service.mediasrv21.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain service.mediasrv21.com is registered by proxy through GODADDY.COM, LLC and was originally registered in September of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrar:
GODADDY.COM, LLC

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Monday, September 9, 2013

Expires date:
Wednesday, September 9, 2015

Updated date:
Wednesday, September 10, 2014

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.BundloreLimited.F, PUP.Installer.SambamediaSL.F
100.00%

Dr.Web
Adware.Downware.1732, Adware.Downware.1897
50.00%

VIPRE Antivirus
Bundlore
50.00%

McAfee
Artemis!7FA7B38A12E2
25.00%

Comodo Security
Application.Win32.Bundlore.A
25.00%

Avira AntiVirus
SPR/Bundlore.A
25.00%

ESET NOD32
Win32/Bundlore (variant)
25.00%

Rising Antivirus
PE:PUF.Bundlore!1.9EA1
25.00%

Malwarebytes
PUP.Optional.Bundlore
25.00%

Agnitum Outpost
Riskware.Agent
25.00%

herdProtect (fuzzy)
a variant of 1eed21943b1447e01b6eda98d8971d4465380b53
25.00%

AVG
MalSign.Bundlo
25.00%

Sophos
Bundlore
25.00%

SUPERAntiSpyware
PUP.Bundlore/Variant
25.00%

IKARUS anti.virus
PUA.Bundlore
25.00%

The domain service.mediasrv21.com has been seen to resolve to the following 2 IP addresses.

unallocated.barefruit.co.uk
May 3, 2015

April 26, 2014

File downloads found at URLs served by service.mediasrv21.com.

The following 230 files have been seen to comunicate with service.mediasrv21.com in live environments.

 
Latest 20 of 230 files

URL:
http://service.mediasrv21.com/

Web server:
nginx/1.0.15