735322.gosecureinstall.com

Whois Privacy Corp.

Domain Information

The domain 735322.gosecureinstall.com registered by Whois Privacy Corp. was initially registered in March of 2014 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Remove Malware from 735322.gosecureinstall.com - Powered by Reason Core Security
Registrar:
INTERNET DOMAIN SERVICE BS CORP

Server location:
Virginia, United States (US)

Create date:
Friday, March 21, 2014

Expires date:
Monday, March 21, 2016

Updated date:
Wednesday, December 02, 2015

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.F, PUP.Adknowledge.SETUPDOTEXE.Bundler (M), PUP.Adknowledge.SOFTWAREINSTALLER.Installer (M), PUP.Adknowledge.WARPINSTALLER.Installer (M), PUP.Adknowledge.BootCompute.Bundler (M), PUP.Adknowledge.INSTALLTHIS.Installer (M), PUP.Adknowledge.Activitybit.Bundler (M), PUP.Softpulse.SoftpulseSl.Bundler (M), PUP.Adknowledge.ComputeClient.Installer (M), PUP.Adknowledge.FusionInstall.Installer (M), PUP.Adknowledge.INSTALLMYSOFTWARE.Installer (M), PUP.Adknowledge.WARPINSTALL.Installer (M), PUP.installCore.CompilerIdea.Installer (M), PUP.Installer.Bundler.Installer.Meta (M), PUP.Bundlore.Bundler (M), PUP.Softpulse.PluginUpdate.Bundler (M), Threat.Win.Reputation.IMP
100.00%

K7 Gateway Antivirus
Unwanted-Program , Adware
77.08%

K7 AntiVirus
Unwanted-Program , Adware
77.08%

Dr.Web
Program.Unwanted.74, Adware.Downware.2249, Adware.Downware.2216, Trojan.Packed.26900, Trojan.Packed.26508, Adware.iBryte.473
77.08%

NANO AntiVirus
Trojan.Win32.Agent.cvofrk, Trojan.Win32.OptInstall.czmuci, Trojan.Win32.Badur.cxnsau, Trojan.Win32.Badur.cxnrwx, Trojan.Win32.Agent.cxjjsz
75.00%

Kaspersky
HEUR:Trojan.Win32.Generic, not-a-virus:AdWare.Win32.iBryte, Trojan.Win32.Badur, not-a-virus:Downloader.Win32.Agent, Trojan.Win32.Buzus
75.00%

Comodo Security
TrojWare.Win32.IBryte.S, ApplicUnwnt, Application.Win32.iBryte.WRP, Application.Win32.Ibryte.KS, Application.Win32.IBryte.WI
75.00%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4778314, Threat.4733199, Threat.4150696, Optimum Installer, Threat.4798837
75.00%

Avira AntiVirus
Adware/iBryte.qoemni, Adware/iBryte.qoemnl, ADWARE/Adware.Gen7, Adware/iBryte.bxor, APPL/OptInstal.opwb, ADWARE/iBryte.bxmw
75.00%

Vba32 AntiVirus
Downloader.Agent, Downloader.Agent.bkfx, AdWare.iBryte, suspected of Trojan.Downloader.gen.h, Trojan.Badur
75.00%

AVG
Skodna.Generic, Adware AdPlugin, Adware Generic5, Generic_s
75.00%

Panda Antivirus
Trj/Genetic.gen, PUP/iBryte, Generic Suspicious
75.00%

Sophos
iBryte Optimum Installer, PUA 'iBryte Optimum Installer'
75.00%

avast!
Win32:Adware-gen [Adw], Win32:IBryte-CZ [PUP], Win32:IBryte-CY [PUP], Win32:IBryte-KE [PUP], Win32:IBryte-DB [PUP], Win32:IBryte-DP [PUP]
75.00%

AhnLab V3 Security
PUP/Win32.IBryte, PUP/Win32.OptimumInstaller
75.00%

The domain 735322.gosecureinstall.com has been seen to resolve to the following 4 IP addresses.

ec2-54-243-244-249.compute-1.amazonaws.com
July 14, 2014

ec2-23-21-189-120.compute-1.amazonaws.com
July 14, 2014

ec2-23-21-100-173.compute-1.amazonaws.com
April 30, 2014

ec2-50-17-234-52.compute-1.amazonaws.com
April 6, 2014

File downloads found at URLs served by 735322.gosecureinstall.com.

43 / 68    (Adware)
http://735322.gosecureinstall.com/o/.../Setup.exe  (e2405155e4154376ed090f4e08cf7368)

1 / 68      (Malware)
http://735322.gosecureinstall.com/o/.../Maps.exe  (2fdb33fdfaf2bcdc68849a939e5d49ff)

27 / 68    (Adware)

41 / 68    (Adware)
http://735322.gosecureinstall.com/o/.../Setup.exe  (70c419b1527628fb2438f77726c55491)

1 / 68      (Adware)
http://735322.gosecureinstall.com/o/.../Groovestream.exe  (49bbe70bed14ab2285207bedec85e353)

41 / 68    (Adware)
http://735322.gosecureinstall.com/o/.../Setup.exe  (0b55bbc38cbf1d46c1b2c52eb31e2153)

1 / 68      (Adware)
http://735322.gosecureinstall.com/o/.../MineCraft.exe  (3a88290721ac5ff857472dc15d5e6ae7)

43 / 68    (Adware)
http://735322.gosecureinstall.com/o/.../Setup.exe  (0d1e6a69993dabe10e67c10d6ca657c6)

40 / 68    (Adware)
http://735322.gosecureinstall.com/o/.../Groovestream.exe  (830dd329fe680bbc8409d4633809df01)

40 / 68    (Adware)
http://735322.gosecureinstall.com/o/.../Setup.exe  (47cdaaedbb226747cceeac25f6dafad8)

1 / 68      (Adware)

44 / 68    (Adware)
http://735322.gosecureinstall.com/o/.../Setup.exe  (7191b4803e467fb285e7e3f5a5669fb2)

Remove Malware from 735322.gosecureinstall.com - Powered by Reason Core Security