www.fileinfo.com

Sharpened Productions

Domain Information

The domain www.fileinfo.com registered by Sharpened Productions was initially registered in July of 1999 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Lansing, Michigan within the United States which resides on the Liquid Web, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Michigan, United States (US)

Create date:
Wednesday, July 14, 1999

Expires date:
Tuesday, July 14, 2020

Updated date:
Saturday, November 16, 2013

ASN:
AS32244 LIQUID-WEB-INC - Liquid Web, Inc.,US

Root domain:

Scanner detections:
Detections  (94% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.STMSetup.j, PUP.Installer.STMSetup.i, PUP.Installer.SecureInstall.K, PUP.Installer.ClientConnect.Y, PUP.Installer.STMSetup.n, PUP.Installer.Statscom.W, PUP.Installer.Zoobam.W, PUP.Tightrope.Zoobam.Bundler (M), PUP.Tightrope.Sanflex.Bundler (M), PUP.Tightrope.Statscom.Bundler (M), PUP.InstallX.SecureIn.Installer (M)
95.83%

VIPRE Antivirus
Trojan.Win32.Generic, InstallIQ Installer, Conduit, InstallCore, Threat.4786018, Threat.4783369, Threat.4150696, DownloadAdmin
56.25%

AVG
Generic, Adware Generic_r, MultiBundle
56.25%

Dr.Web
Trojan.MulDrop5.10078, Adware.Downware.2512, Adware.InstallCore.386, Adware.Conduit.96, Adware.Conduit.87, Adware.Downware.2220
52.08%

K7 Gateway Antivirus
Unwanted-Program , Trojan , Adware
39.58%

Malwarebytes
PUP.Optional.SafeInstall.A, PUP.Optional.Conduit.A, PUP.Optional.DownloadAdmin
37.50%

Antiy Labs AVL
Trojan/Win32.TSGeneric, Trojan/win32.agent.gen
37.50%

K7 AntiVirus
Unwanted-Program , Trojan
35.42%

Agnitum Outpost
Riskware.Agent, PUA.Toolbar.Conduit
35.42%

ESET NOD32
Win32/InstallCore.OY (variant), Win32/InstallCore.OL (variant), Win32/InstallIQ (variant), Win32/ClientConnect (variant)
33.33%

Avira AntiVirus
ADWARE/InstallCore.Gen9, Adware/InstallCore.A.499, ADWARE/Adware.Gen, ADWARE/InstallCore.Gen7
33.33%

Sophos
Install Core Click run software, DomainIQ pay-per install, PUA 'DownloadAdmin' (of type Adware)
29.17%

Fortinet FortiGate
Riskware/InstallCore, Riskware/Agent, Riskware/InstallIQ, Riskware/Toolbar_Conduit, Riskware/ClientConnect, Riskware/DownloadAdmin
27.08%

F-Secure
Application.Bundler.InstallIQ, Adware:W32/WebInstallBundle
27.08%

AhnLab V3 Security
PUP/Win32.Downware
27.08%

The domain www.fileinfo.com has been seen to resolve to the following IP address.

blade.sharpened.com
May 31, 2014

File downloads found at URLs served by www.fileinfo.com.

1 / 68      (Adware)
http://www.fileinfo.com/.../fvl  (fileviewerlite12-setup.exe)

3 / 68      (inconclusive)
http://www.fileinfo.com/.../fileidentifiersetup_101.exe  (740aedf975300f0e8d205ff21d8e76dd)

0 / 68
http://www.fileinfo.com/.../fileidentifiersetup_105.exe  (06f9422cf526278727d1f381b3fe41b7)

1 / 68
http://www.fileinfo.com/.../fileidentifiersetup_102.exe  (a0ffa2a6c80eb5426875eef7792ffc7a)

The following 2 files have been seen to comunicate with www.fileinfo.com in live environments.

URL:
http://www.fileinfo.com/

Google Analytics:
UA-226516

Title:
“FileInfo - The File Extensions Database”

Description:
“FileInfo is the central file extensions registry and contains a database of over 10,000 file types.”

Web server:
Apache (PHP/5.4.32)

Facebook:
Likes:  551
Shares:  494
Comments:  51

Statistics are for the previous month.