ad.xtendmedia.com

Matomy Media Group

Domain Information

The domain ad.xtendmedia.com registered by Matomy Media Group was initially registered in May of 2006 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Omaha, Nebraska within the United States which resides on the Yahoo! Inc. network.
Remove Malware from ad.xtendmedia.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Nebraska, United States (US)

Create date:
Thursday, May 11, 2006

Expires date:
Thursday, May 11, 2017

Updated date:
Sunday, April 26, 2015

ASN:
AS36646 YAHOO-NE1 - Yahoo,US

Root domain:

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.TUGUUSL.X, PUP.Optional.VisualSoftwareSystems.N, PUP.Installer.Amonetizeltd.d, PUP.Awimba.W, PUP.Awimba.X, PUP.Awimba.R, PUP.Installer.Linkular.K, PUP.Installer.OptimumInstaller.S, PUP.JottixinternationalmediaGM2007.Installer (M), PUP.Adknowledge.OptimumInstaller.Installer (M), PUP.Linkular.Company.Installer (M), PUP.Jottix.JottixinternationalmediaGM2007.Installer (M), PUP.Air Software.AirSoftware.Bundler (M)
100.00%

Dr.Web
Adware.W3i.29, Adware.Downware.1326, Adware.Downware.1528, Adware.Downware.1308, Adware.Downware.1108, Adware.Downware.1285
64.10%

Malwarebytes
PUP.FakeFlash.Domaiq, MSIL.Solimba, PUP.Optional.Amonetize.A, Adware.DomaIQ, PUP.DomaIQ, Adware.Linkular, PUP.Optional.Ibryte
61.54%

Avira AntiVirus
APPL/DomaIQ.Gen, ADWARE/Adware.Gen2, APPL/Solimba.Gen, APPL/Linkular.A, ADWARE/Adware.Gen7, Adware/Agent.909545, ADWARE/AirInst.23654
61.54%

K7 AntiVirus
Trojan , Unwanted-Program , Adware, Riskware, Adware
51.28%

avast!
NSIS:DomaIQ-C [PUP], Win32:Amonetize-I [PUP], Win32:DomaIQ-AI [PUP], Win32:DomaIQ-I [PUP], Win32:PUP-gen [PUP], Win32:Linkular-D [Adw]
51.28%

Sophos
Generic PUA CF, Amonetize, DomainIQ pay-per install, Linkular, PUA 'iBryte Optimum Installer', AirInstaller, PUA 'AirInstaller'
51.28%

VIPRE Antivirus
DomaIQ, Amonetize, Trojan.Win32.Generic, Threat.4778314, Optimum Installer, AirInstaller, Threat.4782985
51.28%

Comodo Security
Application.Win32.DomaIQ.~qk, UnclassifiedMalware, Application.Win32.DomaIQ.~A, ApplicUnwnt, Application.Win32.Downloader.Agent.WA
48.72%

G Data
Adware.DomaIQ, Win32.Application.DomaIQ, NSIS.Application.DomaIQ, Win32.Application.DomalQ, Adware.Dropper, NSIS.Application.Linkular
48.72%

Vba32 AntiVirus
TScope.Trojan.MSIL, Trojan.StartPage, Downloader.Agent, AdWare.Linkun, SScope.Adware.OptimusInstaller.26607, AdWare.AirAdInstaller
48.72%

McAfee Web Gateway
Artemis!F7C527F61CE2, Heuristic.BehavesLike.Win32.Suspicious-PKR.G, Artemis!AEB9ABCF4236, Artemis!AD7075C10AB8, Artemis!DC93CED8DF84
48.72%

K7 Gateway Antivirus
Trojan , Unwanted-Program , Adware , Backdoor
46.15%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), VIRUS_UNKNOWN, Win32.HeurC.KVM019.a.(kcloud)
46.15%

AVG
MalSign.Generic, MalSign.Skodna, DomaIQ, Generic_c, Adware Generic5.ZAS, Adware Generic_r
46.15%

The domain ad.xtendmedia.com has been seen to resolve to the following 8 IP addresses.

mpr2.ngd.vip.ne1.yahoo.com
February 11, 2016

mpr1.ngd.vip.ne1.yahoo.com
February 9, 2016

mpr2.ngd.vip.gq1.yahoo.com
December 17, 2015

mpr1.ngd.vip.gq1.yahoo.com
December 17, 2015

mpr2.ngd.vip.ne1.yahoo.com
September 3, 2014

mpr1.ngd.vip.ne1.yahoo.com
September 3, 2014

mpr2.ngd.vip.bf1.yahoo.com
February 5, 2014

mpr1.ngd.vip.bf1.yahoo.com
February 5, 2014

File downloads found at URLs served by ad.xtendmedia.com.

 
Latest 30 of 72 download URLs

The following 78 files have been seen to comunicate with ad.xtendmedia.com in live environments.

 
Latest 20 of 122 files

URL:
http://ad.xtendmedia.com/

Web server:
ATS

Facebook:
Shares:  1

Statistics are for the previous month.

Remove Malware from ad.xtendmedia.com - Powered by Reason Core Security