ad.adorika.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain ad.adorika.com is registered by proxy through GODADDY.COM, LLC and was originally registered in September of 2010. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Omaha, Nebraska within the United States which resides on the Yahoo! Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Nebraska, United States (US)

Create date:
Wednesday, September 01, 2010

Expires date:
Wednesday, September 01, 2021

Updated date:
Sunday, July 15, 2012

ASN:
AS36646 YAHOO-NE1 - Yahoo,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Awimba.W, PUP.Optional.VisualSoftwareSystems.N, PUP.Awimba.X, DownloadManager.AirSoftware.F, PUP.TUGUUSL.X, PUP.Installer.OptimumInstaller.AA, PUP.Tuguu.Awimba.Bundler (M), PUP.Tightrope.DownloadAdmin.Bundler (M), PUP.Adknowledge.OptimumInstaller.Installer (M), PUP.GadgetBox (M)
100.00%

Dr.Web
Adware.W3i.29, Adware.Downware.1167, Adware.Downware.1078, Adware.Downware.1326, Adware.Downware.1108
57.89%

Avira AntiVirus
APPL/DomaIQ.Gen, Adware/AirInst.2556, ADWARE/Adware.Gen7, Adware/Agent.909545, APPL/Solimba.Gen
57.89%

avast!
Win32:DomaIQ-I [PUP], Win32:DomaIQ-M [PUP], PUP-gen [PUP], Win32:DomaIQ-AI [PUP], NSIS:DomaIQ-C [PUP], Win32:Installer-J [PUP]
52.63%

Sophos
DomainIQ pay-per install, AirInstaller, PUA 'iBryte Optimum Installer'
52.63%

VIPRE Antivirus
DomaIQ, Threat.4782985, AirInstaller, Optimum Installer
52.63%

IKARUS anti.virus
Trojan-Dropper, Trojan.Win32.Ceatrg, Trojan-Ransom.Win32.Blocker, PUA.AirAdInstaller, Win32.Malware, Trojan.SuspectCRC, AdWare.DomaIQ
52.63%

K7 AntiVirus
Adware, Riskware, Trojan , Unwanted-Program , Adware
47.37%

Comodo Security
UnclassifiedMalware, Application.Win32.AirAdInstaller.A, ApplicUnwnt, ApplicUnwnt.Win32.AdWare.iBryte.H
47.37%

F-Prot
W32/DomaIQ.B, W32/AirInstall.A.gen, W32/DomaIQ.A, W32/Ibryte.C.gen
42.11%

Fortinet FortiGate
W32/DomaIQ.C, W32/DomaIQ.D, W32/Crypt.AALD!tr, Riskware/IBryte, W32/DownWare.I
42.11%

Malwarebytes
PUP.DomaIQ, Adware.DomaIQ, PUP.FakeFlash.Domaiq, PUP.Optional.Ibryte, MSIL.Solimba
42.11%

AVG
MalSign.Skodna, Adware Generic_r, Adware Generic_r.IW, Adware Generic5.YKU
42.11%

NANO AntiVirus
Riskware.Win32.DomaIQ.crbbqh, Riskware.Win32.Downware.cwfgel, Riskware.Win32.AirAdInstaller.cxhlas, Riskware.Base64.DomaIQ.cwpnap
42.11%

Vba32 AntiVirus
AdWare.MSIL.DomaIQ, AdWare.AirAdInstaller, TScope.Trojan.MSIL, SScope.Adware.OptimusInstaller.26607, Trojan.StartPage
42.11%

The domain ad.adorika.com has been seen to resolve to the following 6 IP addresses.

mpr2.ngd.vip.ne1.yahoo.com
February 13, 2016

mpr1.ngd.vip.ne1.yahoo.com
February 13, 2016

mpr2.ngd.vip.ne1.yahoo.com
September 5, 2014

mpr1.ngd.vip.ne1.yahoo.com
September 5, 2014

mpr2.ngd.vip.bf1.yahoo.com
April 11, 2014

mpr1.ngd.vip.bf1.yahoo.com
April 11, 2014

File downloads found at URLs served by ad.adorika.com.

The following 181 files have been seen to comunicate with ad.adorika.com in live environments.

 
Latest 20 of 334 files

URL:
http://ad.adorika.com/

Web server:
ATS