cdn.airdlr.com

WHOISGUARD, INC.  (Proxy Registrant)

Domain Information

The domain cdn.airdlr.com is registered by proxy through ENOM, INC. and was originally registered in September of 2011. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Sherman Oaks, California within the United States which resides on the Unitas Global LLC network.
Remove Malware from cdn.airdlr.com - Powered by Reason Core Security
Registrar:
ENOM, INC.

Server location:
California, United States (US)

Create date:
Monday, September 19, 2011

Expires date:
Monday, September 19, 2016

Updated date:
Thursday, August 20, 2015

ASN:
AS4436 AS-NLAYER - nLayer Communications, Inc.

Root domain:

Scanner detections:
Detections  (86% detected)

Scan engine
Details
Detections

Reason Heuristics
DownloadManager.AirSoftware.F, DownloadManager.AirSoftware.I, DownloadManager.AirSoftware.P, DownloadManager.AirSoftware.V, PUP.Installer.FUSIONINSTALLER.F, PUP.Installer.OUTbrowse.F, PUP.Injekt.TodaySolutions.Installer (M), PUP.Air Software.AirSoftware.Bundler (M)
100.00%

avast!
Win32:Installer-L [PUP], Win32:Adware-gen [Adw], Win32:Adware-CAH [PUP]
83.33%

VIPRE Antivirus
AirInstaller, Threat.4150696, OutBrowse, Threat.4872425
83.33%

Comodo Security
Application.Win32.AirAdInstaller.A, Application.Win32.IBryte.X
72.22%

Dr.Web
Trojan.SMSSend.4803, Adware.Downware.249, Trojan.SMSSend.4758, Adware.Downware.439, Adware.Downware.624, Adware.Downware.6205
66.67%

ESET NOD32
Win32/AirAdInstaller (variant), Win32/OutBrowse.AN
66.67%

Malwarebytes
PUP.Optional.AirInstaller, PUP.BundleInstaller.IWT, PUP.Optional.OptimumInstaller.A, PUP.Optional.OutBrowse, PUP.Optional.TerasGames
61.11%

Sophos
AirInstaller, iBryte Optimum Installer
61.11%

K7 Gateway Antivirus
Unwanted-Program , Trojan , Riskware, Adware
55.56%

K7 AntiVirus
Unwanted-Program , Riskware, Adware
55.56%

Rising Antivirus
PE:PUF.Airinstall!1.9C4C, PE:Malware.iBryte!6.197B, PE:Malware.Generic(Thunder)!1.A1C4 [F]
55.56%

IKARUS anti.virus
not-a-virus:AdWare.Win32, AdWare.AirAdInstaller, PUA.InstallBundler, PUA.OutBrowse, PUA.AirAdInstaller, Trojan.Win32.SelfDel
55.56%

Avira AntiVirus
Adware/AirAdInstaller.AE.3, Adware/AirAdInstaller.AF.2, Adware/AirAdInstaller.AG.1, APPL/OptInstall.zaxz, APPL/OutBrowse.lwasq
55.56%

Antiy Labs AVL
Trojan[:HEUR]/Win32.AGeneric, Trojan/Win32.TSGeneric, Riskware[:not-a-virus]/Win32.iBryte.jgr, GrayWare[AdWare:not-a-virus]/Win32.OutBrowse.bbl
50.00%

Panda Antivirus
Adware/AirInstaller, PUP/iBryte, Trj/Genetic.gen
44.44%

The domain cdn.airdlr.com has been seen to resolve to the following 3 IP addresses.

225-124-232-198.static.unitasglobal.net
August 7, 2014

228-124-232-198.static.unitasglobal.net
March 6, 2014

224-124-232-198.static.unitasglobal.net
February 7, 2014

File downloads found at URLs served by cdn.airdlr.com.

1 / 68      (Adware)

22 / 68    (PUP)

25 / 68    (Adware)

10 / 68    (Adware)

0 / 68

26 / 68    (Adware)

11 / 68    (Adware)

17 / 68    (Adware)

18 / 68    (Adware)

1 / 68      (Adware)

10 / 68    (Adware)

19 / 68    (Adware)

9 / 68      (Adware)

7 / 68      (Adware)

3 / 68      (PUP)

36 / 68    (Adware)

18 / 68    (Adware)

7 / 68      (Adware)

18 / 68    (Adware)

0 / 68

The following 18 files have been seen to comunicate with cdn.airdlr.com in live environments.

URL:
http://cdn.airdlr.com/

Web server:
NetDNA-cache/2.2

Remove Malware from cdn.airdlr.com - Powered by Reason Core Security