www.psprocket.com

MP3 Rocket Inc

Domain Information

The domain www.psprocket.com registered by MP3 Rocket Inc was initially registered in November of 2006 through DOMAIN.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Montreal, Quebec within Canada which resides on the iWeb Technologies Inc. network.
Registrar:
DOMAIN.COM, LLC

Server location:
Quebec, Canada (CA)

Create date:
Friday, November 17, 2006

Expires date:
Wednesday, November 17, 2021

Updated date:
Wednesday, April 16, 2014

ASN:
AS32613 IWEB-AS - iWeb Technologies Inc.

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.MP3Support.V, PUP.MP3Support.P, PUP.MP3Support.J, PUP.MP3Support.O, PUP.Installer.MP3Support.J, PUP.Optional.Installer.SCCE, Win32.Generic.SCCE.Installer.Meta, PUP.installCore.MP3TechSupport.Installer (M), PUP.installCore.MP3TechS.Installer (M), PUP.OpenCandy.SCCE.Installer.Meta (M), PUP.InstallCore.RE11 (M)
100.00%

Dr.Web
Trojan.Packed.25266, Adware.Downware.1417, Program.Unwanted.62, Adware.OpenCandy.141, Adware.OpenCandy.139, Adware.OpenCandy.144
62.00%

ESET NOD32
Win32/OpenCandy, Win32/Bundled.Toolbar.Ask (variant), Win32/InstallCore.RG (variant), Win32/InstallCore.WE (variant), Win32/OpenCandy.A potentially unsafe (variant), Win32/OpenCandy.E potentially unsafe (variant)
62.00%

Baidu Antivirus
Adware.Win32.InstallCore, Adware.Win32.OpenCandy
58.00%

Fortinet FortiGate
Riskware/InstallCore, Riskware/OpenCandy
54.00%

McAfee
Artemis!E991C5E50E26, Artemis!4D68E3F49A97, Artemis!B85103C12331, Artemis!1D6C49C60FA8, Artemis!2A6A8EA83A8E, Artemis!73B537D1E288, Artemis!53E805F9835E, Artemis!9826B77FC5A8, Artemis!57972EA1C2B2, Artemis!6040E30462D3, Artemis!433959388623, Artemis!BCEFE6C98C14
52.00%

McAfee Web Gateway
Artemis!E991C5E50E26, Artemis!4D68E3F49A97, Artemis!PUP, BehavesLike.Win32.Suspicious.tc, BehavesLike.Win32.AdwareAmonetize.tc
50.00%

Trend Micro House Call
TROJ_GEN.F47V1214, TROJ_GEN.F47V0123, Suspicious_GEN.F47V0107, Suspicious_GEN.F47V0124, Suspicious_GEN.F47V0213, Suspicious_GEN.F47V0226, Suspicious_GEN.F47V0424
48.00%

VIPRE Antivirus
Opencandy, Trojan.Win32.Generic
46.00%

K7 Gateway Antivirus
Unwanted-Program
44.00%

K7 AntiVirus
Unwanted-Program
44.00%

AVG
JS/MultiBundle, Generic
42.00%

Zillya! Antivirus
Downloader.Agent.Win32.248040, Downloader.Agent.Win32.260269, Trojan.Kryptik.Win32.805012
42.00%

Sophos
Generic PUA AI, Generic PUA JO, Generic PUA LA, Generic PUA JB
34.00%

Bkav FE
W32.HfsAdware
34.00%

The domain www.psprocket.com has been seen to resolve to the following 2 IP addresses.

August 25, 2016

February 6, 2014

File downloads found at URLs served by www.psprocket.com.

1 / 68      (PUP)
http://www.psprocket.com/.../mp3rocket.exe  (30fbbcd5a2ece45d516b7095d51783f4)

6 / 68      (PUP)
http://www.psprocket.com/downloads/.../mp3rocket-pro.exe  (44715b0bf0b0d8ba22c8297d89c16cd5)

URL:
http://www.psprocket.com/

Web server:
Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4