The domain bitberry.cachefly.net registered by CacheNetworks, LLC was initially registered in February of 2005 through TUCOWS DOMAINS INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Chicago, Illinois within the United States.
Registrant:
CacheNetworks, LLC
Registrar:
TUCOWS DOMAINS INC.
Server location:
Illinois, United States (US)
Create date:
Thursday, February 24, 2005
Expires date:
Friday, February 24, 2017
Updated date:
Tuesday, February 23, 2016
ASN:
AS30081 CACHENETWORKS - CacheNetworks, Inc.
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Optional.Installer.Z, PUP.Installer.W3i.V, Adware.Installer.BitberrySoftware.AA, PUP.Optional.BitberrySoftware.M, PUP.Optional.Installer.AA, PUP.Optional.Installer.c, PUP.Optional.Installer.O, PUP.Installer.InstallX, PUP.InstallX.W3i.Installer (M), Win32.Generic
100.00%
ESET NOD32
Win32/InstallIQ (variant), Win32/InstallCore.CU (variant), Win32/InstallCore.JE.gen (variant), Win32/InstallCore.MC, Win32/InstallCore.PO (variant)
66.67%
Dr.Web
Adware.W3i.32, Adware.InstallCore.133, Trojan.Packed.2782, Trojan.MulDrop5.10078, Trojan.MulDrop5.34526, Trojan.MulDrop5.40210
53.33%
VIPRE Antivirus
InstallIQ Installer, InstallCore.b, Adware.Win32.InstallCore.ba, Trojan.Win32.Generic, Threat.4150696
50.00%
McAfee
Artemis!370EA922FC3E, Artemis!1886DA81FC11, Artemis!D4D78627FFBB, Artemis!E88AA19D5C33, Artemis!FBC6B9D2B10A, Artemis!79F04ACA3070, Artemis!1A0F2CF45A73, Artemis!9736DA48565C, Artemis!E8E6486CBA16, Artemis!F3429B6E7242, Virus.W32/Sality.gen.z, Artemis!89465B284CA0
50.00%
Avira AntiVirus
APPL/InstallIQ.Gen5, ADWARE/InstallCore.Gen9, Adware/InstallCore.A.1448, ADWARE/InstallCore.Gen4, Adware/InstallCore.798016
46.67%
Sophos
Install Core, Install Core Click run software
46.67%
K7 AntiVirus
Unwanted-Program , Trojan
43.33%
Trend Micro House Call
TROJ_GEN.F47V1122, TROJ_GEN.F47V0122, TROJ_GEN.F47V0319, TROJ_GEN.F47V0601, Suspicious_GEN.F47V0719, TROJ_FAKEAV.BMC, Suspicious_GEN.F47V0113
40.00%
Malwarebytes
PUP.Optional.InstallIQ.A, PUP.Optional.InstallCore, PUP.Optional.Bitberry
33.33%
Baidu Antivirus
Trojan.Win32.InstallIQ, Trojan.Win32.Agent, Adware.Win32.InstallCore
33.33%
Fortinet FortiGate
Riskware/InstallCore, Riskware/FileTypeAssistant
30.00%
Rising Antivirus
PE:PUF.InstallIQ!1.9E4F, PE:Malware.XPACK-LNR/Heur!1.5594
23.33%
Vba32 AntiVirus
Signed-Adware.InstallCore, Downware.InstallCore, Malware-Cryptor.InstallCore.gen
16.67%
Agnitum Outpost
PUA.InstallCore
16.67%
The domain bitberry.cachefly.net has been seen to resolve to the following IP address.
vip1.g.cachefly.net
December 26, 2013
File downloads found at URLs served by bitberry.cachefly.net.
The following 197 files have been seen to comunicate with bitberry.cachefly.net in live environments.
URL:
http://bitberry.cachefly.net/
SSL certificate subject:
CN=*.cachefly.net, O=CacheNetworks LLC, L=Chicago, S=Illinois, C=US
SSL certificate issuer:
CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US