The domain install.hidefinstall.com registered by Corp New Ventures Services was initially registered in July of 2014 through BARONOFDOMAINS.COM LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Road Town, British Virgin Islands within VG which resides on the Confluence Networks Inc network.
Registrant:
Corp New Ventures Services
Registrar:
BARONOFDOMAINS.COM LLC
Server location:
British Virgin Islands, VG (VG)
Create date:
Monday, July 14, 2014
Expires date:
Thursday, July 14, 2016
Updated date:
Tuesday, September 22, 2015
ASN:
AS40034 CONFLUENCE-NETWORK-INC - Confluence Networks Inc,VG
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.FUSIONINSTALLER.F, PUP.Air Software.AirSoftware.Bundler (M), PUP.Air Software.AirSoftw.Bundler (M)
100.00%
VIPRE Antivirus
Threat.4150696, AirInstaller
40.00%
MicroWorld eScan
Gen:Variant.Application.Bundler.OptimumInstaller.1, Gen:Variant.Application.Bundler.AirInstaller.4
40.00%
Malwarebytes
PUP.Optional.OptimumInstaller.A, PUP.Optional.AirInstaller
40.00%
NANO AntiVirus
Trojan.Win32.Zusy.cyhpmk, Riskware.Win32.Downware.cwfgel
40.00%
avast!
Win32:Adware-gen [Adw], Win32:Installer-L [PUP]
40.00%
Kaspersky
not-a-virus:AdWare.Win32.iBryte, not-a-virus:WebToolbar.Win32.Agent
40.00%
Bitdefender
Gen:Variant.Application.Bundler.OptimumInstaller.1, Gen:Variant.Application.Bundler.AirInstaller.4
40.00%
Agnitum Outpost
PUA.Agent, PUA.Toolbar.Agent
40.00%
Comodo Security
Application.Win32.iBryte.WRP, Application.Win32.AirAdInstaller.A
40.00%
Sophos
iBryte Optimum Installer, AirInstaller
40.00%
G Data
Gen:Variant.Application.Bundler.OptimumInstaller, Win32.Adware.Airadinstaller
40.00%
Panda Antivirus
PUP/iBryte, Adware/AirInstaller
40.00%
Rising Antivirus
PE:Malware.iBryte!6.197B, PE:PUF.Airinstall!1.9C4C
40.00%
AVG
Adware AdPlugin.QR, Generic_r
40.00%
The domain install.hidefinstall.com has been seen to resolve to the following 3 IP addresses.
File downloads found at URLs served by install.hidefinstall.com.
The following 2 files have been seen to comunicate with install.hidefinstall.com in live environments.
URL:
http://install.hidefinstall.com/