www.rejetto.com

MASSIMO MELINA

Domain Information

The domain www.rejetto.com registered by MASSIMO MELINA was initially registered in January of 2001 through ENOM, INC.. Currently this domain has been known to host various forms of malware. The hosted servers are located in Toronto, Ontario within Canada which resides on the Cologlobal network.
Registrar:
ENOM, INC.

Server location:
Ontario, Canada (CA)

Create date:
Monday, January 29, 2001

Expires date:
Friday, January 29, 2016

Updated date:
Sunday, January 04, 2015

Root domain:

Scanner detections:
Malware distribution  (75% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP
76.92%

ESET NOD32
Win32/Server-Web.HFS (variant), Win32/Server-Web.HFS.A potentially unsafe (variant)
61.54%

Baidu Antivirus
Trojan.Win32.Server-Web, HackTool.Win32.SFH, Adware.Win32.Server-Web, Hacktool.Win32.HFS
53.85%

K7 AntiVirus
RemoteTool, Trojan
38.46%

AhnLab V3 Security
Unwanted/Win32.Xema, HackTool/Win32.HFS, Trojan/Win32.Generic
38.46%

Fortinet FortiGate
Riskware/SFH, Riskware/Server_Web_HFS
38.46%

Kaspersky
not-a-virus:Server-FTP.Win32.SFH
30.77%

Sophos
Http File Server, Generic PUA NG
30.77%

IKARUS anti.virus
not-a-virus:Server-FTP.Win32.SFH
30.77%

K7 Gateway Antivirus
Trojan
30.77%

Antiy Labs AVL
RiskWare[Server-FTP:not-a-virus]/Win32.SFH, Trojan/Win32.TSGeneric
30.77%

McAfee
Generic PUP.x!dz, Artemis!7312403D4D57, Virus.W32/Ramnit.a
23.08%

VIPRE Antivirus
Server-FTP.Win32.SFH (not malicious), Threat.4732184
15.38%

F-Prot
W32/MalwareF.OBCK, W32/Ramnit.B!Generic
15.38%

McAfee Web Gateway
Generic PUP.x!dz, Artemis!PUP
15.38%

The domain www.rejetto.com has been seen to resolve to the following 3 IP addresses.

web1-dal1.u2-web.com
November 10, 2014

web7-us.u2-web.com
March 15, 2014

web6.u2-web.com
February 5, 2014

File downloads found at URLs served by www.rejetto.com.

1 / 68      (Malware)

1 / 68      (Malware)

6 / 68      (Malware)

1 / 68      (Malware)

1 / 68      (Malware)

1 / 68      (Malware)

3 / 68      (Malware)

12 / 68    (PUP)

7 / 68      (Malware)
http://www.rejetto.com/.../download  (http file server.exe)

11 / 68    (PUP)
http://www.rejetto.com/hfs/.../  (52364cf04ff8fb1834971de14ec7a7e3)

11 / 68    (PUP)
http://www.rejetto.com/hfs/.../  (9309e855828e52624bbb9b5f54851b73)

11 / 68    (PUP)

11 / 68    (PUP)

6 / 68      (Malware)
http://www.rejetto.com/hfs/.../  (1c14ece37d3872a0ddd31ea68ac26b14)

6 / 68      (Malware)

3 / 68      (inconclusive)
http://www.rejetto.com/hfs/.../  (602b337db1ab30280eb2eb3090d5c36a)

3 / 68      (inconclusive)

24 / 68    (PUP)

24 / 68    (PUP)
http://www.rejetto.com/hfs/.../  (6e491a7fecb845974f8f6f65b419c7b1)

The following file have been seen to comunicate with www.rejetto.com in live environments.

URL:
http://www.rejetto.com/

Google Analytics:
UA-1431054

Title:
“rejetto.com - portal”

Web server:
nginx

Facebook:
Likes:  9
Shares:  9
Comments:  1

Twitter:
Shares:  15

Statistics are for the previous month.