www.extractdownload.com

Moniker Privacy Services  (Proxy Registrant)

Domain Information

The domain www.extractdownload.com is registered by proxy through Moniker Online Services and was originally registered in October of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Remove Malware from www.extractdownload.com - Powered by Reason Core Security
Registrar:
Moniker Online Services

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Thursday, October 31, 2013

Expires date:
Saturday, October 31, 2015

Updated date:
Wednesday, November 05, 2014

Scanner detections:
Detections  (93% detected)

Scan engine
Details
Detections

Avira AntiVirus
W32/Sality.AT, ADWARE/Adware.Gen2, ADWARE/AgentCV.A.295, TR/Trash.Gen
100.00%

avast!
Win32:Amonetize-E [PUP], Win32:Amonetize-M [PUP], Win32:Adware-gen [Adw], Win32:Adware-BJY [PUP], Win32:Amonetize-N [PUP], Win32:Amonetize-BA [PUP], Win32:Amonetize-Q [PUP]
85.71%

Malwarebytes
PUP.Optional.Amonetize, PUP.Optional.InstallMonetizer, PUP.Optional.Amonetize.A
71.43%

AhnLab V3 Security
PUP/Win32.Amonetiz
71.43%

ESET NOD32
Win32/Amonetize.AD (variant), Win32/Amonetize.AG (variant), Win32/Amonetize.AI (variant), Win32/Amonetize.AJ (variant)
71.43%

Reason Heuristics
PUP.Installer.Amonetizeltd.z, PUP.Installer.Amonetizeltd.?, PUP.Installer.Amonetizeltd.p, PUP.Wilmaonline.FF, PUP.Installer.Amonetizeltd.f, PUP.Installer.Amonetizeltd.F
71.43%

Dr.Web
Win32.Sector.21, Adware.Downware.1655, Adware.Downware.1575, Adware.Downware.2467, Adware.Downware.2250
64.29%

VIPRE Antivirus
Amonetize, Trojan.Win32.Generic
64.29%

Sophos
Amonetize
64.29%

McAfee
Adware-Amonetize!408E888C34D0, Adware-Amonetize!C8D08ACD3F1E, Adware-Amonetize!9E30F4C0808D, Artemis!E92BDE0EC826, Adware-Amonetize!3F110C855703, Artemis!C3A15DB2A582, Artemis!5C6BD2794FED, Adware-Amonetize!325429A955FA
57.14%

Fortinet FortiGate
Riskware/Amonetize
57.14%

AVG
Generic_r, MalSign.Generic, MalSign.Wilmo
57.14%

Trend Micro House Call
TROJ_GEN.F47V0206, TROJ_GEN.F47V0220, TROJ_GEN.F47V0306, TROJ_GEN.F47V0309, TROJ_GEN.F47V0226, TROJ_GEN.F47V0312, TROJ_GEN.F47V0311
57.14%

McAfee Web Gateway
Adware-Amonetize!408E888C34D0, Adware-Amonetize!C8D08ACD3F1E, Adware-Amonetize!9E30F4C0808D, Artemis!E92BDE0EC826, Adware-Amonetize!3F110C855703
50.00%

Kaspersky
not-a-virus:HEUR:Adware.Win32.Amonetize, not-a-virus:HEUR:AdWare.Win32.Amonetize
35.71%

The domain www.extractdownload.com has been seen to resolve to the following 10 IP addresses.

unallocated.barefruit.co.uk
May 4, 2015

209.222.14.3.choopa.net
December 2, 2014

ec2-50-17-209-45.compute-1.amazonaws.com
May 30, 2014

ec2-107-20-210-63.compute-1.amazonaws.com
May 30, 2014

ec2-50-17-206-16.compute-1.amazonaws.com
May 30, 2014

ec2-23-21-228-251.compute-1.amazonaws.com
May 30, 2014

ec2-54-235-68-127.compute-1.amazonaws.com
April 14, 2014

ec2-107-21-115-114.compute-1.amazonaws.com
April 14, 2014

ec2-54-225-132-130.compute-1.amazonaws.com
March 15, 2014

ec2-54-225-181-84.compute-1.amazonaws.com
February 14, 2014

File downloads found at URLs served by www.extractdownload.com.

 
Latest 30 of 30 download URLs

The following 156 files have been seen to comunicate with www.extractdownload.com in live environments.

 
Latest 20 of 157 files

URL:
http://www.extractdownload.com/

Google Analytics:
UA-51058839

Title:
“extractdownload.com”

Web server:
nginx/1.0.15

Remove Malware from www.extractdownload.com - Powered by Reason Core Security