home

i1.proffiiget.in

Domain Information

Server location:
Texas, United States (US)

ASN:
AS33070 RMH-14 - Rackspace Hosting, US

Root domain:
proffiiget.in

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.EliDahan.J, PUP.EZDownloader.Installer.M, Unnamed.Threat.75, Threat.Win.Reputation, Unnamed.Threat.31, Unnamed.Threat.14, PUP.Optional.Installer.BeijingAmazGameAgeInternetTechnologyCo.Y, PUP.Installer.GTCONSULTORIAEMINFORMATICAA.J, PUP.talltd.N, Threat.Win.Reputation.IMP, PUP.SkytouchTechnologyCoLimited.O, PUP.Optional.PCBackupSoftwareLimited.K
86.67%

Trend Micro House Call
ADW_EMOTICONS, TROJ_GEN.F47V0611, TROJ_SPNR.29L213, TROJ_GEN.F47V1227, TROJ_GEN.F47V0114, TROJ_SPNR.19D413, TROJ_GEN.F47V0106, TROJ_GEN.F47V0312
63.33%

VIPRE Antivirus
Trojan.Win32.Generic!SB.0, Adware.Agent, Threat.4120919, Amonetize, Trojan.Win32.Sprotect.a, Adinstaller.Goodware/SmartInstaller
56.67%

Malwarebytes
PUP.Optional.EZDownloader.A, PUP.Optional.MultiPlug.A, PUP.Optional.SProtect.A, PUP.Optional.Bundler, PUP.Optional.TSULoader.A, PUP.Optional.Amonetize.A, PUP.Optional.SkyTech.A
56.67%

McAfee
Artemis!1D283DD3AE23, Artemis!903C06F02D54, RDN/Generic.hra!a, W32/Virut.n.gen, Generic-FAOD!25342B9C4B5D, Artemis!9CDEAD920A06, Artemis!74E0BA9540A0, Artemis!52E4E02B8691
53.33%

Bkav FE
W32.Cloddb2.Trojan, W32.Clodd3f.Trojan, W32.Clod54e.Trojan, HW32.CDB, W32.Vetor.PE, HW32.Stranacty, W32.DropperMalagentL.Trojan, W32.WinadeyLTA.Trojan
46.67%

Dr.Web
Trojan.DownLoad3.30962, Trojan.Crossrider.20, Adware.NextLive.2, Adware.Downware.448, Trojan.Searcher.1197, Adware.Downware.1659, Trojan.KillFiles.22484
46.67%

Avira AntiVirus
TR/Downloader.Gen, Adware/BHO.Bprotector.13, W32/Virut.Gen, TR/Graftor.woienwqb, ADWARE/Adware.Gen2, TR/Drop.4838400, TR/Drop.5123584.2, TR/Crypt.XPACK.Gen2
46.67%

ESET NOD32
Win32/TrojanDownloader.Agent.AFD (variant), Win32/Duckegg, Win32/SProtector (variant), Win32/Packed.ScrambleWrapper, Win32/NextLive
46.67%

avast!
Win32:Adware-AYT [PUP], Win32:Vitro, Win32:SProtector-G [PUP], Win32:Malware-gen, Win32:SProtector-N [PUP], Win32:Dropper-gen [Drp]
43.33%

Sophos
Mal/Generic-S, BProtect BHO Plugin, W32/Scribble-B, Amonetize, Generic PUA GN, Troj/Agent-AFFX, Mal/Drop-AVTZ
43.33%

Fortinet FortiGate
W32/Agent.AFD!tr.dldr, Riskware/PUP, W32/Virut.CE, W32/Agent.AEAIQ!tr, Riskware/Elex, Adware/Agent
43.33%

Baidu Antivirus
Trojan.Win32.Agent, Trojan.Win32.Duckegg, Adware.Win32.BHO, Trojan.Win32.ScrambleWrapper, AdWare.Win32.InstallRex, Trojan.Win32.SProtector
43.33%

IKARUS anti.virus
Virus.Win32.Heur, Win32.SuspectCrc, Win32.Malware, Trojan.Win32.Agent, AdWare.SProtector, W32.Virut, Virus.Win32.Virut
43.33%

Emsisoft Anti-Malware
Gen:Variant.Graftor.135393, Application.MPlug, Gen:Variant.Dropper.99, Adware.Win32.AppInstall, Win32.Virtob.Gen.12, Gen:Variant.Symmi.14078
43.33%

The domain i1.proffiiget.in has been seen to resolve to the following IP address.

