getfile.eu

NOT DISCLOSED!  (Proxy Registrant)

Domain Information

The domain getfile.eu is registered by proxy through Domain Robot. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Beaumaris, Victoria within Australia which resides on the Asia Pacific Network Information Centre network.
Registrar:
Domain Robot

Server location:
Victoria, Australia (AU)

ASN:
AS133618 TRELLIAN-AS-AP Trellian Pty. Limited,AU

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.CORLEONGROUP.I, PUP.CORLEONGROUP.EE, PUP.CORLEONGROUP.?, PUP.CORLEONGROUP.N, PUP.CORLEONGROUP.S, PUP.InstallMonster.CORLEONGROUP (M), PUP.InstallMonster.CORLEONG (M), Threat.Win.Reputation.IMP, PUP.InstallMonster (M)
87.80%

ESET NOD32
Win32/InstallMonstr.CG potentially unwanted application, Win32/InstallMonstr.K potentially unwanted application, Win32/InstallMonstr.AC potentially unwanted application, Win32/InstallMonstr.C potentially unwanted application, Win32/InstallMonstr.H potentially unwanted application, Win32/InstallMonstr.M potentially unwanted application
26.83%

avast!
InstallMonstr-DY [PUP], InstallMonstr-AV [PUP], Win32:InstallMonstr-DK [PUP], Win32:InstallMonstr-AS [PUP], Win32:InstallMonstr-DL [PUP]
21.95%

VIPRE Antivirus
Threat.4845009, Threat.4150696
19.51%

Norman
InstallMonster.B, InstallMonstr.END, Gen:Variant.Strictor.49307, Gen:Variant.Adware.Symmi.26393, Gen:Variant.Zusy.81977
14.63%

Dr.Web
Trojan.InstallMonster.51, Trojan.InstallMonster.19, Trojan.InstallMonster.89, Trojan.InstallMonster.21, Trojan.InstallMonster.38
12.20%

Avira AntiVirus
APPL/InstallMonst.QA, APPL/InstallMonster.Gen, ADWARE/Adware.Gen
12.20%

Emsisoft Anti-Malware
Gen:Variant.Adware.Symmi.41729, Gen:Adware.SMSHoax, Gen:Variant.Strictor.49307, Gen:Variant.Adware.Strictor.40958
12.20%

MicroWorld eScan
Gen:Variant.Adware.Symmi.41729, Gen:Adware.SMSHoax.7, Gen:Variant.Strictor.49307
9.76%

NANO AntiVirus
Trojan.Win32.InstallMonster.dbipfy, Trojan.Win32.Monstruos.cukizd, Trojan.Win32.ArchSMS.dmnyfy
9.76%

Bitdefender
Gen:Variant.Adware.Symmi.41729, Gen:Adware.SMSHoax.7, Gen:Variant.Strictor.49307
9.76%

Agnitum Outpost
Riskware.Agent, PUA.Downloader, Trojan.Agent
9.76%

G Data
Gen:Variant.Adware.Symmi.41729, Gen:Adware.SMSHoax, Gen:Variant.Strictor.49307
9.76%

Rising Antivirus
PE:Malware.InstallMonstr!6.38, PE:Adware.SMSHoax!6.1370, PE:Trojan.StartPage!6.216
9.76%

AVG
Trojan horse FakeAV.ASLA, Trojan horse Generic34.AYMK, PSW.Banker6, Adware BundleApp.LY
9.76%

The domain getfile.eu has been seen to resolve to the following 5 IP addresses.

ip-70.32.1.32.hosted.by.gigenet.com
September 14, 2016

lb-182-251.above.com
October 29, 2015

September 2, 2014

April 14, 2014

March 27, 2014

File downloads found at URLs served by getfile.eu.

 
Latest 30 of 46 download URLs

The following 41 files have been seen to comunicate with getfile.eu in live environments.

 
Latest 20 of 42 files

URL:
http://getfile.eu/

Google Analytics:
UA-48689684

Title:
“getfile.eu - getfile Resources and Information.”

Description:
“getfile.eu is your first and best source for all of the information you’re looking for. From general topics to more of what you would expect to find here, getfile.eu has it all. We hope you find what you are searching for!”

Web server:
Apache/2.2.22 (Debian)

30 of 618 related domains