home

638.srvjar.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain 638.srvjar.com is registered by proxy through GODADDY.COM, LLC and was originally registered in June of 2015. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the Voxel Dot Net, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
New York, United States (US)

Create date:
Sunday, June 7, 2015

Expires date:
Tuesday, June 7, 2016

Updated date:
Wednesday, November 4, 2015

ASN:
AS29791 VOXEL-DOT-NET - Voxel Dot Net, Inc., US

Root domain:
srvjar.com

Whois:
1 srvjar.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Bkav FE
W32.HfsAdware
100.00%

McAfee
Artemis!72CB31555DA5, Artemis!D7830F8B35ED
100.00%

Malwarebytes
PUP.Optional.ReImageRepair.A
100.00%

Dr.Web
riskware program Program.Unwanted.493
100.00%

Fortinet FortiGate
Riskware/ReImageRepair
100.00%

Baidu Antivirus
PUA.Win32.ReImageRepair
100.00%

Reason Heuristics
PUP.Reimage (L), Win32.Generic.Reimage.Installer.Meta
100.00%

Trend Micro House Call
Suspicious_GEN.F47V0520
100.00%

ESET NOD32
Detection.Undefined
50.00%

Kaspersky
not-a-virus:AdWare.Win32.Pibee
50.00%

ESET NOD32
Win32/ReImageRepair.F potentially unwanted
50.00%

Clam AntiVirus
Win.Trojan.Slugin-260
50.00%

The domain 638.srvjar.com has been seen to resolve to the following 6 IP addresses.

72.251.231.55
May 25, 2016

72.251.231.56
May 25, 2016

74.217.31.53
February 28, 2016

74.217.31.56
February 28, 2016

74.217.31.55
February 28, 2016

74.217.31.54
February 28, 2016

File downloads found at URLs served by 638.srvjar.com.

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41487578&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41516600&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41382242&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41460103&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41136164&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41435216&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41467257&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41332455&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41367424&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41321357&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41454841&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41281934&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41004103&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=40982633&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

10 / 68    (PUP)
http://638.srvjar.com/WhiteLabelBidRequestHandlerServlet?oid=638&width=1&height=100&pubid=144667&tagid=886077&pstn=41149281&noaop=1&revmod=INSERT_CONTENT_TYPE&encoded=1&cb=INSERT_CACHEBUSTER&keywords=INSERT_COMMA_SEPARATED_KEYWORDS&cirf=INSERT_ENCODED_REFERER  (reimagerepair.exe)

URL:
http://638.srvjar.com/

SSL certificate subject:
CN=*.srvjar.com, OU=Domain Control Validated

SSL certificate issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc."

Web server:
nginx/1.6.0

admailtiser.com

campaignism.com

genorithm.com

gogorithm.com

reimsrvcm.com

teracreative.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.