bluesquad.revenuewire.net

REVENUEWIRE INC

Domain Information

This is the distribution delivery host for Smart PC Solutions, Inc. PC Speed Maximizer / PC Optimizer Pro (registry cleaner) through the RevenueWire affiliate/SafeCart payment processing service. The domain bluesquad.revenuewire.net registered by REVENUEWIRE INC was initially registered in September of 2003 through ENOM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Chicago, Illinois within the United States which resides on the Incapsula Inc network.
Registrar:
ENOM, INC.

Server location:
Illinois, United States (US)

Create date:
Monday, September 08, 2003

Expires date:
Thursday, September 08, 2016

Updated date:
Saturday, December 19, 2015

ASN:
AS19551 INCAPSULA - Incapsula Inc,US

Root domain:

Scanner detections:
Detections  (58% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.SmartPCSolutions.Q, PUP.DriverSoft.DriverIn.Installer.Meta (L), PUP.Optional.PCSpeed.Meta, PUP.Optional.SmartPCSolutions.V, PUP.DriverSoft.Installer.Meta (L), PUP.Adknowledge (M)
82.35%

Trend Micro House Call
TROJ_GEN.F47V1221, TROJ_GEN.F47V1207, TROJ_GEN.F47V0219, TROJ_GEN.F47V0514, Suspicious_GEN.F47V0711, Suspicious_GEN.F47V0727
41.18%

Comodo Security
UnclassifiedMalware
35.29%

ESET NOD32
Win32/SpeedingUpMyPC (variant)
35.29%

Antiy Labs AVL
Trojan[Backdoor]/Win32.Agent, VCS/Environment.DigitalFN
29.41%

McAfee
Artemis!7E4D9D7B7E02, Artemis!80986ED55348
23.53%

F-Prot
W32/PCSpeedMax.A
23.53%

McAfee Web Gateway
Artemis!7E4D9D7B7E02, Artemis!80986ED55348
23.53%

Fortinet FortiGate
W32/Foreign.CKLF!tr
23.53%

Dr.Web
Program.Unwanted.16, Program.Unwanted.54, Program.Unwanted.297
23.53%

AVG
Smartpcso
17.65%

Emsisoft Anti-Malware
Trojan.Generic.8759485
5.88%

Avira AntiVirus
TR/Patched.Ren.Gen
5.88%

Agnitum Outpost
Riskware.SpeedingUpMyPC
5.88%

Bkav FE
W32.HfsAdware
5.88%

The domain bluesquad.revenuewire.net has been seen to resolve to the following 7 IP addresses.

199.83.132.38.ip.incapdns.net
February 9, 2016

199.83.128.38.ip.incapdns.net
May 4, 2015

199.83.128.23.ip.incapdns.net
January 8, 2015

199.83.132.231.ip.incapdns.net
December 1, 2014

199.83.128.157.ip.incapdns.net
May 5, 2014

April 3, 2014

199.83.132.157.ip.incapdns.net
February 7, 2014

File downloads found at URLs served by bluesquad.revenuewire.net.

1 / 68      (Adware)

9 / 68      (PUP)

1 / 68      (PUP)

0 / 68
http://bluesquad.revenuewire.net/.../download  (stellar-photo-recovery.exe)

0 / 68

9 / 68      (PUP)

1 / 68      (inconclusive)
http://bluesquad.revenuewire.net/.../download  (office-password-recovery.exe)

1 / 68
http://bluesquad.revenuewire.net/.../download  (stellar-photo-recovery.exe)

1 / 68

9 / 68      (PUP)

3 / 68      (PUP)

0 / 68

0 / 68
http://bluesquad.revenuewire.net/.../download  (stellar-photo-recovery.exe)

6 / 68      (PUP)

6 / 68      (PUP)

4 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

2 / 68      (PUP)

9 / 68      (PUP)

1 / 68      (PUP)