home

www.baixarmidia.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain www.baixarmidia.com is registered by proxy through GODADDY.COM, LLC and was originally registered in January of 2016. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Montreal, Quebec within Canada which resides on the OVH Hosting, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Quebec, Canada (CA)

Create date:
Monday, January 4, 2016

Expires date:
Wednesday, January 4, 2017

Updated date:
Thursday, January 14, 2016

ASN:
AS16276 OVH OVH SAS,FR

Root domain:
baixarmidia.com

Whois:
3 baixarmidia.com records

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.SOFTWARECENTERINFORMATICAAME (M), PUP.BR Software.BRSOFTWARE (M), PUP.Midia Technologies.MidiaTechnologies.Bundler (M), PUP.Midia Technologies.MidiaTec.Bundler (M), PUP.BR Software.BRSOFTWA (M), PUP.Midia Technologies (M), PUP.BR Software (M)
96.00%

F-Prot
W32/NewMalware-LSU-based!Maximu, W32/AdAgent.AO.gen
4.00%

Dr.Web
Trojan.DownLoader7.54809, Adware.Downware.376
4.00%

Emsisoft Anti-Malware
Trojan.MSIL.Adware.PCMega.AMN, Gen:Variant.Adware.PCMega
4.00%

Fortinet FortiGate
Adware/PCMega, Adware/PCMega.J
4.00%

Panda Antivirus
Trj/Downloader.VPT, Trj/Dtcontx.D
4.00%

MicroWorld eScan
Application.Generic.482748
2.00%

McAfee
RDN/Generic PUP.x!ba
2.00%

Malwarebytes
PUP.FaceMoods
2.00%

K7 AntiVirus
Riskware
2.00%

NANO AntiVirus
Trojan.Win32..beseol
2.00%

Trend Micro House Call
ADW_PCMEGA
2.00%

avast!
MSIL:Downloader-HZ [Adw]
2.00%

Bitdefender
Application.Generic.482748
2.00%

Comodo Security
UnclassifiedMalware
2.00%

The domain www.baixarmidia.com has been seen to resolve to the following 11 IP addresses.

213.247.47.190
May 16, 2016

45.55.192.58
April 7, 2016

45.55.192.48
April 7, 2016

45.55.191.194
April 7, 2016

45.55.219.20
April 7, 2016

174.137.132.28
February 14, 2016

185.53.178.11
January 31, 2016

198.50.209.4
May 4, 2015

192.99.4.18
onlinemidia.com
August 10, 2014

198.50.154.158
June 20, 2014

198.27.67.61
web01.onlinemidia.com
December 23, 2013

File downloads found at URLs served by www.baixarmidia.com.

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../CD Adoração e Adoradores – Foi Por Amor.zip  (cd adoração e adoradores – foi por amor.zip.exe)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../Thor_2-O_Mundo_Sombrio_2013_TS_Dub-SynysteR.rar  (thor_2-o_mundo_sombrio_2013_ts_dub-synyster.rar.exe)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../Riddick_3_2013_DVDRip_Dual_Audio-YKS.rar  ({blocked}.exe)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../Ate_Que_a_Sorte_Nos_Separe_2_2013_TS_XviD-D3M0.rar  (ate_que_a_sorte_nos_separe_2_2013_ts_xvid-d3m0.rar.exe)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../Namorados_Para_Sempre_Dublado.rar  (namorados_para_sempre_dublado.rar.exe)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/id105/.../Assistir Filme Efeito Borboleta 3 – Revelação – Dublado Online.exe  (844c19be2a7612c71ca04afba348d3c9)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../acelerador.exe  (4c25384cd9c34ccb8d9bc9e0f200850b)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../cd.exe  (a3ef8c031cdb37227a317ac0203b40ef)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../tiao-carreiro-e-pardinho-tangos-e-dueto.zip  (tiao-carreiro-e-pardinho-tangos-e-dueto.zip.exe)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../raca-negra-nossa-historia.zip  (raca-negra-nossa-historia.zip.exe)

2 / 68      (PUP)
http://www.baixarmidia.com/ids/.../download.exe  (15c1a2b576e6f2afeb5898ffd6548528)

4 / 68      (inconclusive)
http://www.baixarmidia.com/ids/.../registrobrasfoot2013.exe  (47ee2173f8c98224f24c86d418ffc5a2)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../jogo.exe  (ece5ea9fe91d1647db6830e8b8e24be6)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/id105/.../Assistir Filme Nitro Circus: O Filme . Dublado 2012.exe  (assistir filme nitro circus- o filme. dublado 2012.exe)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../Download.exe  (c54ccf3efe36d0d69da59debbedd03f1)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/id80/.../assistir.exe  (b5e9fb95a5df038daa0c367202658e2d)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../filme.exe  (05b35b277accf379d3d6614e202fcc0c)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/id105/.../Assistir Filme Enrolados – Dublado Online.exe  (29eed87fd0a3fb8091e5f2124680f495)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/id105/.../Asistir Filme Superman 2 – A Aventura Continua – Dublado.exe  (d1d5f8b49833d7b680bdb477f100d4fd)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../SE_BEBER_NaO_CASE_Dublado.rar  (se_beber_nao_case_dublado.rar.exe)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/id105/.../Assistir Filme Os Pinguins do Papai – 2011 – Dublado Online.exe  (81e34785f243b44376e729e7de59bbe5)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../download.exe  (44ce00403a733fd127b372938af02c60)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../download.exe  (779936ca418b0b928f1c85831dae9b93)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/id105/.../Assistir Filme Lola Dublado Online.exe  (c15510bd012784bfe209c561f6b16cf6)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../axe-bahia-1996.zip  (axe-bahia-1996.zip.exe)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/id105/.../Assistir Filme Um Quarto em Roma – Dublado Online.exe  (f0730acfe6fb4eac53ee394efbedbf45)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/id105/.../Assistir Filme Todo Mundo em Pânico 3 Dublado Online.exe  (0630defa46edfc07a422f8177ed17c26)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../atualizar.exe  (a6ba0950b1d77af0c53837bdb4979490)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../download.exe  (edd37f6627f067ec28375f18eb43f708)

1 / 68      (Adware)
http://www.baixarmidia.com/ids/.../download.exe  (terra nova 1⪠temporada dublado h264 avi dual audio dvdrip.rar.exe)

 
Latest 30 of 149 download URLs

The following 2 files have been seen to comunicate with www.baixarmidia.com in live environments.

TCP » 185.53.178.11:443
translategenius.crx

TCP » 198.27.67.61:80
webproxy.exe (Panda residents by Panda Security)

URL:
http://www.baixarmidia.com/

Title:
“Loading”

Web server:
nginx/1.8.0

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.