www.torntv-downloader.com

Corp New Ventures Services

Domain Information

The domain www.torntv-downloader.com registered by Corp New Ventures Services was initially registered in May of 2015 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Francisco, California within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Northern California) region datacenter.
Remove Malware from www.torntv-downloader.com - Powered by Reason Core Security
Registrar:
ADOMAINOFYOUROWN.COM LLC

Server location:
California, United States (US)

Create date:
Wednesday, May 27, 2015

Expires date:
Friday, May 27, 2016

Updated date:
Tuesday, June 02, 2015

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.OneClickDownloader.A
100.00%

Reason Heuristics
PUP.InstallLabltd.P, PUP.CoolMirage.k, PUP.CoolMirage.EE, PUP.CoolMirage.FF, PUP.CoolMirage.DD, PUP.CoolMirage.P, PUP.CoolMirage.?, PUP.KantidaChanudrum.a
97.06%

Qihoo 360 Security
Win32/Virus.Adware.47b, HEUR/Malware.QVM06.Gen
88.24%

G Data
NSIS.Adware.OneClickDownloader, NSIS.Application.OneClickDownloader, Application.Bundler.BK
73.53%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
70.59%

Trend Micro House Call
TROJ_GEN.F47V0322, TROJ_GEN.F47V0327, TROJ_GEN.F47V0407, TROJ_GEN.F47V0410, TROJ_GEN.F47V0508, TROJ_GEN.F47V0514, Suspicious_GEN.F47V0612
61.76%

Dr.Web
Adware.Downware.1263, Adware.Downware.5516, Trojan.Click3.8961, Adware.Yontoo.11, Adware.Downware.6586, Adware.Downware.8319
55.88%

Sophos
CoolMirage, FT Downloader, 1 Click Downloader
41.18%

VIPRE Antivirus
Conduit, CoolMirage Ltd, BubbleDock, Threat.4150696, Trojan.Win32.Generic
35.29%

Avira AntiVirus
APPL/CoolMirage.A.33, APPL/CoolMirage.A.47, APPL/CoolMirage.Gen
35.29%

McAfee
Artemis!E5BC179F37CA, Artemis!3FF815D9FB58, Artemis!9017882E8D17, Artemis!02A8E61B1281, Artemis!5CEF47AE06AD, Artemis!2FE95CE9C873, Artemis!F35AEDA12976, Artemis!E551CEF475BC, Artemis!370806B8CC9D
29.41%

NANO AntiVirus
Riskware.Nsis.Tron.cvleaj, Trojan.Nsis.Yotoon.deckrr
26.47%

McAfee Web Gateway
Artemis!E5BC179F37CA, Artemis!3FF815D9FB58, Artemis!9017882E8D17, Artemis!02A8E61B1281, Artemis!5CEF47AE06AD, Artemis!2FE95CE9C873
26.47%

Panda Antivirus
PUP/MultiToolbar.A, Trj/Chgt.D
26.47%

AVG
Generic, Rungnapa
17.65%

The domain www.torntv-downloader.com has been seen to resolve to the following 8 IP addresses.

February 9, 2016

July 1, 2015

ec2-184-169-157-32.us-west-1.compute.amazonaws.com
January 21, 2015

ec2-50-18-168-176.us-west-1.compute.amazonaws.com
November 10, 2014

ec2-54-241-253-59.us-west-1.compute.amazonaws.com
September 2, 2014

ec2-50-18-104-209.us-west-1.compute.amazonaws.com
August 10, 2014

ec2-50-18-174-205.us-west-1.compute.amazonaws.com
May 10, 2014

ec2-184-169-175-49.us-west-1.compute.amazonaws.com
May 2, 2014

File downloads found at URLs served by www.torntv-downloader.com.

4 / 68      (Adware)

6 / 68      (Adware)

11 / 68    (Adware)

10 / 68    (Adware)

11 / 68    (Adware)
http://www.torntv-downloader.com/.../IRC_bookz_2013-12.exe  (resurrection_us_s01e02_hdtv_x264-lol[ettv].exe)

8 / 68      (Adware)
http://www.torntv-downloader.com/.../Whitburn_Country_1944-1975.exe  (medieval_ii_total_war_kingdoms_expansion.exe)

7 / 68      (Adware)

9 / 68      (Adware)
http://www.torntv-downloader.com/.../(StepmomVideos)_Kylie_Rogue,_Sasha_Summers_(Stepmom_Shows_How_To.exe  (download_side_effects__brrip_(xvid)_nl_subs._dmt_torrent_-_kickasstorrents.exe)

12 / 68    (Adware)
http://www.torntv-downloader.com/.../Eric_Dolphy_-_'Out_To_Lunch_!'_1964_-_320Kbps_-_Jazz_.exe  (elcomsoft_wireless_security_auditor_v2_12_0_319_przyprawykuchenne_zip.exe)

9 / 68      (Adware)
http://www.torntv-downloader.com/.../Eurythmics_-_The_Ultimate_Collection_(2005-mp3-320)_(SvC).exe  (download_side_effects__brrip_(xvid)_nl_subs._dmt_torrent_-_kickasstorrents.exe)

7 / 68      (Adware)

12 / 68    (Adware)

9 / 68      (Adware)
http://www.torntv-downloader.com/.../The_Trilogy_-_Dan_And_Dave_-_Disc_2.exe  (download_side_effects__brrip_(xvid)_nl_subs._dmt_torrent_-_kickasstorrents.exe)

10 / 68    (Adware)

10 / 68    (Adware)
http://www.torntv-downloader.com/.../Dania_-_Braided_Babe_(Rub_A_Teen)_-2013-_FullHD.exe  (assassins_creed_unity_[full_cracked_game_2014-complete_collecti.exe)

9 / 68      (Adware)
http://www.torntv-downloader.com/.../Wondershare_Dr.Fone_for_iOS_3.5.1.2_Key.exe  (kama_sutra-a_tale_of_love__720p_brrip_x264-anarchy.exe)

7 / 68      (Adware)

7 / 68      (Adware)

10 / 68    (Adware)

4 / 68      (Adware)
http://www.torntv-downloader.com/.../Blues_Clues_ABCtime.exe  (pretty_little_liars_s05e02_hdtv_x264_lol[ettv].exe)

10 / 68    (Adware)

7 / 68      (Adware)
http://www.torntv-downloader.com/.../Marvel_NOW_Week_32.exe  (age_of_mythology_extended_edition.exe)

9 / 68      (Adware)

11 / 68    (Adware)
http://www.torntv-downloader.com/.../(TeenFidelity)_Emma_Stoned_(Jean_Fucking_.exe  (risk_management_and_corporate_governance_interconnections_in_law_accounting_and_tax_full.exe)

 
Latest 30 of 43 download URLs

The following 3 files have been seen to comunicate with www.torntv-downloader.com in live environments.

URL:
http://www.torntv-downloader.com/

Title:
“torntv-downloader.com”

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Microsoft-IIS/8.5 (ASP.NET) (Version: 4.0.30319)

Remove Malware from www.torntv-downloader.com - Powered by Reason Core Security