home

bar-best.xyz

Domain Information

Server location:
Dublin City, Ireland (IE)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP
100.00%

Lavasoft Ad-Aware
Adware.MPLug.GH, Adware.MPLug.HA, Gen:Variant.Adware.Mikey.8516, Gen:Variant.Adware.MPLug.35
31.25%

AhnLab V3 Security
PUP/Win32.MultiPlug
31.25%

Vba32 AntiVirus
SScope.Adware.MultiPlug, suspected of Heur.Malware-Cryptor.Multiplug
31.25%

Rising Antivirus
PE:Malware.XPACK-HIE/Heur!1.9C48, PE:AdWare.Win32.MultiPlug.s!1075356738
31.25%

Emsisoft Anti-Malware
Adware.MPLug.GH, Adware.MPLug.HA, Gen:Variant.Adware.Mikey.8516, Gen:Variant.Adware.MPLug.35
25.00%

avast!
Win32:Agent-AUVV [Trj], Win32:Dropper-gen [Drp], Win32:MultiPlug-WR [PUP], Win32:MultiPlug-ZC [PUP]
25.00%

F-Secure
Adware.MPLug.GH, Adware.MPLug.HA, Gen:Variant.Adware.Mikey, Gen:Variant.Adware.MPLug
25.00%

MicroWorld eScan
Adware.MPLug.GH, Adware.MPLug.HA, Gen:Variant.Adware.Mikey.8516, Gen:Variant.Adware.MPLug.35
25.00%

Bitdefender
Adware.MPLug.GH, Adware.MPLug.HA, Gen:Variant.Adware.Mikey.8516, Gen:Variant.Adware.MPLug.35
25.00%

G Data
Adware.MPLug.GH, Adware.MPLug.HA, Gen:Variant.Adware.Mikey.8516, Gen:Variant.Adware.MPLug.35
25.00%

AVG
Generic6, Adware Generic6.AAUU, PSW.Generic12, Adware Generic_r.AAD
25.00%

Panda Antivirus
Generic Suspicious
25.00%

ESET NOD32
Win32/Adware.MultiPlug.FO application, Win32/Adware.MultiPlug.FK application, Win32/Adware.MultiPlug.FC application
18.75%

Sophos
PUA 'MultiPlug' (of type Adware)
18.75%

The domain bar-best.xyz has been seen to resolve to the following 8 IP addresses.

31.170.178.179
June 23, 2016

185.28.193.192
192.193.28.185.gransy.com
June 23, 2016

54.72.130.67
ns1.ibspark.com
February 27, 2016

52.27.128.62
ec2-52-27-128-62.us-west-2.compute.amazonaws.com
February 10, 2016

52.27.128.59
ec2-52-27-128-59.us-west-2.compute.amazonaws.com
February 10, 2016

52.27.128.56
ec2-52-27-128-56.us-west-2.compute.amazonaws.com
February 10, 2016

54.149.241.47
ec2-54-149-241-47.us-west-2.compute.amazonaws.com
June 19, 2015

54.69.228.231
ec2-54-69-228-231.us-west-2.compute.amazonaws.com
June 19, 2015

File downloads found at URLs served by bar-best.xyz.

1 / 68      (Malware)
http://bar-best.xyz/v3500?self_redirect=0&product_name=Nightcore - Just A Dream.mp3&file size=&product_title=Nightcore - Just A Dream.mp3&installer_file_name=Nightcore - Just A Dream.mp3&product_file_name=Nightcore - Just A Dream.mp3&product_download_url=http://srv56.vidtomp3.com/download/.../Nightcore - Just A Dream.mp3  (nightcore - just a dream.exe)

1 / 68      (Malware)
http://bar-best.xyz/v2606?self_redirect=0&product_name=Bastille - Pompeii (Lyrics).mp3&filesize=&product_title=Bastille - Pompeii (Lyrics).mp3&installer_file_name=Bastille - Pompeii (Lyrics).mp3&product_file_name=Bastille - Pompeii (Lyrics).mp3&product_download_url=http://srv56.listentoyoutube.com/download/.../Bastille - Pompeii (Lyrics).mp3  (bastille - pompeii (lyrics).exe)

1 / 68      (Malware)
http://bar-best.xyz/v2606?self_redirect=0&product_name=Avicii - The Nights (Audio).mp3&filesize=&product_title=Avicii - The Nights (Audio).mp3&installer_file_name=Avicii - The Nights (Audio).mp3&product_file_name=Avicii - The Nights (Audio).mp3&product_download_url=http://srv57.listentoyoutube.com/download/.../Avicii - The Nights (Audio).mp3  (avicii - the nights (audio).mp3.exe)

