www.shar-m.com

Whois Privacy Corp.

Domain Information

The domain www.shar-m.com registered by Whois Privacy Corp. was initially registered in November of 2013 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Roosendaal, Noord-Brabant within Netherlands which resides on the RIPE Network Coordination Centre network.
Registrar:
INTERNET DOMAIN SERVICE BS CORP

Server location:
Noord-Brabant, Netherlands (NL)

Create date:
Wednesday, November 13, 2013

Expires date:
Sunday, November 13, 2016

Updated date:
Friday, December 11, 2015

ASN:
AS43350 NFORCE NFOrce Entertainment BV,NL

Root domain:

Google Safe Browsing:
malware

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.FINEDREAMINVEST.K, PUP.FINEDREAMINVEST.Z, PUP.FINEDREAMINVEST.g, PUP.FINEDREAMINVEST.n, PUP.FINEDREAMINVEST.u, PUP.FINEDREAMINVEST.c, PUP.LADYSWOOD2013LIMITED.AA, PUP.LADYSWOOD2013LIMITED.T, PUP.SOFTWAREAGILITY (M), PUP.SOFTWAREAGILITYLIMITED.c, PUP.SOFTWAREAGILITYLIMITED.W, PUP.LADYSWOOD2013LIMITED., PUP.FINEDREAMINVEST (M), PUP.Brightcircle.LADYSWOOD2013 (M), PUP.Brightcircle.LADYSWOO (M), PUP.FINEDREA (M), PUP.SOFTWARE (M), PUP (M), PUP.Brightcircle (M)
96.97%

Dr.Web
Adware.Downware.1659, Trojan.DownLoader11.9093, Adware.Downware.2160
18.18%

MicroWorld eScan
Gen:Variant.Adware.Graftor.126981, Gen:Variant.Graftor.143582, Gen:Variant.Zusy.92397, Gen:Variant.Application.Downloader.Oxy.1
15.15%

Bitdefender
Gen:Variant.Adware.Graftor.126981, Gen:Variant.Graftor.143582, Gen:Variant.Zusy.92397, Gen:Variant.Application.Downloader.Oxy.1
15.15%

Lavasoft Ad-Aware
Gen:Variant.Adware.Graftor.126981, Gen:Variant.Graftor.143582, Gen:Variant.Zusy.92397, Gen:Variant.Application.Downloader.Oxy.1
15.15%

Emsisoft Anti-Malware
Gen:Variant.Adware.Graftor.126981, Gen:Variant.Graftor.143582, Gen:Variant.Zusy.92397, Gen:Variant.Application.Downloader.Oxy
15.15%

G Data
Gen:Variant.Adware.Graftor.126981, Gen:Variant.Graftor.143582, Gen:Variant.Zusy.92397, Gen:Variant.Application.Downloader.Oxy
15.15%

AVG
Dropper.Agent, Bundle, Trojan horse Downloader.Generic13.CBCT
15.15%

Malwarebytes
PUP.Optional.FilePile.A
12.12%

avast!
Win32:Adware-BGS [PUP], Win32:Malware-gen, Win32:Adware-BLB [PUP]
12.12%

VIPRE Antivirus
iPumper, Threat.4150696, Threat.4847483
12.12%

Avira AntiVirus
ADWARE/Adware.Gen
12.12%

Rising Antivirus
PE:PUF.FilePile!1.9E19, PE:Malware.Adware!6.17C6
12.12%

IKARUS anti.virus
Trojan-Dropper.Agent, PUA.Bundler, PUA.BundleInstaller
12.12%

F-Secure
Gen:Variant.Adware.Graftor.126981, Gen:Variant.Graftor.143582, Gen:Variant.Zusy.92397, Gen:Variant.Application.Downloader
12.12%

The domain www.shar-m.com has been seen to resolve to the following 5 IP addresses.

urlforward.topdns.com
April 8, 2016

urlforward.topdns.com
April 8, 2016

ns1.ibspark.com
February 24, 2016

June 9, 2014

December 28, 2013

File downloads found at URLs served by www.shar-m.com.

1 / 68      (Adware)

1 / 68      (Adware)
http://www.shar-m.com/.../Happy_From_Despicable_Me_2-Pharrell_Williams..._Downloader_27599920.exe  (happy_from_despicable_me_2-pharrell_williams..._downloader.exe)

1 / 68      (PUP)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)
http://www.shar-m.com/.../{Plants_vs__Zombies_Garden_Warfare_keygen}_Downloader_585400001.exe  ({plants_vs__zombies_garden_warfare_keygen}_downloader.exe)

1 / 68      (Adware)
http://www.shar-m.com/.../Turbobit-Net-American-Horror-Story-Ita.rar_Downloader_316111114.exe  (turbobit-net-american-horror-story-ita.rar_downloader.exe)

1 / 68      (Adware)

21 / 68    (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)
http://www.shar-m.com/.../The_Wolf_Of_Wall_Street_DvDRip_XviD_ENG_._Downloader_26500001.exe  (the_wolf_of_wall_street_dvdrip_xvid_eng_._downloader.exe)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

23 / 68    (Adware)
http://www.shar-m.com/.../reference_manual_for_magnatic_resonance_safety_implants_and_devices_Downloader_276600014.exe  (reference_manual_for_magnatic_resonance_safety_implants_and_devices_downloader.exe)

1 / 68      (inconclusive)

20 / 68    (Adware)

17 / 68    (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

21 / 68    (Adware)

1 / 68      (Adware)
http://www.shar-m.com/.../Cyberghost-VPN-Key-Generator-FileLikes.com_Downloader_246901503.exe  (cyberghost-vpn-key-generator-filelikes.com_downloader.exe)

23 / 68    (Adware)

1 / 68      (Adware)

 
Latest 30 of 34 download URLs

The following 148 files have been seen to comunicate with www.shar-m.com in live environments.

 
Latest 20 of 168 files

URL:
http://www.shar-m.com/

Title:
“Go.com | The Walt Disney Company”

Description:
“Go.com is the top-level home on the Internet to the online properties of The Walt Disney Company.”

Web server:
nginx