www.averagedownload.com

Amonetize ltd.

Domain Information

The domain www.averagedownload.com registered by Corp New Ventures Services was initially registered in January of 2015 through Moniker Online Services. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Sankt Ingbert, Saarland within Germany which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Amonetize ltd. who is located in Raanana, Alberta in Israel.
Registrar:
OREGONURLS.COM LLC

Server location:
Saarland, Germany (DE)

Create date:
Monday, January 19, 2015

Expires date:
Thursday, January 19, 2017

Updated date:
Tuesday, February 23, 2016

ASN:
AS196763 KEY-SYSTEMS-AS Key-Systems GmbH,DE

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.InstallMonetizer, PUP.Optional.Amonetize, PUP.Optional.Amonetize.A
97.56%

ESET NOD32
Win32/Amonetize.AA (variant), Win32/Amonetize.AD (variant), Win32/Amonetize.AG (variant), Win32/Amonetize.AI (variant), Win32/Amonetize.AJ (variant)
95.12%

Reason Heuristics
PUP.Installer.ShetefSolutionsConsulting1998.w, PUP.Installer.ShetefSolutionsConsulting1998., PUP.Installer.ShetefSolutionsConsulting1998.f, PUP.Installer.Amonetizeltd.h, PUP.Installer.ShetefSolutionsConsulting1998.j, PUP.Installer.Amonetizeltd.BB, PUP.Installer.Amonetizeltd.Z, PUP.Installer.Amonetizeltd.d, PUP.Installer.ShetefSolutionsConsulting1998.n, PUP.Installer.Amonetizeltd.F, Threat.Win.Reputation.IMP
92.68%

Avira AntiVirus
ADWARE/Adware.Gen2
92.68%

Trend Micro House Call
TROJ_GEN.F47V1216, TROJ_GEN.F47V1222, TROJ_GEN.F47V1219, TROJ_GEN.F47V1217, TROJ_GEN.F47V1218, TROJ_GEN.F47V1225, TROJ_GEN.F47V0113
87.80%

VIPRE Antivirus
Amonetize, Trojan.Win32.Generic
85.37%

McAfee
Artemis!DA55E3AC944E, Artemis!D770A95564A8, Artemis!BB817E24CA14, Artemis!9DDD54D6AD3C, Artemis!D6A70215CAA9, Artemis!A5C09751B23E, Adware-Amonetize!D53375A4EC7A, Adware-Amonetize!0A13695E904F, Adware-Amonetize!806486D56A37, Artemis!61BCBC48DE1C, Adware-Amonetize!DC035ED17CF1, Artemis!CBC1290EE337, Artemis!AC04B4FDAB43, Artemis!EE825659E674, Adware-Amonetize!97691C324FCE, Artemis!52DE26D456C5, Artemis!3E6E4C7DDD35, Adware-Amonetize!CEC450D89438, Artemis!5C6BD2794FED, Adware-Amonetize!F327DA0BF023, PUP-FBM!F192CCA87A57
75.61%

Dr.Web
Adware.Downware.1575, Adware.Downware.1655, Adware.Downware.2250, Adware.Downware.2467, Adware.Downware.2453, Adware.Downware.2160
73.17%

McAfee Web Gateway
Artemis!DA55E3AC944E, Artemis!D770A95564A8, Artemis!BB817E24CA14, Artemis!9DDD54D6AD3C, Artemis!D6A70215CAA9, Artemis!A5C09751B23E
73.17%

Fortinet FortiGate
Riskware/Amonetize, Adware/Amonetize, Riskware/PUP
68.29%

Sophos
Amonetize, Generic PUA BP, Generic PUA GM
68.29%

avast!
Win32:Amonetize-E [PUP], Win32:Amonetize-F [PUP], Win32:Amonetize-L [PUP], Win32:Adware-BJY [PUP], Win32:PUP-gen [PUP], Win32:Amonetize-AK [PUP]
63.41%

AhnLab V3 Security
PUP/Win32.Amonetiz
58.54%

Kaspersky
not-a-virus:Downloader.Win32.Agent, not-a-virus:HEUR:AdWare.Win32.Amonetize, not-a-virus:AdWare.Win32.Amonetize
53.66%

Qihoo 360 Security
Trojan.Generic, HEUR/Malware.QVM10.Gen, Win32/Virus.Adware.932, Win32/Trojan.Adware.37e
53.66%

The domain www.averagedownload.com has been seen to resolve to the following 22 IP addresses.

192.230.92.93.ip.incapdns.net
August 13, 2016

199.83.132.93.ip.incapdns.net
June 29, 2016

March 4, 2016

June 30, 2015

May 5, 2015

ns1.expirationwarning.net
December 10, 2014

ec2-50-17-209-45.compute-1.amazonaws.com
June 13, 2014

ec2-50-17-206-16.compute-1.amazonaws.com
June 13, 2014

ec2-107-20-210-63.compute-1.amazonaws.com
June 13, 2014

ec2-23-21-228-251.compute-1.amazonaws.com
June 13, 2014

ec2-54-204-3-25.compute-1.amazonaws.com
May 13, 2014

ec2-54-227-248-18.compute-1.amazonaws.com
May 13, 2014

ec2-54-243-182-65.compute-1.amazonaws.com
May 13, 2014

ec2-54-225-178-80.compute-1.amazonaws.com
May 13, 2014

ec2-54-243-209-117.compute-1.amazonaws.com
May 5, 2014

ec2-54-243-209-139.compute-1.amazonaws.com
May 5, 2014

ec2-54-235-68-127.compute-1.amazonaws.com
April 11, 2014

ec2-107-21-115-114.compute-1.amazonaws.com
April 11, 2014

ec2-54-225-132-130.compute-1.amazonaws.com
March 14, 2014

ec2-54-225-181-84.compute-1.amazonaws.com
February 3, 2014

ec2-23-23-96-46.compute-1.amazonaws.com
January 25, 2014

ec2-54-243-172-72.compute-1.amazonaws.com
December 28, 2013

File downloads found at URLs served by www.averagedownload.com.

 
Latest 30 of 75 download URLs

The following 50 files have been seen to comunicate with www.averagedownload.com in live environments.

 
Latest 20 of 65 files

URL:
http://www.averagedownload.com/

Google Analytics:
UA-2249740

Title:
“Averagedownload.com”

Description:
“Find Cash Advance, Debt Consolidation and more at Averagedownload.com. Get the best of Insurance or Free Credit Report, browse our section on Cell Phones or learn about Life Insurance. Averagedownload.com is the site for Cash Advance.”

Web server:
Microsoft-IIS/8.5 (ASP.NET) (Version: 4.0.30319)

30 of 714 related domains