home

www.markersoffredefy.site

Domain Information

Server location:
Georgia, United States (US)

ASN:
AS20446 HIGHWINDS3 - Highwinds Network Group, Inc.,US

Root domain:
markersoffredefy.site

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.Amonetize.ET (M), Adware.Amonetize.AT (M), PUP.InstallMonetizer.FenamnFa.Meta (M), Adware.Bundler (M), PUP.InstallMonetizer.GCM.Installer.Meta (M), Adware.Amonetize.IDDQD.Installer.Meta (M), Adware.InstallMonetizer.PLT.Installer.Meta (M), PUP.InstallMonetizer.PlonetPl.Installer.Meta (M), Adware.Bundler.IDDQD.Installer.Meta (M), Adware.Bundler.Droms.Meta (M), PUP.InstallMonetizer.Finful.Installer.Meta (M), Adware.InstallMonetizer (M)
87.76%

Norman
Gen:Application.Imonetize.2
71.43%

Emsisoft Anti-Malware
Gen:Variant.Razy.18984, Gen:Application.Imonetize, Gen:Variant.Symmi.47560, Gen:Trojan.Heur.RP.7u0@aCjFmwji, Gen:Variant.Symmi.61223, Gen:Variant.Razy.25221, Gen:Variant.Symmi.60918, Gen:Variant.Application.Razy.12281
61.22%

ESET NOD32
Win32/Amonetize.SU potentially unwanted application, Win32/Amonetize.NY potentially unwanted application, Win32/Amonetize.OA potentially unwanted application, Win32/Amonetize.OS potentially unwanted application, Win32/Amonetize.SE potentially unwanted application, Win32/Amonetize.QG potentially unwanted application, Win32/Amonetize.ON potentially unwanted application
48.98%

Kaspersky
not-a-virus:HEUR:AdWare.Win32.Amonetize, not-a-virus:Downloader.Win32.AdLoad
46.94%

F-Secure
Application.Imonetize.2
42.86%

avast!
Win32:Amonetize-KC [PUP]
8.16%

MicroWorld eScan
Gen:Heur.ManBat.1
2.04%

Malwarebytes
PUP.Optional.Amonetize
2.04%

Bitdefender
Gen:Heur.ManBat.1
2.04%

Baidu Antivirus
Win32.Trojan.Kryptik
2.04%

ESET NOD32
Win32/Amonetize.QG potentially unwanted (variant)
2.04%

Lavasoft Ad-Aware
Gen:Heur.ManBat.1
2.04%

F-Secure
Gen:Heur.ManBat.1
2.04%

Avira AntiVirus
ADWARE/Amonetize.Gen7
2.04%

The domain www.markersoffredefy.site has been seen to resolve to the following 2 IP addresses.

205.185.216.42
map2.hwcdn.net
May 24, 2016

205.185.216.10
May 24, 2016

File downloads found at URLs served by www.markersoffredefy.site.

2 / 68      (PUP)
http://www.markersoffredefy.site/14_avast_launcher.exe  (f6341cb3208a882f57ee7888670b1753)

5 / 68      (PUP)
http://www.markersoffredefy.site/9_nod32_launcher.exe  (5acca0c7a436b7856e914cd3e811e7c2)

6 / 68      (PUP)
http://www.markersoffredefy.site/9_avast_launcher.exe  (10_avast_launcher.exe)

1 / 68      (PUP)
http://www.markersoffredefy.site/10_nod32_launcher.exe  (h1z1 cd key generator downloader__3687_i1916043593_il158346.exe)

6 / 68      (PUP)
http://www.markersoffredefy.site/0_nod32_launcher.exe  (df64b76e992d16fbffc0fb641ec17322)

1 / 68      (Malware)
http://www.markersoffredefy.site/11_nod32_launcher.exe  (box hako __17623_il119692.exe)

1 / 68      (PUP)
http://www.markersoffredefy.site/13_nod32_launcher.exe  (64acbb46b06398a681460b12647c1638)

5 / 68      (PUP)
http://www.markersoffredefy.site/5_avast_launcher.exe  (6_avast_launcher.exe)

1 / 68      (PUP)
http://www.markersoffredefy.site/4_mssec_launcher.exe  (bbacc4c282ab0f9bfd7eaf4c5d17f3b3)

3 / 68      (PUP)
http://www.markersoffredefy.site/14_nod32_launcher.exe  (11_nod32_launcher.exe)

4 / 68      (PUP)
http://www.markersoffredefy.site/13_kasper_launcher.exe  (removewat final__9774_il97294.exe)

5 / 68      (PUP)
http://www.markersoffredefy.site/6_avast_launcher.exe  (6e1d872e460b707396930442d2734320)

6 / 68      (PUP)
http://www.markersoffredefy.site/12_avast_launcher.exe  (4a80137bd99cc3b1705cca24d3d271cb)

1 / 68      (PUP)
http://www.markersoffredefy.site/1_nod32_launcher.exe  (2b9d72289d943bb4e6c8b1492c4e2048)

3 / 68      (Malware)
http://www.markersoffredefy.site/4_nod32_launcher.exe  (13_nod32_launcher.exe)

1 / 68      (PUP)
http://www.markersoffredefy.site/7_avast_launcher.exe  (mahre gaam ka pani new hary downloader__3687_i1915964663_il113806.exe)

4 / 68      (PUP)
http://www.markersoffredefy.site/0_avast_launcher.exe  (setup file(vcg)__6629_i1916293840_il277169.exe)

3 / 68      (Malware)
http://www.markersoffredefy.site/5_nod32_launcher.exe  (13_avast_launcher.exe)

4 / 68      (PUP)
http://www.markersoffredefy.site/8_nod32_launcher.exe  (6_nod32_launcher.exe)

1 / 68      (PUP)
http://www.markersoffredefy.site/2_avast_launcher.exe  (windowsupdatekb12695__7428_il182584.exe)

6 / 68      (PUP)
http://www.markersoffredefy.site/3_mssec_launcher.exe  (5_avast_launcher.exe)

5 / 68      (PUP)
http://www.markersoffredefy.site/10_avast_launcher.exe  (driver geovision gv 650 800s v downloader__3687_i1915927801_il98913.exe)

3 / 68      (PUP)
http://www.markersoffredefy.site/13_avast_launcher.exe  (1_avast_launcher.exe)

5 / 68      (PUP)
http://www.markersoffredefy.site/4_avast_launcher.exe  (adobe photoshop cc 2014 15 2 x downloader__3687_i1916406832_il331742.exe)

5 / 68      (PUP)
http://www.markersoffredefy.site/3_avast_launcher.exe  (a8dab4107984e220630b3d062ef15bc9)

8 / 68      (PUP)
http://www.markersoffredefy.site/6_nod32_launcher.exe  (garena shell hack v2 0 downloader__3687_i1916492020_il373998.exe)

5 / 68      (PUP)
http://www.markersoffredefy.site/11_symantec_launcher.exe  (12_avast_launcher.exe)

5 / 68      (PUP)
http://www.markersoffredefy.site/8_avast_launcher.exe  (0c1cef0634419cd5e284cdb67956b1ee)

1 / 68      (PUP)
http://www.markersoffredefy.site/1_avast_launcher.exe  (3a8b534bb4b8b6dfdcbcae6fde37c73f)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.