ttb.yourplayersetup.com

Corp New Ventures Services

Domain Information

The domain ttb.yourplayersetup.com registered by Corp New Ventures Services was initially registered in October of 2014 through SOLUCIONES CORPORATIVAS IP,SLU. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Vitoria-Gasteiz, Pais Vasco within Spain which resides on the RIPE Network Coordination Centre network.
Remove Malware from ttb.yourplayersetup.com - Powered by Reason Core Security
Registrar:
SAMMAMISHDOMAINS.COM LLC

Server location:
Pais Vasco, Spain (ES)

Create date:
Saturday, October 04, 2014

Expires date:
Tuesday, October 04, 2016

Updated date:
Saturday, October 10, 2015

ASN:
AS57910 SCIP-AS Soluciones Corporativas IP, SL,ES

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.tuguusl.F, PUP.Installer.LunacomInteractive.F, PUP.LunacomInteractive.J, PUP.Installer.TuguuSL.O, PUP.TuguuSL.O, PUP.Bundler.Tuguu, Threat.Tuguu.Bundler, PUP.Tuguu.Bundler, PUP.Tuguu.LunacomInteractive.Bundler (M), PUP.Tuguu.Updater.Installer.Meta (M), PUP.Tuguu.TuguuU.Bundler (M), PUP.Downloadius.Downloadious.Installer (M), PUP.Adknowledge.SETUPDOTEXE.Bundler (M)
100.00%

VIPRE Antivirus
Threat.4783235, Threat.4783262, Threat.4150696, Trojan.Win32.Generic
61.54%

Dr.Web
Trojan.Packed.24553, Trojan.Domaiq.261, Trojan.Packed.26900
61.54%

ESET NOD32
Win32/DomaIQ.AG potentially unwanted application, MSIL/DomaIQ.E potentially unwanted application, MSIL/DomaIQ.B potentially unwanted application
61.54%

McAfee
Artemis!B55497B1BFC7, Artemis!05EF58C8781E, Adware-DomaIQ, Artemis!EE65979880B9, Trojan.Adware-DomaIQ, RDN/Generic PUP.x!c2i
61.54%

Malwarebytes
PUP.Optional.MSILLauncher.A, PUP.Optional.BundleInstaller.A, PUP.Optional.Domalq, PUP.Optional.DomaIQ, PUP.Optional.DomalQ
61.54%

AVG
Generic, Adware DomaIQ.BI, Adware AdLoad.B, Adware DomaIQ.BM, Adware AdPlugin
61.54%

avast!
PUP-gen [PUP], Installer-AE [PUP], DomaIQ-AP [PUP], Win32:IBryte-CZ [PUP]
57.69%

K7 Gateway Antivirus
Unwanted-Program , Trojan
57.69%

K7 AntiVirus
Unwanted-Program , Trojan
57.69%

NANO AntiVirus
Trojan.Win32.Generic.csgowe, Trojan.Win32.Stealer.cwxrck, Riskware.Win32.DomaIQ.dcnhjo, Trojan.Win32.Downloader.cninza, Trojan.Win32.DomaIQ.csfkzl
57.69%

Sophos
DomainIQ pay-per install, Generic PUA FK, Generic PUA GI, Generic PUA IG, PUA 'DomainIQ pay-per install', iBryte Optimum Installer
57.69%

Comodo Security
Application.Win32.DomaIQ.L, Application.Win32.DomaIQ.P, Application.Win32.DomaIQ.KR, Application.Win32.DomaIQ.KMS, Application.Win32.DomaIQ.R
57.69%

Avira AntiVirus
APPL/DomaIQ.Gen7, W32/Ramnit.A, PUA/DomaIQ.Gen, PUA/DomaIQ.Gen7, ADWARE/Adware.Gen7
57.69%

Kingsoft AntiVirus
VIRUS_UNKNOWN, Win32.Troj.Generic.a.(kcloud), Win32.Troj.Undef.(kcloud)
57.69%

The domain ttb.yourplayersetup.com has been seen to resolve to the following 7 IP addresses.

May 2, 2015

October 20, 2014

www.renewyourexpireddomain.com
August 16, 2014

ec2-54-201-201-245.us-west-2.compute.amazonaws.com
July 3, 2014

ec2-50-112-177-75.us-west-2.compute.amazonaws.com
July 3, 2014

ec2-54-186-103-141.us-west-2.compute.amazonaws.com
June 13, 2014

ec2-54-186-58-221.us-west-2.compute.amazonaws.com
May 14, 2014

File downloads found at URLs served by ttb.yourplayersetup.com.

The following 2 files have been seen to comunicate with ttb.yourplayersetup.com in live environments.

Remove Malware from ttb.yourplayersetup.com - Powered by Reason Core Security