www.javfiler.net

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain www.javfiler.net is registered by proxy through GO FRANCE DOMAINS, LLC and was originally registered in May of 2015. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Portland, Oregon within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.
Remove Malware from www.javfiler.net - Powered by Reason Core Security
Registrar:
GO FRANCE DOMAINS, LLC

Server location:
Oregon, United States (US)

Create date:
Friday, May 15, 2015

Expires date:
Sunday, May 15, 2016

Updated date:
Tuesday, May 19, 2015

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.TuguuSL.K, PUP.Binaritpersonalcomputerperipheralequipment.K, PUP.Tuguu.TuguuSL.Bundler (M)
100.00%

McAfee
PUP-FJP!1F2E3FF39A4F, PUP-FAO!AD78B07EC1C0, CryptDomaIQ
60.00%

Malwarebytes
PUP.Optional.Domalq
60.00%

K7 AntiVirus
Unwanted-Program
60.00%

K7 Gateway Antivirus
Unwanted-Program
60.00%

avast!
Win32:DomaIQ-CJ [PUP], DomaIQ-CO [PUP], Win32:DomaIQ-CK [PUP]
60.00%

Kaspersky
not-a-virus:AdWare.Win32.Lollipop
60.00%

Agnitum Outpost
PUA.Lollipop
60.00%

Sophos
Generic PUA FJ, DomainIQ pay-per install, PUA.DomainIQ pay-per install, PUA 'DomainIQ pay-per install'
60.00%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696, Threat.4783235
60.00%

Avira AntiVirus
APPL/DomaIQ.Gen
60.00%

McAfee Web Gateway
PUP-FJP!1F2E3FF39A4F, PUP-FAO!AD78B07EC1C0, CryptDomaIQ, BehavesLike.Win32.CryptDoma.ch
60.00%

Antiy Labs AVL
GrayWare[AdWare:not-a-virus]/Win32.Lollipop, GrayWare[AdWare:not-a-virus]/MSIL.DomaIQ
60.00%

IKARUS anti.virus
PUA.Tugus, AdWare.DomaIQ
60.00%

AVG
DomaIQ, Adware DomaIQ.DO
60.00%

The domain www.javfiler.net has been seen to resolve to the following 10 IP addresses.

January 30, 2016

ec2-54-186-187-58.us-west-2.compute.amazonaws.com
November 2, 2014

ec2-54-213-71-128.us-west-2.compute.amazonaws.com
November 2, 2014

ec2-54-244-30-115.us-west-2.compute.amazonaws.com
July 10, 2014

ec2-54-186-83-158.us-west-2.compute.amazonaws.com
July 10, 2014

ec2-54-218-30-251.us-west-2.compute.amazonaws.com
May 14, 2014

ec2-54-201-9-67.us-west-2.compute.amazonaws.com
May 14, 2014

ec2-54-201-153-98.us-west-2.compute.amazonaws.com
May 14, 2014

ec2-54-201-189-9.us-west-2.compute.amazonaws.com
May 14, 2014

ec2-54-200-4-93.us-west-2.compute.amazonaws.com
May 14, 2014

File downloads found at URLs served by www.javfiler.net.

1 / 68      (Adware)
http://www.javfiler.net/.../New player.exe  (b7eb081ae12051dd2d4276652c93dee6)

1 / 68      (Adware)
http://www.javfiler.net/.../New player.exe  (ad13b7edd968b314e83e117e9a98b7bf)

1 / 68      (Adware)
http://www.javfiler.net/.../New player.exe  (b8fc681b889f898c8f1ee2ba4e2d34e5)

37 / 68    (Adware)
http://www.javfiler.net/.../New player.exe  (22e7d12a0626d350ee01148265e88026)

34 / 68    (Adware)
http://www.javfiler.net/.../New player.exe  (d68bf74b25510e9ef161e5e7bf2f57ef)

35 / 68    (Adware)
http://www.javfiler.net/.../New player.exe  (d7c7f1916d4bcdb6bf1941d42baa6dd4)

1 / 68      (Adware)
http://www.javfiler.net/.../New player.exe  (5bc7d1c5b647436096944ced7fc33493)

34 / 68    (Adware)
http://www.javfiler.net/.../New player.exe  (5d2b30d89c82d0b7f3ebc3483acf240f)

26 / 68    (Adware)
http://www.javfiler.net/.../New player.exe  (ad78b07ec1c042c714e25a2a8dbdae77)

24 / 68    (Adware)
http://www.javfiler.net/.../New player.exe  (b8dca7a249c6b6b25477710780d22d59)

The following 5 files have been seen to comunicate with www.javfiler.net in live environments.

URL:
http://www.javfiler.net/

Title:
“javfiler.net”

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Apache

Facebook:
Shares:  2

Statistics are for the previous month.

Remove Malware from www.javfiler.net - Powered by Reason Core Security