ad.xtendmedia.com

Matomy Media Group

Domain Information

The domain ad.xtendmedia.com registered by Matomy Media Group was initially registered in May of 2006 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Omaha, Nebraska within the United States which resides on the Yahoo! Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Nebraska, United States (US)

Create date:
Thursday, May 11, 2006

Expires date:
Thursday, May 11, 2017

Updated date:
Sunday, April 26, 2015

ASN:
AS36646 YAHOO-NE1 - Yahoo,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.TUGUUSL.X, PUP.Installer.Amonetizeltd.d, PUP.Optional.VisualSoftwareSystems.N, PUP.Awimba.R, PUP.Awimba.X, PUP.Tuguu.Bundler (M), PUP.Air Software.AirSoftw.Bundler (M), PUP.Solimba.AppsInst.Bundler (M), PUP.Bundlore.Bundler (M), PUP.Adknowledge.OptimumI.Bundler (M), PUP.Jottix.Jottixin.Installer (M), PUP.GadgetBox.saminves.Installer (M), PUP.Tightrope.Download.Bundler (M), PUP.Tuguu.Awimba.Bundler (M), PUP.Adknowledge (M), PUP.Linkular (M), PUP.Jottix (M), PUP.Air Software (M), PUP.GadgetBox (M)
100.00%

Malwarebytes
PUP.FakeFlash.Domaiq, PUP.Optional.Amonetize.A, MSIL.Solimba, Adware.DomaIQ
12.00%

Dr.Web
Adware.W3i.29, Adware.Downware.1528, Adware.Downware.1326
12.00%

Avira AntiVirus
APPL/DomaIQ.Gen, ADWARE/Adware.Gen2, APPL/Solimba.Gen, APPL/DomaIQ.454000
12.00%

ESET NOD32
Win32/DomaIQ, Win32/Amonetize (variant), Win32/DownWare
12.00%

Vba32 AntiVirus
TScope.Trojan.MSIL, Downloader.Agent, Trojan.StartPage, AdWare.MSIL.DomaIQ
10.00%

avast!
NSIS:DomaIQ-C [PUP], Win32:Amonetize-I [PUP], Win32:DomaIQ-AI [PUP], Win32:DomaIQ-M [PUP]
8.00%

Sophos
Generic PUA CF, Amonetize, DomainIQ pay-per install
8.00%

VIPRE Antivirus
DomaIQ, Amonetize
8.00%

Trend Micro House Call
TROJ_GEN.R0CCOH0LM13, TROJ_GEN.F47V0903, TROJ_GEN.R0CBB01JC13, TROJ_GEN.F47V1220
8.00%

nProtect
Adware.DomaIQ.K, Trojan/W32.Agent.363320, Adware.Dropper.H
6.00%

K7 Gateway Antivirus
Trojan , Unwanted-Program
6.00%

K7 AntiVirus
Trojan , Unwanted-Program
6.00%

Comodo Security
Application.Win32.DomaIQ.~qk, Application.Win32.Downloader.Agent.WA, Application.Win32.DolmaIQ.ZA
6.00%

Antiy Labs AVL
Trojan/MSIL.Crypt.gen, Trojan[Downloader:not-a-virus]/Win32.Agent, Trojan[Spy]/Win32.Agent
6.00%

The domain ad.xtendmedia.com has been seen to resolve to the following 8 IP addresses.

mpr2.ngd.vip.ne1.yahoo.com
February 11, 2016

mpr1.ngd.vip.ne1.yahoo.com
February 9, 2016

mpr2.ngd.vip.gq1.yahoo.com
December 17, 2015

mpr1.ngd.vip.gq1.yahoo.com
December 17, 2015

mpr2.ngd.vip.ne1.yahoo.com
September 3, 2014

mpr1.ngd.vip.ne1.yahoo.com
September 3, 2014

mpr2.ngd.vip.bf1.yahoo.com
February 5, 2014

mpr1.ngd.vip.bf1.yahoo.com
February 5, 2014

File downloads found at URLs served by ad.xtendmedia.com.

 
Latest 30 of 165 download URLs

The following 222 files have been seen to comunicate with ad.xtendmedia.com in live environments.

 
Latest 20 of 488 files

URL:
http://ad.xtendmedia.com/

Web server:
ATS

Facebook:
Shares:  1

Statistics are for the previous month.