The domain metrosidebar.com is registered by proxy through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM and was originally registered in August of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Gravelines, Nord-Pas-De-Calais within France which resides on the RIPE Network Coordination Centre network.
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM
Nord-Pas-De-Calais, France (FR)
Tuesday, August 27, 2013
Thursday, August 27, 2015
Friday, September 05, 2014
AS16276 OVH OVH SAS,FR
Detections (92% detected)
PUP.Installer.Groovecom.S, PUP.SITEONSPOT.I, PUP.Installer.SITEONSPOT.h, PUP.Installer.Somoto.h, PUP.Somoto.i, PUP.Somoto.DD, PUP.Somoto.q
McAfee Web Gateway
Somoto-BetterInstaller, BehavesLike.Win32.SomotoBetterInstaller.dc, Artemis
Win32:Somoto-P [PUP], Somoto-R [PUP], Win32:Somoto-R [PUP]
AhnLab V3 Security
K7 Gateway Antivirus
Trojan , Unwanted-Program , Dialer
Qihoo 360 Security
Win32/Application.6bb, HEUR/QVM42.0.Malware.Gen, Win32/Virus.Downloader.192
The domain metrosidebar.com has been seen to resolve to the following 2 IP addresses.
November 10, 2014
December 26, 2013
File downloads found at URLs served by metrosidebar.com.
“MetroSidebar - The new generation of Windows Sidebar”
“The new generation of Windows Sidebar”