www.wilddownload.com

Amonetize ltd.  (via a Proxy Registrant)

Domain Information

The domain www.wilddownload.com is registered by proxy through Moniker Online Services and was originally registered in October of 2013. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Amonetize ltd. who is located in Raanana, Israel.
Remove Malware from www.wilddownload.com - Powered by Reason Core Security
Registrar:
Moniker Online Services

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Thursday, October 31, 2013

Expires date:
Saturday, October 31, 2015

Updated date:
Saturday, November 01, 2014

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

ESET NOD32
Win32/Amonetize (variant), Win32/Amonetize.AA (variant), Win32/Amonetize.AJ (variant)
92.86%

Malwarebytes
PUP.Optional.InstallMonetizer, PUP.Optional.Monetizer, PUP.Optional.Amonetize.A
85.71%

Reason Heuristics
PUP.Installer.Amonetizeltd.c, PUP.Installer.Amonetizeltd.a, PUP.Installer.Amonetizeltd.o, PUP.Installer.Amonetizeltd.EE, PUP.Installer.Amonetizeltd.F, PUP.Amonetize.Bundler (M)
85.71%

Trend Micro House Call
TROJ_GEN.F47V1119, TROJ_GEN.F47V1118, TROJ_GEN.F47V1108, TROJ_GEN.F47V1214, TROJ_GEN.F47V1114, TROJ_GEN.F47V1112, TROJ_GEN.F47V1105
78.57%

VIPRE Antivirus
Conduit, Amonetize
71.43%

Dr.Web
Adware.Downware.1655, Adware.Downware.1729, Adware.Downware.1643, Adware.Downware.2467
57.14%

Sophos
Amonetize
42.86%

McAfee
Artemis!F448F7D776AD, Artemis!D9450DCB35E7, Artemis!0809F462F8DF, Artemis!61694A9BADE3, Artemis!B260F8AA3973, Artemis!2F13426C9D1D
42.86%

McAfee Web Gateway
Artemis!F448F7D776AD, Artemis!D9450DCB35E7, Artemis!0809F462F8DF, Artemis!61694A9BADE3, Artemis!B260F8AA3973, Artemis!2F13426C9D1D
42.86%

Avira AntiVirus
Adware/Amonetize.E.1, APPL/Amonetize.A, ADWARE/Adware.Gen2
35.71%

Bkav FE
W32.Clode2e.Trojan, W32.Clod233.Trojan, W32.Clode29.Trojan
21.43%

K7 AntiVirus
Unwanted-Program , Trojan
21.43%

K7 Gateway Antivirus
Unwanted-Program , Trojan
21.43%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
21.43%

avast!
Win32:Dropper-gen [Drp], Win32:Amonetize-AM [PUP]
21.43%

The domain www.wilddownload.com has been seen to resolve to the following 13 IP addresses.

unallocated.barefruit.co.uk
May 3, 2015

ns1.expirationwarning.net
December 6, 2014

209.222.14.3.choopa.net
December 1, 2014

ec2-50-17-206-16.compute-1.amazonaws.com
June 13, 2014

ec2-107-20-210-63.compute-1.amazonaws.com
June 13, 2014

ec2-23-21-228-251.compute-1.amazonaws.com
June 13, 2014

ec2-50-17-209-45.compute-1.amazonaws.com
June 13, 2014

ec2-107-21-115-114.compute-1.amazonaws.com
April 11, 2014

ec2-54-235-68-127.compute-1.amazonaws.com
April 11, 2014

ec2-23-23-96-46.compute-1.amazonaws.com
February 2, 2014

ec2-54-225-181-84.compute-1.amazonaws.com
February 2, 2014

ec2-54-243-172-72.compute-1.amazonaws.com
December 18, 2013

ec2-54-243-61-26.compute-1.amazonaws.com
November 21, 2013

File downloads found at URLs served by www.wilddownload.com.

5 / 68      (PUP)
http://www.wilddownload.com/download.php?version=1.1.6.20&campid=4411&capp=s7zip&prefix=GameSetup  (belltech.small.business.publisher.5.1.1.rar__4607_i190322600_il264.exe)

 
Latest 30 of 31 download URLs

The following 158 files have been seen to comunicate with www.wilddownload.com in live environments.

 
Latest 20 of 159 files

URL:
http://www.wilddownload.com/

Google Analytics:
UA-51058839

Title:
“wilddownload.com”

Web server:
nginx/1.0.15

30 of 47 related domains

Remove Malware from www.wilddownload.com - Powered by Reason Core Security