23.253.126.58
July 3, 2016

File downloads found at URLs served by i1.proffiiget.in.

25 / 68    (Malware)
http://i1.proffiiget.in/.../validator.exe  (580b5bff75a2423c285bd86de8b783be)

19 / 68    (PUP)
http://i1.proffiiget.in/addons/.../psupport_install.exe  (903c06f02d542e7dfe137e8fb2e86e59)

6 / 68      (Malware)
http://i1.proffiiget.in/.../duckegg.exe  (fastdownload.exe)

19 / 68    (Adware)
http://i1.proffiiget.in/addons/.../easylife_setup.exe  (cfc989b7c271653cafc96b624cabe194)

7 / 68      (Adware)
http://i1.proffiiget.in/.../Bundle.exe  (785bc41f7e8c5a842ad199ba046e1281)

7 / 68      (PUP)
http://i1.proffiiget.in/addons/.../inplay.dll  (81daaf22c44ddfaa49da46c7e3ba4688)

4 / 68      (PUP)
http://i1.proffiiget.in/.../DeltaFix.exe  (putfu.exe)

29 / 68    (Malware)
http://i1.proffiiget.in/.../agup.exe  (sw-booster.exe)

5 / 68      (PUP)
http://i1.proffiiget.in/.../Cloud_Backup_Setup.exe  (mypcbackup.exe)

2 / 68      (PUP)
http://i1.proffiiget.in/.../trnt_egg.exe  (down.2436.fastdownload.exe)

6 / 68      (PUP)
http://i1.proffiiget.in/.../applow.exe  (cdf95ba511a1fd9775433172fb40c396)

33 / 68    (false positives)
http://i1.proffiiget.in/addons/dfndr/.../tpq.exe  (assistant_v3.exe)

4 / 68      (Adware)
http://i1.proffiiget.in/.../oneindian.exe  (alnaddy_india.exe)

29 / 68    (PUP)
http://i1.proffiiget.in/addons/dfndr/.../sprotector_x86_x64.exe  (assistant_v3.exe)

13 / 68    (Adware)
http://i1.proffiiget.in/.../wpc_sweet-page.exe  (390ea85cc79fd6c37361b120dc8d324d)

5 / 68      (PUP)
http://i1.proffiiget.in/.../guppy_comscore_eu.exe  (74e0ba9540a011188dc3c8b4c19db96c)

24 / 68    (Malware)
http://i1.proffiiget.in/.../reviservalidator.exe  (0c5f3694c060fff33179f5303a2d11d4)

2 / 68      (Adware)
http://i1.proffiiget.in/.../alnaddy-v2.1.3.0.exe  (3573dbb96e4376d91daf38c52ccabe3e)

22 / 68    (PUP)
http://i1.proffiiget.in/.../agent2.exe  (sk.enhancer.exe)

11 / 68    (PUP)
http://i1.proffiiget.in/.../Mobogenie_Setup_2.1.35_519.exe  (00d58cff3480ca863000a25cd42b76b9)

1 / 68      (Adware)
http://i1.proffiiget.in/.../SubtitlesS13.exe  (subtitles.exe)

8 / 68      (Adware)
http://i1.proffiiget.in/.../sSetup-se.exe  (ef7d5227360e42058d25f27d9db95de0)

7 / 68      (PUP)
http://i1.proffiiget.in/.../guppy_comscore_us.exe  (52e4e02b8691021749dec199c0b41955)

3 / 68      (Adware)
http://i1.proffiiget.in/.../ezdownloader.exe  (71f784969d24240764d5e5d752d55a41)

8 / 68      (Adware)
http://i1.proffiiget.in/.../sinstall.exe  (71c2ea2b936ba80f4bad80937b369adf)

equality-download.eu

faucetyard.eu

goody-office.xyz

milyoncu.xyz

oinst02.eu

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.