www.psprocket.com

MP3 Rocket Inc

Domain Information

The domain www.psprocket.com registered by MP3 Rocket Inc was initially registered in November of 2006 through DOMAIN.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Montreal, Quebec within Canada which resides on the iWeb Technologies Inc. network.
Remove Malware from www.psprocket.com - Powered by Reason Core Security
Registrar:
DOMAIN.COM, LLC

Server location:
Quebec, Canada (CA)

Create date:
Friday, November 17, 2006

Expires date:
Wednesday, November 17, 2021

Updated date:
Wednesday, April 16, 2014

ASN:
AS32613 IWEB-AS - iWeb Technologies Inc.

Root domain:

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.MP3Support.Q, PUP.Installer.MP3Support.O, PUP.MP3Support.J, PUP.Installer.MP3Support.J, PUP.DownloadAdmin.O, PUP.Optional.Installer.SCCE, PUP.installCore.MP3TechSupport.Installer (M), Win32.Generic.SCCE.Installer.Meta
98.00%

ESET NOD32
Win32/OpenCandy (variant), Win32/InstallCore.QO (variant), Win32/InstallCore.PY (variant), Win32/InstallCore.QC (variant), Win32/OpenCandy.E potentially unsafe (variant)
80.00%

Baidu Antivirus
Adware.Win32.OpenCandy, Adware.Win32.InstallCore, Adware.Win32.DownloadAdmin
76.00%

K7 Gateway Antivirus
Unwanted-Program
72.00%

K7 AntiVirus
Unwanted-Program
72.00%

Fortinet FortiGate
Riskware/InstallCore, Riskware/DownloadAdmin, Riskware/OpenCandy
66.00%

VIPRE Antivirus
Trojan.Win32.Generic, Opencandy, Threat.4150696
64.00%

Dr.Web
Win32.Sector.21, Adware.OpenCandy.154, Adware.OpenCandy.155, Adware.OpenCandy.163, Adware.OpenCandy.171
62.00%

Zillya! Antivirus
Downloader.Agent.Win32.248040, Downloader.Agent.Win32.260269, Trojan.Kryptik.Win32.805012, Downloader.Agent.Win32.284783
62.00%

McAfee
Artemis!E2CAC0C06901, Artemis!DD4D58D80482, Artemis!7189732064BB, Artemis!39DFAAF6118C, Artemis!1D173EB422B4, Artemis!EF317EE22806, Artemis!AE2810AABD2E, Artemis!9834C63403AD, Artemis!004ECCB931B7, Artemis!087198B1243C, Artemis!26F4F093AD68, Artemis!979B7B1460AD
56.00%

Trend Micro House Call
Suspicious_GEN.F47V0819, Suspicious_GEN.F47V0911, Suspicious_GEN.F47V1210, Suspicious_GEN.F47V0109, Suspicious_GEN.F47V0116
54.00%

McAfee Web Gateway
Artemis, BehavesLike.Win32.Downloader.cc, Artemis!PUP, BehavesLike.Win32.MultiPlug.tc, BehavesLike.Win32.AdwareAmonetize.tc
54.00%

AVG
Generic
54.00%

Sophos
Generic PUA NF, Generic PUA HN, Download Admin, Generic PUA DD, Generic PUA JB
50.00%

Agnitum Outpost
Riskware.Agent
46.00%

The domain www.psprocket.com has been seen to resolve to the following IP address.

February 6, 2014

File downloads found at URLs served by www.psprocket.com.

5 / 68      (PUP)
http://www.psprocket.com/.../mp3rocket.exe  (e2cac0c06901c3164084dbd26cc455c6)

1 / 68      (PUP)
http://www.psprocket.com/downloads/.../mp3rocket-pro.exe  (6513fde459fb439264d47540274a7bc5)

URL:
http://www.psprocket.com/

Web server:
Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4

Remove Malware from www.psprocket.com - Powered by Reason Core Security