d5.mp3rocket.com

MP3 Rocket Inc

Domain Information

The domain d5.mp3rocket.com registered by MP3 Rocket Inc was initially registered in June of 2003 through REGIONAL NETWORK INFORMATION CENTER, JSC DBA RU-CENTER. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Montreal, Quebec within Canada which resides on the iWeb Technologies Inc. network.
Remove Malware from d5.mp3rocket.com - Powered by Reason Core Security
Registrar:
REGIONAL NETWORK INFORMATION CENTER, JSC DBA RU-CENTER

Server location:
Quebec, Canada (CA)

Create date:
Tuesday, June 10, 2003

Expires date:
Thursday, June 10, 2021

Updated date:
Thursday, February 16, 2012

ASN:
AS32613 IWEB-AS - iWeb Technologies Inc.,CA

Root domain:

Scanner detections:
Detections  (92% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.MP3Support.N, PUP.MP3Support.N, PUP.MP3Support.J, Win32.Generic.Installer.SCCE.Meta, PUP.installCore.Installer, PUP.installCore.MP3TechSupport.Installer (M)
100.00%

ESET NOD32
Win32/Bundled.Toolbar.Ask (variant), Win32/Kryptik.BVVE (variant), Win32/InstallCore.SR (variant), Win32/OpenCandy.A potentially unsafe (variant)
75.00%

Dr.Web
Adware.Downware.1417, Trojan.MulDrop5.10078, Adware.OpenCandy.144, Adware.OpenCandy.163, Adware.OpenCandy.171
66.67%

Fortinet FortiGate
W32/Kryptik.BVVE!tr, Riskware/InstallCore, Riskware/OpenCandy
66.67%

Trend Micro House Call
TROJ_GEN.F47V0820, TROJ_GEN.F47V0324, Suspicious_GEN.F47V1227, Suspicious_GEN.F47V0523, Suspicious_GEN.F47V0519, Suspicious_GEN.F47V0418
58.33%

Baidu Antivirus
Adware.Win32.InstallCore, Adware.Win32.OpenCandy
58.33%

VIPRE Antivirus
Trojan.Win32.Generic
50.00%

K7 Gateway Antivirus
Unwanted-Program
41.67%

K7 AntiVirus
Unwanted-Program
41.67%

Sophos
Generic PUA HJ, Generic PUA JB
41.67%

AVG
Generic
41.67%

Agnitum Outpost
Trojan.Kryptik, Riskware.Agent
33.33%

Avira AntiVirus
ADWARE/InstallCore.Gen7, PUA/OpenCandy.Gen
33.33%

McAfee Web Gateway
Artemis, BehavesLike.Win32.AdwareAmonetize.tc
33.33%

McAfee
Artemis!B41069589134, Artemis!087198B1243C, Artemis!03401FFC6A8D
33.33%

The domain d5.mp3rocket.com has been seen to resolve to the following 3 IP addresses.

February 4, 2016

June 30, 2015

March 28, 2014

File downloads found at URLs served by d5.mp3rocket.com.

1 / 68      (Adware)
http://d5.mp3rocket.com/.../MP3Rocket-Win.exe  (75fe97b6277893dd516d8cd3f5dd2864)

0 / 68
http://d5.mp3rocket.com/.../MP3Rocket-Win.exe  (cde01ea8cacc35272f42917987817443)

1 / 68      (Adware)

24 / 68    (Adware)

24 / 68    (Adware)
http://d5.mp3rocket.com/.../mp3rocket.exe  (5ec300c7c50554e5a220ce229e223bc7)

12 / 68    (PUP)

11 / 68    (PUP)

14 / 68    (PUP)
http://d5.mp3rocket.com/.../MP3Rocket-Win.exe  (b66e60eeceaed11ee17de5235ff3ecf0)

10 / 68    (Adware)

15 / 68    (PUP)

3 / 68      (PUP)
http://d5.mp3rocket.com/.../mp3rocket.exe  (68aed7c48411a20f5416a33e89ed478c)

9 / 68      (PUP)

8 / 68      (PUP)

8 / 68      (PUP)
http://d5.mp3rocket.com/.../MP3Rocket-Win.exe  (210192501e358866a864a2202347ba25)

URL:
http://d5.mp3rocket.com/

Title:
“Most Popular Music Videos - MP3 Rocket - Landing Page”

Description:
“MP3 Rocket dedicated to collecting and promoting the best music videos, audio, photos, and Creative Commons content on the Internet. This is your site's landing page.”

Web server:
Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 (PHP/5.5.31)

Remove Malware from d5.mp3rocket.com - Powered by Reason Core Security