www.spectrumdownload.com

Corp New Ventures Services

Domain Information

The domain www.spectrumdownload.com registered by Corp New Ventures Services was initially registered in January of 2015 through Moniker Online Services. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Sankt Ingbert, Saarland within Germany which resides on the RIPE Network Coordination Centre network.
Registrar:
BARONOFDOMAINS.COM LLC

Server location:
Saarland, Germany (DE)

Create date:
Monday, January 19, 2015

Expires date:
Thursday, January 19, 2017

Updated date:
Tuesday, February 23, 2016

ASN:
AS196763 KEY-SYSTEMS-AS Key-Systems GmbH,DE

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP, PUP.Installer.KOMPANIYAR.AA, PUP.Installer.KOMPANIYAR.g, PUP.Installer.KOMPANIYAR.CC, PUP.Installer.KOMPANIYAR.c, PUP.Amonetize.Bundler, PUP.Amonetize.Bundler (M), Adware.Amonetize.Installer.Meta (M), Adware.Amonetize (M)
97.62%

Malwarebytes
PUP.Optional.Amonetize, PUP.Optional.Downloader
88.10%

AhnLab V3 Security
PUP/Win32.Amonetiz, PUP/Win32.Amonetize
88.10%

AVG
Generic_r, BundleApp_r.R
88.10%

avast!
Win32:Amonetize-BJ [PUP], Win32:Amonetize-BX [PUP], Win32:Rootkit-gen [Rtk], Win32:Amonetize-CI [PUP], Win32:Amonetize-CL [PUP]
85.71%

Baidu Antivirus
Adware.Win32.Amonetize, Adware.Win32.Dropper
85.71%

VIPRE Antivirus
Amonetize, Threat.4785227, Trojan.Win32.Generic
83.33%

ESET NOD32
Win32/Amonetize.AS (variant), Win32/Amonetize.AW (variant), Win32/Amonetize.BF.gen (variant), Win32/Amonetize.BG (variant)
80.95%

NANO AntiVirus
Riskware.Win32.Downware.cyusqp, Riskware.Win32.Downware.daymkg, Riskware.Win32.Amonetize.dbbrtn, Riskware.Win32.Amonetize.dbofkb
76.19%

Avira AntiVirus
ADWARE/Adware.Gen2, Adware/Graftor.146078.139, APPL/Amonetize.Z, Adware/Amonetize.Z, Adware/Amonetize.tzv, TR/Rogue.353504
76.19%

Kaspersky
not-a-virus:HEUR:AdWare.Win32.Amonetize, not-a-virus:AdWare.Win32.Amonetize
71.43%

Sophos
Amonetize, Generic PUA NH, Generic PUA EE, Generic PUA AA, Generic PUA HK, Generic PUA EH, Generic PUA FB
69.05%

G Data
Application.Bundler.Amonetize, Gen:Variant.Application.Bundler.Amonetize, Win32.Application.Amonetize, Application.Generic.676984
64.29%

McAfee
Artemis!5B464940D8C3, PUP-FBM!D5B919686B12, PUP-FBM!4D93CFDC2F4F, PUP-FBM!5DDD5F478E00, PUP-FBM!84AD4CD6D871, PUP-FBM!6E24A640EF58, PUP-FBM!F66C1E419D46, Artemis!B4D463BA1227, Artemis!61C69D1CFD69, Artemis!F4A9F8154DE2
61.90%

Antiy Labs AVL
GrayWare[AdWare:not-a-virus,HEUR]/Win32.Amonetize, Trojan/Win32.TSGeneric, GrayWare[AdWare:not-a-virus]/Win32.Amonetize
61.90%

The domain www.spectrumdownload.com has been seen to resolve to the following 18 IP addresses.

192.230.92.93.ip.incapdns.net
August 27, 2016

199.83.132.93.ip.incapdns.net
June 29, 2016

June 5, 2016

May 25, 2016

ec2-52-18-157-175.eu-west-1.compute.amazonaws.com
May 16, 2016

February 28, 2016

May 3, 2015

ns1.expirationwarning.net
December 10, 2014

December 8, 2014

63-156-206-202.dia.static.qwest.net
November 29, 2014

ec2-23-21-228-251.compute-1.amazonaws.com
May 23, 2014

ec2-107-20-210-63.compute-1.amazonaws.com
May 23, 2014

ec2-50-17-209-45.compute-1.amazonaws.com
May 23, 2014

ec2-50-17-206-16.compute-1.amazonaws.com
May 23, 2014

ec2-54-243-182-65.compute-1.amazonaws.com
May 14, 2014

ec2-54-204-3-25.compute-1.amazonaws.com
May 14, 2014

ec2-54-225-178-80.compute-1.amazonaws.com
May 14, 2014

ec2-54-227-248-18.compute-1.amazonaws.com
May 14, 2014

File downloads found at URLs served by www.spectrumdownload.com.

 
Latest 30 of 308 download URLs

The following 50 files have been seen to comunicate with www.spectrumdownload.com in live environments.

 
Latest 20 of 67 files

URL:
http://www.spectrumdownload.com/

Web server:
Apache