www.musicrocket.com

Rousseau, Paschal

Domain Information

The domain www.musicrocket.com registered by Rousseau, Paschal was initially registered in December of 2002 through Network Solutions, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Montreal, Quebec within Canada which resides on the iWeb Technologies Inc. network.
Registrar:
Network Solutions, LLC

Server location:
Quebec, Canada (CA)

Create date:
Thursday, December 05, 2002

Expires date:
Saturday, December 05, 2020

Updated date:
Wednesday, February 23, 2011

ASN:
AS32613 IWEB-AS - iWeb Technologies Inc.,CA

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.MP3Support.J, PUP.MP3Support.O, PUP.MP3Support.N, PUP.Optional.Installer.SCCE, PUP.Installer.MP3Support, PUP.installCore.MP3TechSupport, PUP.installCore.MP3TechSupport.Installer (M), Win32.Generic.SCCE.Installer.Meta, PUP.installCore.MP3TechS.Installer (M), PUP.OpenCandy.SCCE.Installer.Meta (M), PUP.OpenCandy.MP3Rocke.Installer.Meta (M), PUP.MP3Rocket.Toolbar (L)
100.00%

ESET NOD32
Win32/InstallCore.JE.gen (variant), Win32/OpenCandy, Win32/InstallCore.PY (variant), Win32/Injected (variant), Win32/InstallCore.UF (variant), Win32/OpenCandy.E potentially unsafe (variant)
66.00%

Dr.Web
Trojan.Packed.25266, Adware.OpenCandy.4, Adware.OpenCandy.144, Adware.OpenCandy.155, Adware.OpenCandy.154, Adware.OpenCandy.163
60.00%

Baidu Antivirus
Adware.Win32.InstallCore, Adware.Win32.OpenCandy
58.00%

VIPRE Antivirus
Opencandy, Trojan.Win32.Generic
56.00%

Fortinet FortiGate
Riskware/InstallCore, Riskware/OpenCandy
54.00%

K7 Gateway Antivirus
Unwanted-Program
54.00%

Trend Micro House Call
TROJ_GEN.F47V0123, TROJ_GEN.F47V0208, TROJ_GEN.F47V0203, Suspicious_GEN.F47V0116, Suspicious_GEN.F47V0126, Suspicious_GEN.F47V0130, Suspicious_GEN.F47V0226, Suspicious_GEN.F47V0519
52.00%

K7 AntiVirus
Unwanted-Program
52.00%

Zillya! Antivirus
Downloader.Agent.Win32.248040, Downloader.Agent.Win32.260269, Trojan.Kryptik.Win32.805012
48.00%

McAfee Web Gateway
Artemis!3BEFAC0D397B, Artemis!A1462ABB9F46, BehavesLike.Win32.AdwareAmonetize.tc, BehavesLike.Win32.Suspicious.tc, BehavesLike.Win32.PUP.tc
46.00%

McAfee
Artemis!3BEFAC0D397B, Artemis!A1462ABB9F46, Artemis!2A6A8EA83A8E, Artemis!09672008FF00, Artemis!E4CF69217FFB, Artemis!874B82E3F4B0, Artemis!997BFFD78835, Artemis!03401FFC6A8D, Artemis!BCEFE6C98C14, Artemis!861081A5ED29, Artemis!31D2AE687345
44.00%

AVG
Generic
44.00%

Sophos
Generic PUA DD, Generic PUA LA, Generic PUA HJ, Generic PUA JB
40.00%

SUPERAntiSpyware
PUP.MP3Rocket/Variant
36.00%

The domain www.musicrocket.com has been seen to resolve to the following 3 IP addresses.

August 26, 2016

December 1, 2014

February 6, 2014

File downloads found at URLs served by www.musicrocket.com.

10 / 68    (PUP)
http://www.musicrocket.com/.../mp3rocket.exe  (4b524d4949d1a6752d59c78c4d204471)

2 / 68      (PUP)

URL:
http://www.musicrocket.com/

Web server:
Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4