www.media970.com

Adperio, Inc

Domain Information

The domain www.media970.com registered by Adperio, Inc was initially registered in September of 2011 through TIERRANET INC. D/B/A DOMAINDISCOVER. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Tel Aviv, Tel Aviv within Israel which resides on the RIPE Network Coordination Centre network.
Remove Malware from www.media970.com - Powered by Reason Core Security
Registrar:
TIERRANET INC. D/B/A DOMAINDISCOVER

Server location:
Tel Aviv, Israel (IL)

Create date:
Thursday, September 08, 2011

Expires date:
Thursday, September 08, 2016

Updated date:
Monday, August 25, 2014

ASN:
AS49587 ADSMARKET Adsmarket G.M LTD

Root domain:

Scanner detections:
Detections  (92% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.InstallX.Q, PUP.Optional.XportsoftTechnologies.a, PUP.Installer.TuguuSLU.F, DownloadManager.AirSoftware.K, DownloadManager.AirSoftware.F, PUP.Installer.OptimumInstaller.G, PUP.Installer.OptimumInstaller.AA, PUP.Adknowledge.OptimumInstaller.Installer (M), PUP.Adknowledge.FUSIONINSTALLER.Installer (M), PUP.Air Software.AirSoftware.Bundler (M), Win32.Generic, PUP.Adknowledge.PremiumInstaller (M)
100.00%

Dr.Web
Adware.W3i.32, Adware.OpenCandy.4, Trojan.PayInt.14, Adware.Downware.1410, Adware.Downware.1167, Adware.Siggen.26340, Trojan.SMSSend.4776
86.96%

Sophos
InstallQ, DomainIQ pay-per install, AirInstaller, iBryte Optimum Installer, PUA 'AirInstaller', PUA 'iBryte Optimum Installer'
82.61%

Comodo Security
Application.Win32.InstallIQ.B, Application.Win32.DomaIQ.D, Application.Win32.AirAdInstaller.B, Application.Win32.AirAdInstaller.A
82.61%

VIPRE Antivirus
InstallIQ Installer, DomaIQ, AirInstaller, Threat.4782985, Threat.4778314, Optimum Installer, Threat.4150696
82.61%

Avira AntiVirus
APPL/InstallIQ.Gen5, APPL/DomaIQ.G.2, ADWARE/Adware.Gen7, Adware/AirInst.2556, Adware/iBryte.amhy, Adware/Agent.909545, Adware/Agent.aece.3
82.61%

K7 AntiVirus
Unwanted-Program , Adware
78.26%

K7 Gateway Antivirus
Unwanted-Program , Backdoor , Adware
78.26%

Rising Antivirus
PE:PUF.OpenCandy!1.9DE5, PE:PUF.DomaIQ!1.9EEB, PE:PUF.Airinstall!1.9C4C, PE:Trojan.Win32.Rouge.c!1075354401, PE:Trojan.Win32.Rouge.d!1075354374
78.26%

Malwarebytes
PUP.Optional.InstallIQ, PUP.Optional.OpenCandy, PUP.Optional.BundleInstaller.A, PUP.Optional.AirInstaller, PUP.Optional.Ibryte
73.91%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), Win32.Troj.Undef.(kcloud), Win32.Troj.Agent.ae.(kcloud), Win32.HeurC.KVM019.a.(kcloud), Win32.Troj.AirAdInstall.cd.(kcloud)
73.91%

nProtect
Dropped:Adware.Generic.656740, Trojan-Clicker/W32.AirAdInstaller.824744, Trojan-Clicker/W32.AirAdInstaller.1115272.B, Trojan-Clicker/W32.AirAdInstaller.823720
73.91%

F-Prot
W32/DomaIQ.B.gen, W32/AirInstall.A.gen, W32/Ibryte.C.gen, W32/A-4c6cec55, W32/A-8f9a0f53
73.91%

avast!
Win32:DomaIQ-BB [PUP], Adware-gen [Adw], PUP-gen [PUP], Win32:Installer-J [PUP], Win32:Adware-CAH [PUP], Win32:IBryte-DB [PUP]
73.91%

G Data
Dropped:Adware.Generic.656740, Win32.Adware.Airadinstaller, Win32.Adware.Ibryte, Win32.Adware.OptimumInst, Gen:Variant.Application.Bundler.OptimumInstaller
73.91%

The domain www.media970.com has been seen to resolve to the following IP address.

February 8, 2014

File downloads found at URLs served by www.media970.com.

Remove Malware from www.media970.com - Powered by Reason Core Security