home

cdn.airdlr7.com

WHOISGUARD, INC.  (Proxy Registrant)

Domain Information

The domain cdn.airdlr7.com is registered by proxy through ENOM, INC. and was originally registered in August of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software.
Registrar:
ENOM, INC.

Create date:
Tuesday, August 28, 2012

Expires date:
Sunday, August 28, 2016

Updated date:
Saturday, December 19, 2015

Root domain:
airdlr7.com

Whois:
1 airdlr7.com record

Scanner detections:
Detections  (88% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.SearchProtect.Conduit.M, PUP.Optional.JDIBACKUPLIMITED.H, PUP.ReSoft.H, PUP.ReSoft.N, PUP.ReSoft.G, PUP.Optional.Installer.JDIBACKUPLIMITED.J, PUP.Installer.JDIBACKUPLIMITED.V, PUP.ReSoft.J, PUP.Brightcircle.EvangelionGroup.Installer (M), Win32.Generic, PUP.Brightcircle.NeonAlchemistStation.Installer (M), Adware.BrightCircle.Agnhfkxn.Installer (M), PUP.Brightcircle.LarosteA.Installer (M)
86.96%

ESET NOD32
Win32/Toolbar.Conduit, Win32/MyPCBackup, Win32/Toolbar.Linkury (variant), MSIL/Adware.StrongVault (variant), Win32/TrojanDropper.MsiDrop (variant)
52.17%

Dr.Web
Adware.Conduit.6, Trojan.DownLoader10.19818, Adware.Downware.1716, Adware.Downware.1560, Trojan.Siggen5.10351, Trojan.Crossrider.27621
39.13%

VIPRE Antivirus
Conduit, Trojan.Win32.Generic!SB.0, Adware.Linkury
34.78%

Trend Micro House Call
TROJ_GEN.R0CBH01HA13, TROJ_GEN.F47V1216, TROJ_GEN.F47V1223, TROJ_GEN.F47V0609, TROJ_GEN.F47V1127, TROJ_GEN.F47V0325, TROJ_SPNV.03HE14
30.43%

McAfee
Artemis!51A0627A1116, Artemis!DE89D8867F1E, Artemis!22C291C89FA6, Artemis!D00F9B08343A, Artemis!98FCFE11C4FD, Artemis!0FB8003D185D
30.43%

avast!
Win32:SmartBar-A [PUP], Win32:Malware-gen
26.09%

AVG
AdInject.Resoft.dropper, Trojan horse Dropper.Agent, Generic
26.09%

Malwarebytes
PUP.Optional.Conduit.A, PUP.Optional.Linkury.A, PUP.Optional.SnapDo.A, PUP.Optional.CrossRider
21.74%

G Data
Win32.Application.ConduitBrothersoftTB, Adware.Linkury, Win32.Trojan.Agent.DEYXRB
13.04%

Bkav FE
W32.Clodd25.Trojan, W32.Clod2bf.Trojan, W32.Clodb14.Trojan
13.04%

herdProtect (fuzzy)
a variant of 5c4e9e74212c7193a2e49a361a8ac3f2aa45bd85, a variant of 1609988862663c3251a0f1bd49470bd33324ed62, a variant of 390eeba08ae66b4502d30cc96975b1d9697a2439
13.04%

Fortinet FortiGate
Riskware/Toolbar_Linkury, W32/MsiDrop.A!tr
13.04%

Panda Antivirus
PUP/LinkUry, Trj/Chgt.C
13.04%

Agnitum Outpost
PUA.Toolbar.Linkury, Riskware.ScrambleWrapper, Trojan.DR.MsiDrop
13.04%

File downloads found at URLs served by cdn.airdlr7.com.

22 / 68    (Adware)
http://cdn.airdlr7.com/downloads/offers/.../setupbr.exe  (airc8dd.exe)

1 / 68      (Adware)
http://cdn.airdlr7.com/downloads/offers/.../setup_cashop.exe  (117e509b097edecb6d972550cec2f325)

4 / 68      (Adware)
http://cdn.airdlr7.com/downloads/offers/.../snapdowithdp.exe  (air7edb.exe)

1 / 68      (Adware)
http://cdn.airdlr7.com/downloads/offers/.../setup_fr5.exe  (air857a.exe)

1 / 68      (Adware)
http://cdn.airdlr7.com/downloads/offers/.../setupfr.exe  (airb7b2.exe)

2 / 68
http://cdn.airdlr7.com/downloads/offers/.../FakeOffer.exe  (air6020.exe)

16 / 68    (Adware)
http://cdn.airdlr7.com/downloads/offers/.../snapdo1b.exe  (air6f4.exe)

3 / 68      (PUP)
http://cdn.airdlr7.com/downloads/offers/.../SuperBackup.exe  (87d60d34f57f53460b0dc337835e824b)

3 / 68      (PUP)
http://cdn.airdlr7.com/downloads/offers/.../Cloud_Backup_Setup999.exe  (air63a0.exe)

24 / 68    (Adware)
http://cdn.airdlr7.com/downloads/offers/.../Installer1.exe  (installer.exe)

1 / 68      (Adware)
http://cdn.airdlr7.com/downloads/offers/.../setup_shopuk.exe  (c21d86d77e73a9acb1bba0c0d338f9a4)

2 / 68      (PUP)
http://cdn.airdlr7.com/downloads/offers/.../Cloud_Backup_Setup824.exe  (561f69b8fd88ae66fc94842f04ee058e)

9 / 68      (Adware)
http://cdn.airdlr7.com/downloads/offers/.../Installer.exe  (installer_new.exe)

7 / 68      (PUP)
http://cdn.airdlr7.com/downloads/offers/.../Cloud_Backup_Setup821.exe  (airb5d8.exe)

6 / 68      (PUP)
http://cdn.airdlr7.com/downloads/offers/.../mobogenieww.exe  (setup.exe)

1 / 68      (Malware)
http://cdn.airdlr7.com/downloads/offers/.../PcCleanUpSetupSA.exe  (air1bf3.exe)

8 / 68      (PUP)
http://cdn.airdlr7.com/downloads/offers/.../sp-downloader.exe  (spdownloader.exe)

1 / 68
http://cdn.airdlr7.com/downloads/offers/.../IDPatroller4AI.exe  (airb2ca.exe)

8 / 68      (Adware)
http://cdn.airdlr7.com/downloads/offers/.../InstallerSep8.exe  (installer.exe)

8 / 68      (Adware)
http://cdn.airdlr7.com/downloads/offers/.../snapdo3a.exe  (dd96edf3f131af2324747ad29e60b7f3)

0 / 68
http://cdn.airdlr7.com/downloads/offers/.../IDPatroller4AIb.exe  (air260.exe)

8 / 68      (Adware)
http://cdn.airdlr7.com/downloads/offers/.../Installer-CH.exe  (installer.exe)

1 / 68      (PUP)
http://cdn.airdlr7.com/downloads/offers/.../aff_setup.exe  (3d2810bd999225ac121040ba80d24494)

7 / 68      (PUP)
http://cdn.airdlr7.com/downloads/offers/.../Cloud_Backup_Setup805b.exe  (air4337.exe)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.