The domain dl.extransfernetwork.com registered by Corp New Ventures Services was initially registered in November of 2014 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Registrant:
Corp New Ventures Services
Registrar:
HAWTHORNEDOMAINS.COM LLC
Server location:
Massachusetts, United States (US)
Create date:
Friday, November 21, 2014
Expires date:
Saturday, November 21, 2015
Updated date:
Friday, November 28, 2014
ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.AppsInstallerSL.M, PUP.Installer.CondestilDevelopmentssl.M, PUP.Installer.AppsInstallerSL.Q, PUP.Installer.CondestilDevelopmentssl.O, PUP.Installer.FIRSERIASL.Q, PUP.Installer.AppsInstallerSL.Z, PUP.Solimba.CondestilDevelopments.Bundler (M), PUP.Solimba.POPELERSYSTEM.Bundler (M), PUP.Solimba.AppsInstaller.Installer (M), PUP.Solimba.Condesti.Bundler (M), PUP.Solimba.AppsInst.Bundler (M), PUP.Solimba (M)
100.00%
VIPRE Antivirus
Threat.4782980, Threat.4150696, DownloadMR
26.32%
avast!
Win32:Trojan-gen, Win32:PUP-gen [PUP], Win32:Malware-gen, Win32:Solimba-T [PUP]
26.32%
Avira AntiVirus
TR/Dropper.Gen, TR/Crypt.XPACK.Gen, APPL/Firseria.Gen8
26.32%
AVG
Adware BundleApp_r.AD, Adware BundleApp.GI
26.32%
Sophos
Solimba Installer, PUA 'Solimba Installer'
26.32%
G Data
Win32.Application.Morstar, Gen:Variant.Application.Bundler, Gen:Variant.Symmi.45008, Application.Bundler.Firseria
26.32%
Vba32 AntiVirus
Downware.Morstar
26.32%
IKARUS anti.virus
AdWare.BundleApp, not-a-virus:AdWare.Fiseria, PUA.MSIL.Solimba
26.32%
Malwarebytes
PUP.Optional.Solimba, PUP.Optional.Firseria
21.05%
NANO AntiVirus
Riskware.Win32.Fiseria.dcnyjg, Riskware.Win32.Fiseria.dcvydq, Trojan.Win32.DownLoader11.ddphbo
21.05%
Panda Antivirus
Adware/Solimba, Adware/Firseria
21.05%
Agnitum Outpost
PUA.Firseria, PUA.Solimba
21.05%
AhnLab V3 Security
PUP/Win32.101Alemi, PUP/Win32.Firseria, PUP/Win32.FirseriaInstaller
21.05%
Emsisoft Anti-Malware
Gen:Variant.Application.Bundler, Gen:Variant.Symmi.45008, Application.Bundler.Firseria.M
21.05%
The domain dl.extransfernetwork.com has been seen to resolve to the following 9 IP addresses.
a23-62-6-56.deploy.static.akamaitechnologies.com
August 17, 2014
a23-62-6-43.deploy.static.akamaitechnologies.com
August 17, 2014
a23-0-160-24.deploy.static.akamaitechnologies.com
August 17, 2014
a23-0-160-59.deploy.static.akamaitechnologies.com
August 17, 2014
a23-67-242-34.deploy.static.akamaitechnologies.com
August 7, 2014
a23-67-242-67.deploy.static.akamaitechnologies.com
August 7, 2014
a23-67-243-72.deploy.static.akamaitechnologies.com
August 7, 2014
File downloads found at URLs served by dl.extransfernetwork.com.
The following 97 files have been seen to comunicate with dl.extransfernetwork.com in live environments.
URL:
http://dl.extransfernetwork.com/