ad.yieldmanager.com

Yahoo! Inc.

Domain Information

The domain ad.yieldmanager.com registered by Yahoo! Inc. was initially registered in August of 2001 through MARKMONITOR INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Omaha, Nebraska within the United States which resides on the Yahoo! Inc. network.
Remove Malware from ad.yieldmanager.com - Powered by Reason Core Security
Registrar:
MARKMONITOR INC.

Server location:
Nebraska, United States (US)

Create date:
Wednesday, August 08, 2001

Expires date:
Monday, August 08, 2016

Updated date:
Tuesday, July 07, 2015

ASN:
AS36646 YAHOO-NE1 - Yahoo,US

Root domain:

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.TUGUUSL.X, PUP.Optional.VisualSoftwareSystems.N, PUP.Installer.Amonetizeltd.d, PUP.Awimba.W, PUP.Awimba.X, PUP.DencoLimited.g, PUP.Installer.Linkular.K, PUP.Installer.JottixinternationalmediaGM2007.M, PUP.Installer.OptimumInstaller.AA, PUP.Installer.OptimumInstaller.S, PUP.Installer.Adknowledge, PUP.Adknowledge.OptimumInstaller.Installer (M), PUP.Jottix.JottixinternationalmediaGM2007.Installer (M)
100.00%

Dr.Web
Adware.W3i.29, Adware.Downware.1326, Adware.Downware.1528, Adware.W3i.31, Adware.Downware.1308, Adware.Downware.1402, Adware.Downware.1078
91.67%

Malwarebytes
PUP.FakeFlash.Domaiq, MSIL.Solimba, PUP.Optional.Amonetize.A, Adware.DomaIQ, PUP.DomaIQ, Adware.Linkular, PUP.Downware, PUP.Optional.Ibryte
88.89%

Avira AntiVirus
APPL/DomaIQ.Gen, ADWARE/Adware.Gen2, APPL/Solimba.Gen, APPL/DomaIQ.454000, APPL/Linkular.A, Adware/Agent.909545, ADWARE/Adware.Gen7
83.33%

VIPRE Antivirus
DomaIQ, Amonetize, InstallIQ Installer, Trojan.Win32.Generic, Threat.4784450, Optimum Installer, Threat.4778314
77.78%

avast!
NSIS:DomaIQ-C [PUP], Win32:Amonetize-I [PUP], MSIL:DomaIQ-F [PUP], Win32:DomaIQ-AI [PUP], Win32:DomaIQ-I [PUP], Win32:PUP-gen [PUP]
75.00%

Sophos
Generic PUA CF, Amonetize, DomainIQ pay-per install, Linkular, PUA 'Jottix', PUA 'iBryte Optimum Installer'
75.00%

Comodo Security
Application.Win32.DomaIQ.~qk, Application.Win32.Downloader.Agent.WA, UnclassifiedMalware, Application.Win32.DomaIQ.~A, ApplicUnwnt
69.44%

Fortinet FortiGate
Riskware/DomaIQ.C!tr, W32/DomaIQ.C, W32/DomaIQ.D, W32/Crypt.AALD!tr, W32/DownWare.I, Riskware/IBryte
69.44%

K7 AntiVirus
Trojan , Unwanted-Program , Adware, Riskware, Adware
66.67%

Vba32 AntiVirus
TScope.Trojan.MSIL, Trojan.StartPage, Downloader.Agent, AdWare.MSIL.DomaIQ, AdWare.Linkun, SScope.Adware.OptimusInstaller.26607
66.67%

McAfee Web Gateway
Artemis!F7C527F61CE2, Heuristic.BehavesLike.Win32.Suspicious-PKR.S, Heuristic.BehavesLike.Win32.Suspicious-PKR.G, Artemis!AEB9ABCF4236
63.89%

AVG
MalSign.Generic, Skodna.Bundle, MalSign.Skodna, DomaIQ, Generic_c, Adware Generic5.YKU, Adware Generic5.ZAS, Adware Generic5.ABMW
63.89%

K7 Gateway Antivirus
Trojan , Unwanted-Program , Adware , Backdoor
61.11%

G Data
Adware.DomaIQ, Adware.Downloadware.AK, Win32.Application.DomaIQ, NSIS.Application.DomaIQ, Win32.Application.DomalQ, Adware.Dropper
61.11%

The domain ad.yieldmanager.com has been seen to resolve to the following 6 IP addresses.

mpr2.ngd.vip.ne1.yahoo.com
February 4, 2016

mpr1.ngd.vip.ne1.yahoo.com
February 4, 2016

mpr2.ngd.vip.ne1.yahoo.com
September 3, 2014

mpr1.ngd.vip.ne1.yahoo.com
September 3, 2014

mpr1.ngd.vip.bf1.yahoo.com
February 5, 2014

mpr2.ngd.vip.bf1.yahoo.com
February 5, 2014

File downloads found at URLs served by ad.yieldmanager.com.

 
Latest 30 of 97 download URLs

The following 66 files have been seen to comunicate with ad.yieldmanager.com in live environments.

 
Latest 20 of 97 files

URL:
http://ad.yieldmanager.com/

SSL certificate subject:
CN=ad.yieldmanager.com, OU=Information Technology, O=Yahoo Inc., L=Sunnyvale, S=California, C=US

SSL certificate issuer:
CN=Symantec Class 3 Secure Server CA - G4, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Web server:
ATS

Facebook:
Likes:  13
Shares:  90
Comments:  25

Statistics are for the previous month.

Remove Malware from ad.yieldmanager.com - Powered by Reason Core Security