mydati.com

Web Hosting Logic, Inc

Domain Information

The domain mydati.com registered by Web Hosting Logic, Inc was initially registered in August of 2007 through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM. Currently this domain has been known to host various forms of malware. The hosted servers are located in San Jose, California within the United States which resides on the AnchorFree Inc. network.
Remove Malware from mydati.com - Powered by Reason Core Security
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM

Server location:
California, United States (US)

Create date:
Tuesday, August 21, 2007

Expires date:
Sunday, August 21, 2016

Updated date:
Saturday, June 27, 2015

ASN:
AS3731 AFNCA-ASN - AFNCA Inc.

Scanner detections:
Malware distribution  (84% detected)

Scan engine
Details
Detections

Reason Heuristics
Bundleware.HotspotShield.AnchorFree.DD, Bundleware.HotspotShield.AnchorFree.BB, Bundleware.HotspotShield.AnchorFree.Meta, Win32.Generic.AnchorFree.Installer.Meta
65.00%

VIPRE Antivirus
Threat.4734158, Threat.4167477
37.50%

ESET NOD32
Win32/Sality.NBA virus, Detection.Undefined, Win32/Bundled.Toolbar.Ask.L potentially unsafe application
32.50%

Bkav FE
W32.Sality.PE, W32.HfsAdware
15.00%

Trend Micro House Call
TROJ_GEN.R0CBOH0AA14, TROJ_GEN.F47V0601, TROJ_GEN.F47V0323, Suspici.DAA9A6A2
10.00%

Qihoo 360 Security
htm.clickjack.b.gen
10.00%

Dr.Web
Adware.Conduit.30
7.50%

ESET NOD32
Win32/Toolbar.Conduit
7.50%

IKARUS anti.virus
Trojan.Win32.Kryptik, PUA.DomaIQ
5.00%

Avira AntiVirus
W32/Sality.AT, TR/Patched.Gen
5.00%

Baidu Antivirus
Adware.Win32.Conduit
2.50%

herdProtect (fuzzy)
a variant of f828288d7f5464112faaee452f454a66a6f0bfc3
2.50%

Microsoft Security Essentials
Threat.Undefined
2.50%

avast!
Win32:Sality
2.50%

AVG
Win32/Sality
2.50%

The domain mydati.com has been seen to resolve to the following 5 IP addresses.

74-115-0-76.anchorfree.com
April 4, 2014

74-115-4-114.anchorfree.com
December 22, 2013

74-115-4-112.anchorfree.com
December 22, 2013

199-255-210-51.anchorfree.com
August 5, 2013

74-115-3-160.anchorfree.com
August 5, 2013

File downloads found at URLs served by mydati.com.

2 / 68      (Malware)
http://mydati.com//download/.../HSS-773.exe  (hss-5.1.3-install-plain-773-plain.exe)

1 / 68      (Malware)

4 / 68      (PUP)

1 / 68      (Malware)

3 / 68      (Malware)

13 / 68    (Malware)
http://mydati.com//download/.../HSS-687.exe  (hss-3.42-install-e-562-plain.exe)

1 / 68      (Malware)
http://mydati.com//download/.../HSS-701.exe  (hss-5.0.4-install-plain-701-plain.exe)

1 / 68      (Malware)
http://mydati.com//download/.../HSS-714.exe  (hss-5.1.3-install-plain-714-plain.exe)

1 / 68      (Malware)

1 / 68      (Malware)
http://mydati.com//download/.../HSS-766.exe  (hss-5.1.3-install-plain-766-plain.exe)

1 / 68      (Malware)
http://mydati.com//download/.../HSS-773.exe0  (hss-5.0.4-install-plain-773-plain.exe)

4 / 68      (PUP)

1 / 68      (Malware)

1 / 68      (Malware)

1 / 68      (Malware)
http://mydati.com//download/.../HSS-713.exe  (hss-5.1.3-install-plain-713-plain.exe)

4 / 68      (inconclusive)
http://mydati.com/download/.../HSS-773.exe  (hss-5.0.4-install-plain-773-plain.exe)

3 / 68      (PUP)

1 / 68      (Malware)
http://mydati.com/download/.../install-hss-upd.exe  (hss-4.18.3-install-e-562-plain.exe)

6 / 68      (PUP)

2 / 68      (PUP)
http://mydati.com/download/.../HSS-702.exe  (hss-4.18.3-install-plain-702-plain.exe)

0 / 68

The following 6 files have been seen to comunicate with mydati.com in live environments.

URL:
http://mydati.com/

SSL certificate subject:
CN=*.mydati.com, OU=PositiveSSL Wildcard, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
nginx/1.8.0

Facebook:
Likes:  10
Shares:  39
Comments:  3

Statistics above are for the previous month of November 2016.

Remove Malware from mydati.com - Powered by Reason Core Security