00%
Agnitum Outpost
PUA.InstallMetrix
34.00%
Avira AntiVirus
Adware/InstallMet.hc, Adware/InstallMonster.deih.13
34.00%
ESET NOD32
Win32/Adware.InstallMetrix.J application
34.00%
Sophos
PUA 'Install Metrix'
34.00%
Zillya! Antivirus
Adware.InstallMonster.Win32.42
28.00%
Clam AntiVirus
Win.Adware.Installmetrix-4
28.00%
The domain filesrv1.com has been seen to resolve to the following 4 IP addresses.
8-36-41-48.bhsrv.net
November 30, 2014
File downloads found at URLs served by filesrv1.com.
Latest 30 of 86 download URLs
The following 2 files have been seen to comunicate with filesrv1.com in live environments.