www.singulardownload.com

Moniker Privacy Services  (Proxy Registrant)

Domain Information

The domain www.singulardownload.com is registered by proxy through Moniker Online Services and was originally registered in October of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrar:
Moniker Online Services

Server location:
Virginia, United States (US)

Create date:
Thursday, October 31, 2013

Expires date:
Saturday, October 31, 2015

Updated date:
Wednesday, November 05, 2014

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.Amonetize, PUP.Optional.Amonetize.A
100.00%

Avira AntiVirus
TR/Patched.Gen, ADWARE/Adware.Gen2
97.30%

ESET NOD32
Win32/Amonetize.AD (variant), Win32/Amonetize.AG (variant), Win32/Amonetize.AI (variant), Win32/Amonetize.AJ (variant), Win32/Amonetize.AS (variant)
89.19%

avast!
Adware-ASG [PUP], Win32:Amonetize-F [PUP], Win32:Amonetize-J [PUP], Win32:Adware-BJY [PUP], Win32:Amonetize-G [PUP], Win32:Dropper-gen [Drp]
86.49%

McAfee
Adware-Amonetize!5E25C1B59026, Artemis!D781C2D445BA, Artemis!8CC2F0A16469, Adware-Amonetize!BE0E2E71EA9E, Artemis!8D3386F3ACE9, Artemis!9CD2EFDC87EC, Adware-Amonetize!DC035ED17CF1, Artemis!464F7A8A3D64, Artemis!462AF8735043, Artemis!F67567FFBD07, Adware-Amonetize!75B5F2E2A99A, Artemis!E73EFB444A18, Adware-Amonetize!D7E90BB18D3F, Adware-Amonetize!9E63DD19C5B7, PUP-FBM!F3EF566F9D55, Artemis!1D273E2F3190, Adware-Amonetize!C061322F7C02, Artemis!5E0EC235EE08, Artemis!ED3B4A4B2A25, Adware-Amonetize!044210127E02
83.78%

Reason Heuristics
PUP.Installer.Amonetizeltd.?, Threat.Win.Reputation.IMP, PUP.Installer.Amonetizeltd.S, PUP.Installer.ShetefSolutionsConsulting1998.?, PUP.Installer.ShetefSolutionsConsulting1998.n
83.78%

Trend Micro House Call
TROJ_GEN.F47V0214, TROJ_GEN.F47V0226, TROJ_GEN.F47V0227, TROJ_GEN.F47V0302, TROJ_GEN.F47V0303, TROJ_GEN.F47V0305, TROJ_GEN.F47V0309
78.38%

AhnLab V3 Security
PUP/Win32.Amonetiz, PUP/Win32.Amonetize
78.38%

McAfee Web Gateway
Adware-Amonetize!5E25C1B59026, Artemis!D781C2D445BA, Artemis!8CC2F0A16469, Adware-Amonetize!BE0E2E71EA9E, Artemis!8D3386F3ACE9
72.97%

Dr.Web
riskware program Program.Uniblue.12, Adware.Downware.1655, Adware.Downware.1575, Adware.Downware.2250, Adware.Downware.2467
67.57%

VIPRE Antivirus
Amonetize, Trojan.Win32.Generic, Trojan-Downloader.Win32.Agent, Threat.4785227
67.57%

Fortinet FortiGate
Riskware/Amonetize, Adware/Amonetize
62.16%

Sophos
Amonetize, Generic PUA GM
62.16%

Kaspersky
not-a-virus:WebToolbar.Win32.CrossRider, not-a-virus:HEUR:AdWare.Win32.Amonetize, not-a-virus:AdWare.Win32.Amonetize, not-a-virus:HEUR:Adware.Win32.Amonetize
59.46%

AVG
MalSign.Generic, Generic_r, Adware BundleApp_r.R
51.35%

The domain www.singulardownload.com has been seen to resolve to the following 12 IP addresses.

184.172.106.42-static.reverse.softlayer.com
January 31, 2015

December 7, 2014

209.222.14.3.choopa.net
December 1, 2014

ec2-107-20-210-63.compute-1.amazonaws.com
May 29, 2014

ec2-50-17-209-45.compute-1.amazonaws.com
May 29, 2014

ec2-50-17-206-16.compute-1.amazonaws.com
May 29, 2014

ec2-23-21-228-251.compute-1.amazonaws.com
May 29, 2014

ec2-54-235-68-127.compute-1.amazonaws.com
April 11, 2014

ec2-107-21-115-114.compute-1.amazonaws.com
April 11, 2014

ec2-54-235-189-159.compute-1.amazonaws.com
March 27, 2014

ec2-54-225-132-130.compute-1.amazonaws.com
March 14, 2014

ec2-54-225-181-84.compute-1.amazonaws.com
February 20, 2014

File downloads found at URLs served by www.singulardownload.com.

 
Latest 30 of 129 download URLs

The following 17 files have been seen to comunicate with www.singulardownload.com in live environments.

URL:
http://www.singulardownload.com/

Google Analytics:
UA-51058839

Title:
“singulardownload.com”

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Apache

Detection Incidence by Country