The domain csdi-dlstatic.tennoio.com is registered by proxy through GODADDY.COM, LLC and was originally registered in July of 2015. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Roubaix, Nord-Pas-De-Calais within France which resides on the RIPE Network Coordination Centre network.
Registrant:
Domains By Proxy, LLC
Registrar:
GODADDY.COM, LLC
Server location:
Nord-Pas-De-Calais, France (FR)
Create date:
Wednesday, July 8, 2015
Expires date:
Friday, July 8, 2016
Updated date:
Wednesday, July 8, 2015
ASN:
AS16276 OVH OVH SAS,FR
Google Safe Browsing:
unwanted
Scanner detections:
Detections (96% detected)
Scan engine
Details
Detections
Dr.Web
Program.Unwanted.710, Threat.Undefined, Program.Unwanted.711, BackDoor.Bladabindi.12450, Program.Unwanted.951, Adware.Eorezo.761, infected with Trojan.DownLoader18.40932
54.00%
Reason Heuristics
PUP.Eorezo.Bundler (M), PUP.Optional.CONCEPTIONSELECTIONDISTRIBUTIONINTERNATIONALE.Installer, PUP.SpaceSoundPro.Installer.Meta (M), PUP.Downloader.Installer.Meta (M), PUP.MaxDriver.Installer.Meta (M), PUP.Eorezo.Installer.Meta (M), PUP.OffToUp (M), Adware.Bundler (M)
52.00%
AVG
Generic, BundleApp, Adware Generic7.JXP
46.00%
ESET NOD32
Detection.Undefined, MSIL/Adware.EoRezo.C application, multiple threats, Win32/Agent.RLD trojan, Win32/Adware.MaxDriver.A application, Win32/Adware.MaxDriver.C application
44.00%
VIPRE Antivirus
Threat.4739248, Threat.4150696, Adware.NSIS.ConvertAd, Threat.5086177, Threat.4725471, Threat.4807782, Adware.Eorezo, Adware.Win32.ConvertAd
42.00%
Kaspersky
not-a-virus:AdWare.Win32.Agent, UDS:DangerousObject.Multi.Generic, not-a-virus:HEUR:Adware.NSIS.ConvertAd, not-a-virus:AdWare.Win32.Eorezo
38.00%
Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
36.00%
IKARUS anti.virus
Trojan.Win32.Agent, AdWare.MSIL.Eorezo
30.00%
NANO AntiVirus
Riskware.Win32.Unwanted.dvtsiu, Riskware.Win32.Unwanted.dyfbqb, Riskware.InnoSetup.EoRezo.dxwajf
28.00%
K7 AntiVirus
Adware , Unwanted-Program
28.00%
avast!
Win32:Malware-gen, Win32:Adware-gen [Adw], Dropper-gen [Drp], Win32:Dropper-gen [Drp]
24.00%
Malwarebytes
Trojan.MSIL.Dropper, PUP.Optional.MaxDriverUpdater, PUP.Optional.SpaceSoundPro, PUP.Optional.Tuto4PC
22.00%
McAfee
Program.Artemis!311E0F988375, Artemis!97C3B438F783, Artemis!BC032FE07E68, Trojan.Artemis!9DFB4B09A30B, Artemis!B17DAD7C8A1D, Artemis!6E35FCF2838C, Trojan.Artemis!F5FEF28E39D8
20.00%
Avira AntiVirus
TR/Crypt.XPACK.Gen, TR/Agent.5604170.4, TR/Agent.5602793, TR/Agent.5604167.3, ADWARE/MaxDriver.1745392.157, ADWARE/MaxDriver.1745392.171
20.00%
G Data
Trojan.GenericKD.2627239, Win32.Trojan.Agent.4IAM2G, Adware.Agent.PZX, Win32.Trojan.Agent.BB09RV, Win32.Trojan.Agent.6KU1JX
20.00%
The domain csdi-dlstatic.tennoio.com has been seen to resolve to the following 2 IP addresses.
csdi-dl0.clean-navigate.com
January 3, 2016
csdi-dl1.clean-navigate.com
January 3, 2016
File downloads found at URLs served by csdi-dlstatic.tennoio.com.
The following 8 files have been seen to comunicate with csdi-dlstatic.tennoio.com in live environments.
URL:
http://csdi-dlstatic.tennoio.com/
Related Domains