The domain dl7.iq8download.com registered by Whois Privacy Shield Services was initially registered in February of 2016 through ENOM, INC.. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States. The domain uses the Amazon Web Services (AWS) cloud computing platform. The domain is associated with the publisher InstallX, LLC who is located in Sartell, Minnesota in the United States.
Server location:
Virginia, United States (US)
Create date:
Thursday, February 11, 2016
Expires date:
Saturday, February 11, 2017
Updated date:
Sunday, February 14, 2016
ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US
Scanner detections:
Detections (98% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.InstallX.J, PUP.Installer.InstallX.T, PUP.Installer.InstallX.S, PUP.Installer.W3i.W, PUP.Installer.InstallX.O, PUP.InstallX.W3i.Installer (M), PUP.InstallX.Installer (M), PUP.InstallX.W3i (M)
97.83%
Dr.Web
Adware.W3i.32, Adware.W3i.25, Adware.W3i.9, Adware.Downware.2512, Adware.W3i.4
86.96%
ESET NOD32
Win32/InstallIQ (variant)
86.96%
Avira AntiVirus
Adware/InstallIQ.N, APPL/InstallIQ.Gen5, Adware/InstallIQ.I.1
86.96%
Malwarebytes
PUP.PlayPickle, PUP.Optional.InstallIQ, PUP.Optional.InstallIQ.A, PUP.Optional.InstallIq
82.61%
VIPRE Antivirus
InstallIQ Installer, Trojan.Win32.Generic
82.61%
Comodo Security
Application.Win32.InstallIQ.B, UnclassifiedMalware, Application.Win32.InstallIQ.NTZK
78.26%
Trend Micro House Call
TROJ_GEN.F47V0815, TROJ_GEN.F47V0410, TROJ_GEN.F47V0927, TROJ_SPNR.0CLO12, TROJ_FAKEAV.BMC, TROJ_GEN.R0CBH0AB914, TROJ_GEN.F47V0502, TROJ_GEN.RCBH1LM, TROJ_GEN.FCBCBLB, TROJ_GEN.F47V0416
60.87%
McAfee
Artemis!A34F9AC02DB1, Artemis!E328593BCF74, Artemis!EDEB89390FE7, Artemis!19D4CE24463F, Artemis!2C6A58CC67FA, Artemis!930E8B870F21, Artemis!0A250647E8D3, Artemis!F7C5DCD44460
54.35%
MicroWorld eScan
Adware.InstallIQ.B, Adware.InstallIQ.C, APPL/InstallIQ.Gen5, Adware.Generic.669720, Win32/InstallIQ
54.35%
K7 AntiVirus
Riskware, Unwanted-Program , Trojan
50.00%
Rising Antivirus
PE:PUF.InstallIQ!1.9E4F, PE:Trojan.Win32.Generic.137215B6!326243766, PE:Trojan.Win32.Generic.14A41BA7!346299303
45.65%
AVG
Skodna.Generic_r, Skodna.Generic_c, AdInstaller.InstallQ, InstallIQ, InstallIQ.W
43.48%
IKARUS anti.virus
AdWare.InstallIQ, Win32.SuspectCrc, AdWare.Win32.InstallIQ, APPL, AdWare.InstallC
39.13%
The domain dl7.iq8download.com has been seen to resolve to the following 7 IP addresses.
ec2-54-210-47-225.compute-1.amazonaws.com
February 19, 2016
125.34.148.146.bc.googleusercontent.com
February 19, 2016
cdn-208-111-160-6.iad.llnw.net
March 15, 2014
cdn-208-111-161-254.iad.llnw.net
March 15, 2014
File downloads found at URLs served by dl7.iq8download.com.
Latest 30 of 116 download URLs
The following 155 files have been seen to comunicate with dl7.iq8download.com in live environments.
URL:
http://dl7.iq8download.com/
Google Analytics:
UA-48689684
Network:
Amazon Web Services (AWS), running an EC2 instance
Related Domains
30 of 631 related domains