1 / 68      (Malware)
http://bar-best.xyz/v3500?self_redirect=0&product_name=Ewelina Lisowska-W Stron? S?o?ca.mp3&file size=&product_title=Ewelina Lisowska-W Stron? S?o?ca.mp3&installer_file_name=Ewelina Lisowska-W Stron? S?o?ca.mp3&product_file_name=Ewelina Lisowska-W Stron? S?o?ca.mp3&product_download_url=http://srv78.vidtomp3.com/download/.../Ewelina Lisowska-W Stron? S?o?ca.mp3  (ewelina lisowska-w stron_ s_o_ca.exe)

1 / 68      (Malware)
http://bar-best.xyz/v3500?self_redirect=0&product_name=New Best Club Dance Music Megamix 2015 Party Music - CLUB MUSIC.mp3&file size=&product_title=New Best Club Dance Music Megamix 2015 Party Music - CLUB MUSIC.mp3&installer_file_name=New Best Club Dance Music Megamix 2015 Party Music - CLUB MUSIC.mp3&product_file_name=New Best Club Dance Music Megamix 2015 Party Music - CLUB MUSIC.mp3&product_download_url=http://srv70.vidtomp3.com/download/.../New Best Club Dance Music Megamix 2015 Party Music - CLUB MUSIC.mp3  ({blocked}.exe)

1 / 68      (Malware)
http://bar-best.xyz/v3500?self_redirect=0&product_name=Ellie Goulding - Love Me Like You Do (Official Video).mp3&file size=&product_title=Ellie Goulding - Love Me Like You Do (Official Video).mp3&installer_file_name=Ellie Goulding - Love Me Like You Do (Official Video).mp3&product_file_name=Ellie Goulding - Love Me Like You Do (Official Video).mp3&product_download_url=http://srv57.vidtomp3.com/download/.../Ellie Goulding - Love Me Like You Do (Official Video).mp3  (ellie goulding - love me like you do (official video).exe)

1 / 68      (Malware)
http://bar-best.xyz/v3500?self_redirect=0&product_name=Melendi - Tocado y hundido (Videoclip oficial).mp3&file size=&product_title=Melendi - Tocado y hundido (Videoclip oficial).mp3&installer_file_name=Melendi - Tocado y hundido (Videoclip oficial).mp3&product_file_name=Melendi - Tocado y hundido (Videoclip oficial).mp3&product_download_url=http://srv46.vidtomp3.com/download/.../Melendi - Tocado y hundido (Videoclip oficial).mp3  (melendi - tocado y hundido (videoclip oficial).exe)

1 / 68      (Malware)
http://bar-best.xyz/v3500?self_redirect=0&product_name=Nicky Jam - El Perdón | Video Lyric | (Prod. Saga WhiteBlack).mp3&file size=&product_title=Nicky Jam - El Perdón | Video Lyric | (Prod. Saga WhiteBlack).mp3&installer_file_name=Nicky Jam - El Perdón | Video Lyric | (Prod. Saga WhiteBlack).mp3&product_file_name=Nicky Jam - El Perdón | Video Lyric | (Prod. Saga WhiteBlack).mp3&product_download_url=http://srv55.vidtomp3.com/download/.../Nicky Jam - El Perdón | Video Lyric | (Prod. Saga WhiteBlack).mp3  (nicky jam - el perdn _ video lyric _ (prod. saga whiteblack).mp3.exe)

1 / 68      (Malware)
http://bar-best.xyz/v3500?self_redirect=0&product_name=Nicky Jam - El Perdón | Video Lyric | (Prod. Saga WhiteBlack).mp3&file size=&product_title=Nicky Jam - El Perdón | Video Lyric | (Prod. Saga WhiteBlack).mp3&installer_file_name=Nicky Jam - El Perdón | Video Lyric | (Prod. Saga WhiteBlack).mp3&product_file_name=Nicky Jam - El Perdón | Video Lyric | (Prod. Saga WhiteBlack).mp3&product_download_url=http://srv49.vidtomp3.com/download/.../Nicky Jam - El Perdón | Video Lyric | (Prod. Saga WhiteBlack).mp3  (nicky jam - el perdn _ video lyric _ (prod. saga whiteblack).exe)

1 / 68      (Malware)
http://bar-best.xyz/v2606?self_redirect=0&product_name=Maher Zain - Maula ya salli HD.mp3&filesize=&product_title=Maher Zain - Maula ya salli HD.mp3&installer_file_name=Maher Zain - Maula ya salli HD.mp3&product_file_name=Maher Zain - Maula ya salli HD.mp3&product_download_url=http://srv78.listentoyoutube.com/download/.../Maher Zain - Maula ya salli HD.mp3  (maher zain - maula ya salli hd.exe)

