home

www.rejetto.com

MASSIMO MELINA

Domain Information

The domain www.rejetto.com registered by MASSIMO MELINA was initially registered in January of 2001 through ENOM, INC.. Currently this domain has been known to host various forms of malware. The hosted servers are located in Toronto, Ontario within Canada which resides on the Cologlobal network.
Registrar:
ENOM, INC.

Server location:
Ontario, Canada (CA)

Create date:
Monday, January 29, 2001

Expires date:
Friday, January 29, 2016

Updated date:
Sunday, January 4, 2015

Root domain:
rejetto.com

Whois:
2 rejetto.com records

Scanner detections:
Malware distribution  (75% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP
76.92%

ESET NOD32
Win32/Server-Web.HFS (variant), Win32/Server-Web.HFS.A potentially unsafe (variant)
61.54%

Baidu Antivirus
Trojan.Win32.Server-Web, HackTool.Win32.SFH, Adware.Win32.Server-Web, Hacktool.Win32.HFS
53.85%

K7 AntiVirus
RemoteTool, Trojan
38.46%

AhnLab V3 Security
Unwanted/Win32.Xema, HackTool/Win32.HFS, Trojan/Win32.Generic
38.46%

Fortinet FortiGate
Riskware/SFH, Riskware/Server_Web_HFS
38.46%

Kaspersky
not-a-virus:Server-FTP.Win32.SFH
30.77%

Sophos
Http File Server, Generic PUA NG
30.77%

IKARUS anti.virus
not-a-virus:Server-FTP.Win32.SFH
30.77%

McAfee
Generic PUP.x!dz, Artemis!7312403D4D57, Virus.W32/Ramnit.a
23.08%

VIPRE Antivirus
Server-FTP.Win32.SFH (not malicious), Threat.4732184
15.38%

F-Prot
W32/MalwareF.OBCK, W32/Ramnit.B!Generic
15.38%

Trend Micro House Call
TROJ_GEN.F47V0216, TROJ_GEN.F47V0302
15.38%

Avira AntiVirus
APPL/HttpFileServer
7.69%

XVirus List
Win.Detected
7.69%

The domain www.rejetto.com has been seen to resolve to the following 3 IP addresses.

65.99.251.251
web1-dal1.u2-web.com
November 10, 2014

69.42.49.54
web7-us.u2-web.com
March 15, 2014

67.22.136.35
web6.u2-web.com
February 5, 2014

File downloads found at URLs served by www.rejetto.com.

1 / 68      (Malware)
http://www.rejetto.com/.../download  (hfs.exe)

1 / 68      (Malware)
http://www.rejetto.com/files/.../hfs1.6a.zip  (hfs.exe)

6 / 68      (Malware)
http://www.rejetto.com/.../download  (hfs.exe)

1 / 68      (Malware)
http://www.rejetto.com/.../download  (hfs.exe)

1 / 68      (Malware)
http://www.rejetto.com/.../download  (hfs.exe)

1 / 68      (Malware)
http://www.rejetto.com/.../download  (hfs.exe)

0 / 68
http://www.rejetto.com/.../download  (hfs.exe)

0 / 68
http://www.rejetto.com/.../download  (hfs.exe)

3 / 68      (Malware)
http://www.rejetto.com/.../download  (hfs.exe)

10 / 68    (PUP)
http://www.rejetto.com/.../download  (hfs_4.exe)

5 / 68      (Malware)
http://www.rejetto.com/.../download  (http file server.exe)

0 / 68
http://www.rejetto.com/.../download  (hfs.exe)

9 / 68      (PUP)
http://www.rejetto.com/hfs/.../  (52364cf04ff8fb1834971de14ec7a7e3)

9 / 68      (PUP)
http://www.rejetto.com/hfs/.../  (9309e855828e52624bbb9b5f54851b73)

9 / 68      (PUP)
http://www.rejetto.com/.../download  (hfs.exe)

9 / 68      (PUP)
http://www.rejetto.com/.../download  (hfs.exe)

5 / 68      (Malware)
http://www.rejetto.com/hfs/.../  (1c14ece37d3872a0ddd31ea68ac26b14)

5 / 68      (Malware)
http://www.rejetto.com/.../download  (hfs.exe)

3 / 68      (inconclusive)
http://www.rejetto.com/hfs/.../  (602b337db1ab30280eb2eb3090d5c36a)

3 / 68      (inconclusive)
http://www.rejetto.com/.../download  (hfs.exe)

18 / 68    (PUP)
http://www.rejetto.com/.../download  (hfs.exe)

18 / 68    (PUP)
http://www.rejetto.com/hfs/.../  (6e491a7fecb845974f8f6f65b419c7b1)

The following file have been seen to comunicate with www.rejetto.com in live environments.

TCP » 65.99.251.251:80
hfs262_rus.exe (Http File Server by rejetto)

URL:
http://www.rejetto.com/

Google Analytics:
UA-1431054

Title:
“rejetto.com - portal”

Web server:
nginx

Facebook:
Likes:  9
Shares:  9
Comments:  1

Twitter:
Shares:  15

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.