www.transdownload.com

Amonetize ltd.

Domain Information

The domain www.transdownload.com registered by null was initially registered in October of 2013 through Moniker Online Services. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform. The domain is associated with the publisher Amonetize ltd. who is located in Raanana, Israel.
Remove Malware from www.transdownload.com - Powered by Reason Core Security
Registrar:
Moniker Online Services

Server location:
Virginia, United States (US)

Create date:
Thursday, October 31, 2013

Expires date:
Monday, October 31, 2016

Updated date:
Tuesday, October 20, 2015

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.InstallMonetizer, PUP.Optional.Amonetize, PUP.Optional.Amonetize.A, PUP.Optional.Downloader
95.12%

ESET NOD32
Win32/Amonetize (variant), Win32/Amonetize.AA (variant), Win32/Amonetize.AD (variant), Win32/Amonetize.AG (variant), Win32/Amonetize.AI (variant)
90.24%

Reason Heuristics
PUP.Installer.Amonetizeltd.EE, PUP.Installer.Amonetizeltd.O, PUP.Installer.Amonetizeltd.b, PUP.Installer.Amonetizeltd.v, PUP.Installer.Amonetizeltd.Z, PUP.Installer.Amonetizeltd.BB, PUP.Installer.Amonetizeltd.Y, PUP.Installer.ShetefSolutionsConsulting1998.n
85.37%

avast!
Win32:Dropper-gen [Drp], Win32:Amonetize-E [PUP], Win32:Adware-BJY [PUP], Win32:Amonetize-F [PUP], Win32:Amonetize-N [PUP], Win32:Amonetize-Q [PUP]
82.93%

McAfee
Artemis!4476FBE0C98B, Artemis!577A16D372DC, Artemis!F0B991FC49D6, Artemis!8BD496B8564F, Artemis!FD79CC328E98, Adware-Amonetize!2F5C2A2569FF, Adware-Amonetize!9468B3566BA3, Adware-Amonetize!01060DF48554, Adware-Amonetize!A344D0D1EA02, Adware-Amonetize!4C9E62787C6A, Adware-Amonetize!822B883C5AD6, Adware-Amonetize!806486D56A37, Artemis!9570EB53D633, Adware-Amonetize!E5D74C168418, Adware-Amonetize!BE0E2E71EA9E, Artemis!97EC61C98BD1, Adware-Amonetize!0DE7113F0DBA, Artemis!3C84784ECC02, Artemis!81BA3E147029, Artemis!31EAC5D0E8D7, Artemis!AAD320A99B7B, Artemis!5C6BD2794FED, PUP-FBM!7469BEDA588E, Artemis!A88731362644, Adware-Amonetize!EADE0579F1AB
80.49%

Dr.Web
Adware.Downware.1655, Adware.Downware.1833, Adware.Downware.2083, Adware.Downware.1575, Adware.Downware.2250, Adware.Downware.2467, Adware.Downware.1729
78.05%

McAfee Web Gateway
Artemis!4476FBE0C98B, Artemis!577A16D372DC, Artemis!F0B991FC49D6, Artemis!8BD496B8564F, Artemis!FD79CC328E98, Adware-Amonetize!2F5C2A2569FF
78.05%

VIPRE Antivirus
Amonetize, Trojan.Win32.Generic
70.73%

Sophos
Amonetize, Generic PUA BP
70.73%

AhnLab V3 Security
PUP/Win32.Amonetiz, PUP/Win32.Amonetize
68.29%

Trend Micro House Call
TROJ_GEN.F47V1124, TROJ_GEN.F47V1219, TROJ_GEN.F47V1126, TROJ_GEN.F47V1108, TROJ_GEN.F47V1215, TROJ_GEN.F47V1112, TROJ_GEN.F47V0123
65.85%

Avira AntiVirus
ADWARE/Adware.Gen2, APPL/Amonetize.Z, TR/Trash.Gen, Adware/Amonetize.tzv
65.85%

AVG
Generic5, MalSign.Generic, Generic_r, MalSign.Wilmo, BundleApp_r.R, Adware Generic6.TWT
56.10%

Fortinet FortiGate
Riskware/Amonetize, Adware/Amonetize, Riskware/PUP
51.22%

K7 Gateway Antivirus
Unwanted-Program , Trojan , Adware
36.59%

The domain www.transdownload.com has been seen to resolve to the following 22 IP addresses.

February 11, 2016

66-16.colo.sta.blacknight.ie
June 19, 2015

184.172.106.42-static.reverse.softlayer.com
December 31, 2014

209.222.14.3.choopa.net
November 10, 2014

ec2-50-17-206-16.compute-1.amazonaws.com
May 21, 2014

ec2-23-21-228-251.compute-1.amazonaws.com
May 21, 2014

ec2-107-20-210-63.compute-1.amazonaws.com
May 21, 2014

ec2-50-17-209-45.compute-1.amazonaws.com
May 21, 2014

ec2-54-227-248-18.compute-1.amazonaws.com
May 15, 2014

ec2-54-243-182-65.compute-1.amazonaws.com
May 15, 2014

ec2-54-204-3-25.compute-1.amazonaws.com
May 15, 2014

ec2-54-225-178-80.compute-1.amazonaws.com
May 15, 2014

ec2-54-243-209-117.compute-1.amazonaws.com
May 5, 2014

ec2-54-243-209-139.compute-1.amazonaws.com
May 5, 2014

ec2-54-235-68-127.compute-1.amazonaws.com
April 11, 2014

ec2-107-21-115-114.compute-1.amazonaws.com
April 11, 2014

ec2-54-235-189-159.compute-1.amazonaws.com
March 19, 2014

ec2-54-225-132-130.compute-1.amazonaws.com
March 14, 2014

ec2-23-21-81-61.compute-1.amazonaws.com
March 6, 2014

ec2-54-225-181-84.compute-1.amazonaws.com
February 1, 2014

ec2-23-23-96-46.compute-1.amazonaws.com
January 10, 2014

ec2-54-243-172-72.compute-1.amazonaws.com
December 22, 2013

File downloads found at URLs served by www.transdownload.com.

 
Latest 30 of 182 download URLs

The following 26 files have been seen to comunicate with www.transdownload.com in live environments.

 
Latest 20 of 27 files

URL:
http://www.transdownload.com/

Title:
“transdownload.com - This website is for sale! - transdownload Resources and Information.”

Description:
“This website is for sale! transdownload.com is your first and best source for information about transdownload . Here you will also find topics relating to issues of general interest. We hope you find what you are looking for!”

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Apache (PHP/5.3.3-7+squeeze28)

30 of 30 related domains

Remove Malware from www.transdownload.com - Powered by Reason Core Security