The domain www.auto-sleepy-files-hurricane6.biz is registered by proxy through ENOM, INC. and was originally registered in March of 2015. Currently this domain has been known to host various forms of malware. The hosted servers are located in Portland, Oregon within the United States. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.
Registrant:
WhoisGuard, Inc.
Server location:
Oregon, United States (US)
Create date:
Thursday, March 26, 2015
Expires date:
Friday, March 25, 2016
Updated date:
Thursday, March 26, 2015
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US
Scanner detections:
Malware distribution (100% detected)
Scan engine
Details
Detections
Reason Heuristics
Threat.Win.Reputation.IMP, PUP.Amonetize (M), Adware.Amonetize.ET (M), Adware.Amonetize (M)
100.00%
Kaspersky
not-a-virus:AdWare.Win32.Amonetize, not-a-virus:HEUR:AdWare.Win32.Amonetize
14.00%
AhnLab V3 Security
PUP/Win32.Amonetiz, PUP/Win32.Amonetize
14.00%
Baidu Antivirus
PUA.Win32.Amonetize
14.00%
NANO AntiVirus
Riskware.Win32.Amonetize.dsnmwq, Riskware.Win32.Amonetize.drvcmq, Riskware.Win32.Amonetize.drfzdf, Riskware.Win32.Amonetize.drderc
12.00%
Emsisoft Anti-Malware
Gen:Variant.Mikey.14122, Gen:Variant.Mikey.12680, Gen:Application.Imonetize
12.00%
ESET NOD32
Win32/Amonetize.ES potentially unwanted (variant), Win32/Amonetize.EK potentially unwanted (variant), Win32/Amonetize.EZ potentially unwanted (variant)
12.00%
MicroWorld eScan
Gen:Variant.Mikey.14122, Gen:Variant.Mikey.12680
10.00%
McAfee
Artemis!7B301498409E, Artemis!B2A4CAB818B5, Artemis!91A24CF2CAF3, Artemis!F8FE5CD799D8, Artemis!B9E5366D5865
10.00%
Agnitum Outpost
PUA.Amonetize
10.00%
Trend Micro House Call
TROJ_GEN.R00JH07EL15, TROJ_GEN.R08NH07ED15, TROJ_GEN.R021B01ER15, TROJ_GEN.R08NH07EA15
10.00%
Bitdefender
Gen:Variant.Mikey.14122, Gen:Variant.Mikey.12680
10.00%
Lavasoft Ad-Aware
Gen:Variant.Mikey.14122, Gen:Variant.Mikey.12680
10.00%
The domain www.auto-sleepy-files-hurricane6.biz has been seen to resolve to the following 9 IP addresses.
ec2-54-245-87-78.us-west-2.compute.amazonaws.com
January 29, 2016
ec2-54-244-231-205.us-west-2.compute.amazonaws.com
January 29, 2016
ec2-54-244-233-188.us-west-2.compute.amazonaws.com
December 7, 2015
ec2-54-245-91-20.us-west-2.compute.amazonaws.com
December 7, 2015
ec2-54-244-112-122.us-west-2.compute.amazonaws.com
August 21, 2015
ec2-54-245-120-101.us-west-2.compute.amazonaws.com
August 21, 2015
ec2-54-244-90-176.us-west-2.compute.amazonaws.com
May 6, 2015
ec2-54-245-242-253.us-west-2.compute.amazonaws.com
May 6, 2015
File downloads found at URLs served by www.auto-sleepy-files-hurricane6.biz.
Latest 30 of 119 download URLs
URL:
http://www.auto-sleepy-files-hurricane6.biz/
Google Analytics:
UA-2249740
Title:
“Auto-Sleepy-Files-Hurricane6.biz”
Description:
“Find Cash Advance, Debt Consolidation and more at Auto-Sleepy-Files-Hurricane6.biz. Get the best of Insurance or Free Credit Report, browse our section on Cell Phones or learn about Life Insurance. Auto-Sleepy-Files-Hurricane6.biz is the site for...”
Network:
Amazon Web Services (AWS), running an EC2 instance
Web server:
Microsoft-IIS/8.5 (ASP.NET) (Version: 4.0.30319)
Related Domains
30 of 685 related domains