stapi.maxrevinstaller.com

LiveSoftAction SRL

Domain Information

The domain stapi.maxrevinstaller.com registered by LiveSoftAction SRL was initially registered in March of 2014 through GANDI SAS. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Remove Malware from stapi.maxrevinstaller.com - Powered by Reason Core Security
Registrar:
GANDI SAS

Server location:
Massachusetts, United States (US)

Create date:
Monday, March 10, 2014

Expires date:
Friday, March 10, 2017

Updated date:
Friday, January 29, 2016

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.,US

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Sien.LiveSoftAction.Bundler (M), PUP.Sien.SIENInternetProducts.Bundler (M), PUP.Sien.IMINENTTECHNOLOGY.Bundler (M)
100.00%

Dr.Web
Adware.Downware.9211, Adware.Iminent.26, Adware.Iminent.3, Adware.Downware.9925, Adware.Downware.3244, Adware.Iminent.8
34.69%

VIPRE Antivirus
Threat.4150696, Trojan.Win32.Generic, Threat.4794174, Appscion
34.69%

NANO AntiVirus
Trojan.Win32.GetNow.dfspwx, Riskware.Win32.Downware.dnvzdh, Trojan.Win32.Symmi.djigay, Riskware.Win32.Downware.dowhsg, Riskware.Win32.Downware.dcceei
34.69%

McAfee Web Gateway
LiveSoftAction, BehavesLike.Win32.LiveSoftAction.bc, BehavesLike.Win32.LiveSoftAction.jc, BehavesLike.Win32.LiveSoftAction.cc
34.69%

Antiy Labs AVL
Trojan/Win32.TSGeneric, RiskWare[Downloader:not-a-virus]/Win32.Agent, Trojan/Win32.SGeneric
34.69%

AVG
Adware BundleApp_r.Q, Generic
34.69%

Avira AntiVirus
APPL/GetNow.MVA, APPL/GetNow.ionb, APPL/Downloader.Gen4, APPL/GetNow.ersd, Adware/Downware.M.4
34.69%

K7 AntiVirus
Unwanted-Program , Trojan , Dialer
34.69%

K7 Gateway Antivirus
Unwanted-Program , Trojan , Dialer
34.69%

ESET NOD32
Win32/GetNow.B potentially unwanted application, Win32/GetNow.F potentially unwanted application, Win32/GetNow.E potentially unwanted application
32.65%

Agnitum Outpost
Riskware.Agent, PUA.Downloader
32.65%

IKARUS anti.virus
PUA.Getnow, Win32.SuspectCrc
32.65%

McAfee
LiveSoftAction, Artemis!06093030AE45, Trojan.Artemis!36DB1F7B08C5, Program.LiveSoftAction, Artemis!ADFD15CD1B1C, Trojan.Artemis!E9C8DC26D9D4
30.61%

Comodo Security
Application.Win32.GetNow.NRTI, Application.Win32.SuperInstall.AR, Application.Win32.GetNow.DI, Application.Win32.GetNow.CEPM
26.53%

The domain stapi.maxrevinstaller.com has been seen to resolve to the following 58 IP addresses.

August 21, 2015

a23-66-231-33.deploy.static.akamaitechnologies.com
June 19, 2015

a96-17-197-35.deploy.akamaitechnologies.com
June 19, 2015

a23-67-243-35.deploy.static.akamaitechnologies.com
May 15, 2015

May 15, 2015

a23-66-230-106.deploy.static.akamaitechnologies.com
May 5, 2015

a23-66-230-153.deploy.static.akamaitechnologies.com
May 5, 2015

a23-0-160-26.deploy.static.akamaitechnologies.com
March 15, 2015

a23-0-160-74.deploy.static.akamaitechnologies.com
March 15, 2015

March 6, 2015

March 6, 2015

a23-3-13-42.deploy.static.akamaitechnologies.com
January 13, 2015

a23-62-6-178.deploy.static.akamaitechnologies.com
January 13, 2015

a184-26-136-64.deploy.static.akamaitechnologies.com
January 3, 2015

a23-15-7-153.deploy.static.akamaitechnologies.com
December 31, 2014

a23-15-7-122.deploy.static.akamaitechnologies.com
December 31, 2014

November 17, 2014

November 17, 2014

a23-15-9-51.deploy.static.akamaitechnologies.com
November 10, 2014

a23-0-160-32.deploy.static.akamaitechnologies.com
November 2, 2014

November 2, 2014

November 2, 2014

a23-15-9-56.deploy.static.akamaitechnologies.com
November 1, 2014

a23-15-9-10.deploy.static.akamaitechnologies.com
November 1, 2014

November 1, 2014

November 1, 2014

a23-0-160-33.deploy.static.akamaitechnologies.com
October 24, 2014

a23-0-160-18.deploy.static.akamaitechnologies.com
October 24, 2014

October 20, 2014

October 20, 2014

 
Showing 30 of 58 IP Addresses

File downloads found at URLs served by stapi.maxrevinstaller.com.

27 / 68    (Adware)
http://stapi.maxrevinstaller.com/api/.../setup.exe  (angry birds provided through adscend media network cpa.exe)

The following 264 files have been seen to comunicate with stapi.maxrevinstaller.com in live environments.

 
Latest 20 of 272 files

URL:
http://stapi.maxrevinstaller.com/

Web server:
Microsoft-IIS/8.0 (ASP.NET) (Version: 4.0.30319)

Remove Malware from stapi.maxrevinstaller.com - Powered by Reason Core Security