The domain www1.ww4.fb-hosting-apps.com registered by Whois Privacy Corp. was initially registered in January of 2013 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
INTERNET DOMAIN SERVICE BS CORP
Northern Ireland, United Kingdom (GB)
Saturday, January 05, 2013
Thursday, January 05, 2017
Wednesday, January 06, 2016
Detections (100% detected)
Win32:Amonetize-AX [PUP], Win32:Amonetize-BJ [PUP], Win32:Amonetize-BX [PUP], Win32:Adware-gen [Adw], Win32:Amonetize-CJ [PUP], Win32:Rootkit-gen [Rtk]
ADWARE/Adware.Gen2, Adware/Graftor.146078.3, Adware/Graftor.146078.139, Adware/Graftor.146078.94, TR/Trash.Gen
Amonetize, Generic PUA AG, Generic PUA DH, Generic PUA NH, Generic PUA FN, Generic PUA EJ, Generic PUA MP, Amonetize (PUA)
AhnLab V3 Security
Win32/Amonetize.AO (variant), Win32/Amonetize.AS (variant), Win32/Amonetize.AW (variant), Win32/Amonetize.BD (variant), Win32/Amonetize.BF.gen (variant)
PUP.Optional.Amonetize, PUP.Optional.Monetizer, PUP.Optional.Amonitize
not-a-virus:HEUR:AdWare.Win32.Amonetize, not-a-virus:Downloader.Win32.Agent, not-a-virus:AdWare.Win32.Amonetize
Artemis!8F7E7D7127DC, Artemis!F36DF93C29FB, Artemis!3F14101FC430, Artemis!5891B643EA99, Artemis!65A5C8A20DE4, Artemis!A29FEB5E45FD, Artemis!CF197139E307, Artemis!A4DDE58FB275, PUP-FBM!7293B5072072, PUP-FBM!39E08FA9A510, PUP-FBM!6CF282B018DC, PUP-FBM!548129F6429B, Artemis!C5E78852582E, PUP-FBM!28A121E0E10D, PUP-FBM!19B373E7B425, PUP-FBM!545B6CFA9A4E, Artemis!9C5F503FE45D, PUP-FBM!F8D207785B0F, PUP-FBM!DBC3F310D4F0, Artemis!A76C8199579F
Threat.Win.Reputation.IMP, PUP.Win.Reputation, PUP.Installer.InstallPath.AA, PUP.Installer.KOMPANIYAR.a, PUP.Installer.KOMPANIYAR.AA
McAfee Web Gateway
Artemis!8F7E7D7127DC, Artemis!F36DF93C29FB, Artemis!3F14101FC430, Artemis!5891B643EA99, Artemis!65A5C8A20DE4, Heuristic.LooksLike.Win32.Suspicious.I
Amonetize, Threat.4785227, Trojan.Win32.Generic
Trend Micro House Call
TROJ_GEN.F47V0516, TROJ_GEN.F47V0517, TROJ_GEN.F47V0526, TROJ_GEN.F47V0527, TROJ_GEN.R047H06EU14, TROJ_GEN.F47V0522, TROJ_GEN.R0C1H06F914
Riskware.Win32.Amonetize.cxjevj, Riskware.Win32.Downware.cyusqp, Riskware.Win32.Amonetize.cyxkne, Riskware.Win32.Downware.daymkg
Generic_r, Amonetize, BundleApp_r.R, Adware Generic_r
The domain www1.ww4.fb-hosting-apps.com has been seen to resolve to the following 8 IP addresses.
January 27, 2016
May 3, 2015
June 20, 2014
June 20, 2014
File downloads found at URLs served by www1.ww4.fb-hosting-apps.com.
Latest 30 of 370 download URLs
The following 137 files have been seen to comunicate with www1.ww4.fb-hosting-apps.com in live environments.