home

mediafire.bz

Domain Information

Server location:
Nord-Pas-De-Calais, France (FR)

ASN:
AS16276 OVH OVH SAS,FR

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.SomotoIsrael.BB, PUP.Somoto.SomotoIs.Bundler (M), PUP.Somoto (M)
100.00%

Malwarebytes
PUP.Optional.Somoto, PUP.Optional.Somoto.A
57.14%

Clam AntiVirus
Trojan.Agent-267630
57.14%

Dr.Web
Trojan.MulDrop4.11744
57.14%

VIPRE Antivirus
BetterInstaller, Trojan.Win32.Generic
57.14%

ESET NOD32
Win32/Somoto
57.14%

Panda Antivirus
PUP/MultiToolbar.A
57.14%

Sophos
Somoto BetterInstaller
42.86%

McAfee
Artemis!55464781BF84, Artemis!B3191A342E9A, Artemis!BE5AF5E39637
42.86%

Trend Micro House Call
TROJ_GEN.F47V0314, TROJ_GEN.F47V0206, TROJ_GEN.F47V0322
42.86%

K7 AntiVirus
Trojan , Unwanted-Program
28.57%

nProtect
Adware/W32.Agent.237016
14.29%

F-Prot
W32/Sefnit.C
14.29%

AhnLab V3 Security
Trojan/Win32.Agent
14.29%

AVG
Downloader
14.29%

The domain mediafire.bz has been seen to resolve to the following 3 IP addresses.

5.196.127.163
host.ultimateserv.com
June 4, 2016

176.31.183.68
ultimate.mediafire.bz
April 11, 2014

5.152.193.155
h5-152-193-155.host.redstation.co.uk
March 19, 2014

File downloads found at URLs served by mediafire.bz.

1 / 68      (Adware)
http://mediafire.bz/.../4shared_downloader-8daijzmO.exe  (6f6e30fe841431f0374ac0424a9aa5e6)

1 / 68      (Adware)
http://mediafire.bz/.../4shared_downloader-29uRgsCb.exe  (c9bbc8c74ce9dd42d0122e863c108a3f)

13 / 68    (Adware)
http://mediafire.bz/.../4shared_downloader-2wNbwZRx.exe  (be5af5e39637874ce9e228c34a6e185f)

13 / 68    (Adware)
http://mediafire.bz/.../4shared_downloader-4grAS8WQ.exe  (b3191a342e9a388dfa37d7169d4e7955)

10 / 68    (Adware)
http://mediafire.bz/.../4shared_downloader-3Wxc5Tgq.exe  (55464781bf84313a8dfedfeedc25dabd)

8 / 68      (Adware)
http://mediafire.bz/.../4shared_downloader-1f0RwwpY.exe  (754faa0184e7cc186344ee5a5665f3ba)

1 / 68      (Adware)
http://mediafire.bz/.../4shared_downloader-3Z9tKkru.exe  (7540202303663853362e5c5421dddad0)

June 4, 2016
s2.mediafire.bz

megauplaod.org

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.