home

cdn3.otherdownload.com

Amonetize LTD. domains@amonetize.com

Domain Information

The domain cdn3.otherdownload.com registered by Amonetize LTD. domains@amonetize.com was initially registered in April of 2013 through Moniker Online Services. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Cloudfront CDN service which utilizes a number of proxy IP Addresses (see below). The domain is associated with the publisher Amonetize ltd. who is located in Raanana, Alberta in Israel.
Registrar:
Moniker Online Services

Server location:
Virginia, United States (US)

Create date:
Tuesday, April 9, 2013

Expires date:
Wednesday, April 9, 2014

Updated date:
Wednesday, April 10, 2013

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:
otherdownload.com

Whois:
1 otherdownload.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Dr.Web
Trojan.Searcher.1039, Adware.Plugin.11, Adware.Downware.1528, Adware.Plugin.51, Adware.W3i.31, Adware.Downware.1235
100.00%

Trend Micro House Call
TROJ_SPNR.14FD13, TROJ_GEN.R02KH01HN13, TROJ_GEN.R047H01I513, TROJ_GE.5AA2928A, TROJ_GEN.R0CBH07I913
83.33%

VIPRE Antivirus
Trojan.Win32.Generic, Amonetize, Montiera
83.33%

Malwarebytes
PUP.Optional.BasicServe.A, PUP.Optional.Yontoo, PUP.Optional.Amonetize.A, PUP.Optional.FastFreeConverter.A
83.33%

Baidu Antivirus
Trojan.Win32.Genome, Adware.Win32.WebCake, AdWare.Win32.Downloadterms, Trojan-Downloader.Win32.Genome
66.67%

Reason Heuristics
Unnamed.Threat.42, PUP.Installer.WebCake.T, PUP.Task.Amonetizeltd.H, PUP.DencoLimited.Y
66.67%

MicroWorld eScan
ADSPY/AdSpy.Gen, Adware.Generic.575329
50.00%

Sophos
Mal/Generic-S, Amonetize, Generic PUA LD
50.00%

Panda Antivirus
Suspicious file, Adware/WebCake
50.00%

Bkav FE
W32.Clod37b.Trojan, W32.Clod2a1.Trojan
50.00%

McAfee
Artemis!F96786953D8C, Artemis!A6855DA3C0B6
33.33%

Norman
Suspicious_Gen4.ECBVX, Downloader.HIMO
33.33%

Avira AntiVirus
ADSPY/AdSpy.Gen
33.33%

Trend Micro
TROJ_SPNR.14FD13
33.33%

Kaspersky
Trojan-Downloader.Win32.Genome
33.33%

The domain cdn3.otherdownload.com has been seen to resolve to the following 8 IP addresses.

54.230.48.250
server-54-230-48-250.jfk5.r.cloudfront.net
November 16, 2013

54.230.51.155
server-54-230-51-155.jfk5.r.cloudfront.net
November 16, 2013

54.230.51.205
server-54-230-51-205.jfk5.r.cloudfront.net
November 16, 2013

54.230.50.102
server-54-230-50-102.jfk5.r.cloudfront.net
November 16, 2013

54.230.49.174
server-54-230-49-174.jfk5.r.cloudfront.net
November 16, 2013

54.230.49.92
server-54-230-49-92.jfk5.r.cloudfront.net
November 16, 2013

54.230.51.44
server-54-230-51-44.jfk5.r.cloudfront.net
November 16, 2013

54.230.50.239
server-54-230-50-239.jfk5.r.cloudfront.net
November 16, 2013

File downloads found at URLs served by cdn3.otherdownload.com.

18 / 68    (PUP)
http://cdn3.otherdownload.com/.../sono_smart_compete_051613210903.exe  (a6855da3c0b6093b2436f89d362ca42a)

5 / 68      (PUP)
http://cdn3.otherdownload.com/.../FastFreeConverter_Amone2.exe  (6654214c9360528552b90e339a7e6abf)

20 / 68    (PUP)
http://cdn3.otherdownload.com/.../basicserve_021313061310.exe  (200695.exe)

7 / 68      (PUP)
http://cdn3.otherdownload.com/.../Setup.exe  (23d2aa00977ccece5139658715c2c103)

7 / 68      (Adware)
http://cdn3.otherdownload.com/.../Updater.exe  (ff81fb1c4d06ad08aa3f9cfaf0ccd51b)

24 / 68    (Adware)
http://cdn3.otherdownload.com/.../Setup-D2502DD2B71B5.exe  (d34b8d330f4884a603d56d7120e25030)

The following 17 files have been seen to comunicate with cdn3.otherdownload.com in live environments.

TCP » 54.230.51.205:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.230.51.155:80
uvconverter.exe

TCP » 54.230.51.155:80
saber.exe

TCP » 54.230.51.44:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.230.51.155:80
new_updatemobogenie.exe

TCP » 54.230.51.155:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.230.51.155:80
new_updatemobogenie.exe

TCP » 54.230.51.44:80
Update.exe (Mobogenie by Mobogenie.com)

TCP » 54.230.51.155:80
saber.exe

TCP » 54.230.51.155:80
Update.exe (Mobogenie by Mobogenie.com)

TCP » 54.230.51.155:80
saber.exe

TCP » 54.230.51.155:80
uvconverter.exe

TCP » 54.230.51.155:80
notification.exe

TCP » 54.230.51.205:80
winzipersvc.exe (Winziper by Winziper Pvt)

TCP » 54.230.51.205:80
winzipersvc.exe (ExHelp by ExWzp Pvt)

TCP » 54.230.51.44:80
Update.exe (Mobogenie by Mobogenie.com)

TCP » 54.230.51.44:80
new_updatemobogenie.exe

TCP » 54.230.51.44:443
b9eg190.exe (Running tester)

TCP » 54.230.51.44:443
Client.exe

TCP » 54.230.51.44:443
browserairexec.exe (BrowserAir by Goobzo)

 
Latest 20 of 23 files

Alexa:
Global rank:  221,523
Backlinks:  17

Statistics are for the previous month (Alexa statistics are for entire otherdownload.com).

amonetize.com

aminst.net

wilddownload.com

recentdownload.com

askdownload.com

reallydownload.com

amusingdownload.com

activemonetizer.com

winvlc.com

doanesoftware.com

rightfuldownload.com

guidetodownload.com

winflashplayer.com

win7zip.com

zyaada.com

wintvapp.com

nationaldownload.com

transdownload.com

burstingdownload.com

reliabletrusteddownloads.com

thankdownload.com

averagedownload.com

intactdownload.com

normaldownload.com

easyfiledownloads.net

eachdownload.com

accuratedownload.com

angibledownload.com

shortestdownload.com

downloadnowww.com

30 of 30 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.