1 / 68      (Malware)
http://bar-best.xyz/v2606?self_redirect=0&product_name=Usher "You Remind Me" Lyrics.mp3&filesize=&product_title=Usher "You Remind Me" Lyrics.mp3&installer_file_name=Usher "You Remind Me" Lyrics.mp3&product_file_name=Usher "You Remind Me" Lyrics.mp3&product_download_url=http://srv42.listentoyoutube.com/download/.../Usher "You Remind Me" Lyrics.mp3  (usher -you remind me- lyrics.exe)

31 / 68    (PUP)
http://bar-best.xyz/v2606?self_redirect=0&product_name=(?) ???????? ????????????????.mp3&filesize=&product_title=(?) ???????? ????????????????.mp3&installer_file_name=(?) ???????? ????????????????.mp3&product_file_name=(?) ???????? ????????????????.mp3&product_download_url=http://srv65.listentoyoutube.com/download/.../(?) ???????? ????????????????.mp3  ((_) ________ ________________.exe)

25 / 68    (PUP)
http://bar-best.xyz/v2606?self_redirect=0&product_name=Pitbull - Timber ft. Ke$ha.mp3&filesize=&product_title=Pitbull - Timber ft. Ke$ha.mp3&installer_file_name=Pitbull - Timber ft. Ke$ha.mp3&product_file_name=Pitbull - Timber ft. Ke$ha.mp3&product_download_url=http://srv79.listentoyoutube.com/download/.../Pitbull - Timber ft. Ke$ha.mp3  (pitbull - timber ft. ke$ha.mp3.exe)

6 / 68      (PUP)
http://bar-best.xyz/v2606?self_redirect=0&product_name=Eminem - Not Afraid.mp3&filesize=&product_title=Eminem - Not Afraid.mp3&installer_file_name=Eminem - Not Afraid.mp3&product_file_name=Eminem - Not Afraid.mp3&product_download_url=http://srv46.listentoyoutube.com/download/.../Eminem - Not Afraid.mp3  (eminem - not afraid.exe)

15 / 68    (PUP)
http://bar-best.xyz/v2606?self_redirect=0&product_name=JPOD - BlissCoast vol. 3: Blues & Bebop.mp3&filesize=&product_title=JPOD - BlissCoast vol. 3: Blues & Bebop.mp3&installer_file_name=JPOD - BlissCoast vol. 3: Blues & Bebop.mp3&product_file_name=JPOD - BlissCoast vol. 3: Blues & Bebop.mp3&product_download_url=http://srv63.listentoyoutube.com/download/.../JPOD - BlissCoast vol. 3: Blues & Bebop.mp3  (jpod - blisscoast vol. 3_ blues & bebop.exe)

20 / 68    (PUP)
http://bar-best.xyz/v2606?self_redirect=0&product_name=Higher Throne - Kings Kaleidoscope.mp3&filesize=&product_title=Higher Throne - Kings Kaleidoscope.mp3&installer_file_name=Higher Throne - Kings Kaleidoscope.mp3&product_file_name=Higher Throne - Kings Kaleidoscope.mp3&product_download_url=http://srv38.listentoyoutube.com/download/.../Higher Throne - Kings Kaleidoscope.mp3  (higher throne - kings kaleidoscope.exe)

The following 166 files have been seen to comunicate with bar-best.xyz in live environments.

TCP » 54.72.130.67:80
simplefilesupdater.exe (SimpleFiles Application by http://simple-files.com/)

TCP » 54.72.130.67:80
yourfileupdater.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
uninstall12590625.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
uninstall5322109.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
yourfileupdater.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
uninstall190602.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
yourfileupdater.exe (YourFile Downloader by http://yourfiledownloader.com)

TCP » 54.72.130.67:80
googleupdate.exe

TCP » 54.72.130.67:80
browserserver.exe

TCP » 54.72.130.67:80
sm.exe (System Monitor)

TCP » 54.72.130.67:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.72.130.67:80
uninstall129231.exe (SimpleFiles Application by http://simple-files.com/)

TCP » 185.28.193.192:80
mdquickyksvc.exe (ModenQuick Service by PT. USENET)

TCP » 185.28.193.192:80
mdruyksvc.exe (ModernRu Service by PT. USENET)

TCP » 54.72.130.67:80
sfupdater.exe (SimpleFiles Application by http://simple-files.com/)

TCP » 54.72.130.67:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 54.72.130.67:80
TBNotifier.exe (Ask TBNotifier by APN)

TCP » 54.72.130.67:80
pepperzip.exe

TCP » 54.72.130.67:80
internetenhancer.exe (Internet Enhancer)

TCP » 54.72.130.67:80
ssn.exe (ssn)

 
Latest 20 of 181 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.