www1.ww4.fb-hosting-apps.com

Whois Privacy Corp.

Domain Information

The domain www1.ww4.fb-hosting-apps.com registered by Whois Privacy Corp. was initially registered in January of 2013 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Remove Malware from www1.ww4.fb-hosting-apps.com - Powered by Reason Core Security
Registrar:
INTERNET DOMAIN SERVICE BS CORP

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Saturday, January 05, 2013

Expires date:
Thursday, January 05, 2017

Updated date:
Wednesday, January 06, 2016

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

avast!
Win32:Amonetize-AX [PUP], Win32:Amonetize-BJ [PUP], Win32:Amonetize-BX [PUP], Win32:Adware-gen [Adw], Win32:Amonetize-CJ [PUP], Win32:Rootkit-gen [Rtk]
95.00%

Avira AntiVirus
ADWARE/Adware.Gen2, Adware/Graftor.146078.3, Adware/Graftor.146078.139, Adware/Graftor.146078.94, TR/Trash.Gen
95.00%

Sophos
Amonetize, Generic PUA AG, Generic PUA DH, Generic PUA NH, Generic PUA FN, Generic PUA EJ, Generic PUA MP, Amonetize (PUA)
95.00%

AhnLab V3 Security
PUP/Win32.Amonetiz
95.00%

ESET NOD32
Win32/Amonetize.AO (variant), Win32/Amonetize.AS (variant), Win32/Amonetize.AW (variant), Win32/Amonetize.BD (variant), Win32/Amonetize.BF.gen (variant)
95.00%

Malwarebytes
PUP.Optional.Amonetize, PUP.Optional.Monetizer, PUP.Optional.Amonitize
92.50%

Kaspersky
not-a-virus:HEUR:AdWare.Win32.Amonetize, not-a-virus:Downloader.Win32.Agent, not-a-virus:AdWare.Win32.Amonetize
87.50%

McAfee
Artemis!8F7E7D7127DC, Artemis!F36DF93C29FB, Artemis!3F14101FC430, Artemis!5891B643EA99, Artemis!65A5C8A20DE4, Artemis!A29FEB5E45FD, Artemis!CF197139E307, Artemis!A4DDE58FB275, PUP-FBM!7293B5072072, PUP-FBM!39E08FA9A510, PUP-FBM!6CF282B018DC, PUP-FBM!548129F6429B, Artemis!C5E78852582E, PUP-FBM!28A121E0E10D, PUP-FBM!19B373E7B425, PUP-FBM!545B6CFA9A4E, Artemis!9C5F503FE45D, PUP-FBM!F8D207785B0F, PUP-FBM!DBC3F310D4F0, Artemis!A76C8199579F
87.50%

Reason Heuristics
Threat.Win.Reputation.IMP, PUP.Win.Reputation, PUP.Installer.InstallPath.AA, PUP.Installer.KOMPANIYAR.a, PUP.Installer.KOMPANIYAR.AA
87.50%

McAfee Web Gateway
Artemis!8F7E7D7127DC, Artemis!F36DF93C29FB, Artemis!3F14101FC430, Artemis!5891B643EA99, Artemis!65A5C8A20DE4, Heuristic.LooksLike.Win32.Suspicious.I
85.00%

Baidu Antivirus
Adware.Win32.Amonetize
77.50%

VIPRE Antivirus
Amonetize, Threat.4785227, Trojan.Win32.Generic
77.50%

Trend Micro House Call
TROJ_GEN.F47V0516, TROJ_GEN.F47V0517, TROJ_GEN.F47V0526, TROJ_GEN.F47V0527, TROJ_GEN.R047H06EU14, TROJ_GEN.F47V0522, TROJ_GEN.R0C1H06F914
67.50%

NANO AntiVirus
Riskware.Win32.Amonetize.cxjevj, Riskware.Win32.Downware.cyusqp, Riskware.Win32.Amonetize.cyxkne, Riskware.Win32.Downware.daymkg
65.00%

AVG
Generic_r, Amonetize, BundleApp_r.R, Adware Generic_r
65.00%

The domain www1.ww4.fb-hosting-apps.com has been seen to resolve to the following 8 IP addresses.

ns1.ibspark.com
January 27, 2016

unallocated.barefruit.co.uk
May 3, 2015

July 23, 2014

July 23, 2014

(CloudFlare)
June 20, 2014

(CloudFlare)
June 20, 2014

(CloudFlare)
May 13, 2014

(CloudFlare)
May 13, 2014

File downloads found at URLs served by www1.ww4.fb-hosting-apps.com.

 
Latest 30 of 370 download URLs

The following 137 files have been seen to comunicate with www1.ww4.fb-hosting-apps.com in live environments.

 
Latest 20 of 137 files

URL:
http://www1.ww4.fb-hosting-apps.com/

Title:
“fb-hosting-apps.com”

Web server:
nginx

Remove Malware from www1.ww4.fb-hosting-apps.com - Powered by Reason Core Security