home

www.balatonserviceless.online

Domain Information

Server location:
Georgia, United States (US)

ASN:
AS20446 HIGHWINDS3 - Highwinds Network Group, Inc.,US

Root domain:
balatonserviceless.online

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.InstallMonetizer.VegaSqui.Installer.Meta (M), Adware.Downloader (M), Adware.InstallMonetizer.PvlPoint.Installer.Meta (M), Adware.Amonetize.RE (M), Adware.InstallMonetizer.Jyu3sgSJ.Installer.Meta (M), Adware.InstallMonetizer.ccsc7NT6.Installer.Meta (M), Adware.Amonetize (M), Adware.InstallMonetizer.Finful.Installer.Meta (M), Adware.InstallMonetizer.UtSCApc.Installer.Meta (M), Adware.InstallMonetizer.9JvswlFM.Installer.Meta (M), Adware.InstallMonetizer.Za8IxXq.Installer.Meta (M), Adware.InstallMonetizer.0fsN9MbC.Meta (M), PUP.InstallMonetize (M), Adware.InstallMonetizer.DncnNFg.Installer.Meta (M), Adware.InstallMonetizer.StarGrat.Installer.Meta (M), Adware.InstallMonetizer.jtkiF1J.Installer.Meta (M), Adware.InstallMonetizer.ywvHc7n.Installer.Meta (M), Adware.InstallMonetizer.GCM.Installer.Meta (M), Adware.InstallMonetizer.gdy9Cq3u.Installer.Meta (M), Adware.InstallMonetizer.juYPaUqs.Installer.Meta (M), Adware.InstallMonetizer.TR5azMc.Meta (M), Adware.InstallMonetizer (M)
67.35%

Norman
Gen:Variant.Razy.50351, Gen:Variant.Symmi.62687, Gen:Variant.Graftor.283750, Gen:Variant.Razy.28392, Gen:Variant.Razy.47255
36.73%

ESET NOD32
Win32/Amonetize.SX potentially unwanted application, Win32/Amonetize.RG potentially unwanted application, Win32/Amonetize.VW potentially unwanted application, Win32/Amonetize.QY potentially unwanted application, Win32/Amonetize.TS potentially unwanted application, Win32/Amonetize.VR potentially unwanted application, Win32/Amonetize.TI potentially unwanted application, Win32/Amonetize.SU potentially unwanted application, Win32/Amonetize.ON potentially unwanted application
34.69%

Emsisoft Anti-Malware
Gen:Variant.Application.Bundler.Amonetize.53, Gen:Variant.Graftor.268151, Gen:Heur.ManBat, Gen:Variant.Razy.18984, Gen:Variant.Graftor.273566
18.37%

F-Secure
Variant.Razy.50351, Variant.Symmi.62687, Variant.Razy.46251, Heur.ManBat.1
14.29%

Kaspersky
not-a-virus:HEUR:AdWare.Win32.Amonetize, not-a-virus:Downloader.Win32.AdLoad
14.29%

avast!
Win32:Malware-gen, Win32:Evo-gen [Susp], Win32:Dropper-gen [Drp]
12.24%

McAfee
Program.PUP-RHEI
4.08%

Microsoft Security Essentials
Threat.Undefined
4.08%

The domain www.balatonserviceless.online has been seen to resolve to the following 2 IP addresses.

205.185.216.10
June 26, 2016

205.185.216.42
map2.hwcdn.net
June 26, 2016

File downloads found at URLs served by www.balatonserviceless.online.

4 / 68      (PUP)
http://www.balatonserviceless.online/.../rtea5.exe  (01f8ce531d090c818ad35787ba3efff5)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../gxepm.exe  (612c8856deb0dec3d1c1900d2f8298b6)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../6kqr6.exe  (9eed91132b7f795a98f1842f6c9cc20b)

3 / 68      (PUP)
http://www.balatonserviceless.online/.../bppzr.exe  (68b924b40641fbba3d4f54b30f030ab4)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../zh8zb.exe  (v5a56.exe)

3 / 68      (PUP)
http://www.balatonserviceless.online/.../jhjgu.exe  (7bcded56152303707a2e564f24c318fe)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../ra8m4.exe  (11679b57b0852534107c0e42141c481b)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../gkvrg.exe  (download game resident evil 4 downloader__3687_i1923251368_il578620.exe)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../pwntu.exe  ( rockstar games gta san andreas pc free__18596_il515781.exe)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../ypj8c.exe  (d64d6480f7b2fbb7ed0af5cdf3f9ffba)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../jyj6v.exe  (e53879b1771b0554e6ada7212d267cc3)

6 / 68      (PUP)
http://www.balatonserviceless.online/.../5pcfh.exe  (pack linguagem portugues windo downloader__3687_i1923617738_il58671.exe)

4 / 68      (PUP)
http://www.balatonserviceless.online/.../24ybm.exe  (gta 5 pc game grand theft auto__13316_il227369.exe)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../6egzx.exe  (pes 2012 full crack new medi downloader__3687_i1923358569_il617518.exe)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../ragvb.exe  (58f6c168874226ffbe5c17046d659de4)

3 / 68      (PUP)
http://www.balatonserviceless.online/.../6mxg7.exe  (2f8a9addebb661ff19e43b7545d1ace7)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../53t52.exe  (xinput13.dll__13432_i1923690962_il1855.exe)

4 / 68      (PUP)
http://www.balatonserviceless.online/.../gprdy.exe  (753e0067edfbf8990891842ff8db04b9)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../wgwmz.exe  (af63f9d9b34bf457df9b12e3ac454adc)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../64j5z.exe  (818f320a4f697083dfb427cd367389de)

3 / 68      (PUP)
http://www.balatonserviceless.online/.../5w9ra.exe  (8214baf9d8ffea1e32ffb1ed498d97f9)

4 / 68      (PUP)
http://www.balatonserviceless.online/.../nw4k6.exe  (353390b9d962ba9c160f7d2294567b89)

2 / 68      (PUP)
http://www.balatonserviceless.online/.../nkkf3.exe  (735d5b681e297d5b10ab860643f5ec90)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../v3z6c.exe  (82ebafbac555a2f668103c21f354f51d)

4 / 68      (PUP)
http://www.balatonserviceless.online/.../6f6bj.exe  (ymspp.exe)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../gmc7m.exe  (23472631cbc04c0db3e62238ba50d38f)

3 / 68      (PUP)
http://www.balatonserviceless.online/.../y3868.exe  (110d60d05b47df1a5692ae543070643e)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../64fjb.exe  (ef63af5818ceb0ba70282d121a035a10)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../rkjca.exe  (setup__19551_i1923606220_il2659.exe)

1 / 68      (PUP)
http://www.balatonserviceless.online/.../cg4g9.exe  (cheat lostsaga vvip hikarahika downloader__3687_i1923520635_il18387.exe)

 
Latest 30 of 606 download URLs

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.