dfd.windowmediaconverter.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain dfd.windowmediaconverter.com is registered by proxy through GODADDY.COM, LLC and was originally registered in January of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Remove Malware from dfd.windowmediaconverter.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Massachusetts, United States (US)

Create date:
Sunday, January 06, 2013

Expires date:
Friday, January 06, 2017

Updated date:
Monday, January 18, 2016

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Bundlore.F, PUP.Installer.LionSeaSoftwarecoltd.F, PUP.Bundlore.Bundler (M)
100.00%

Dr.Web
Adware.Downware.925, Adware.Downware.830
80.00%

VIPRE Antivirus
Bundlore
80.00%

Malwarebytes
PUP.Optional.Bundlore, PUP.Optional.Bundlore.A
80.00%

Fortinet FortiGate
Adware/WebCake, W32/Adload.NMV!tr.dldr
80.00%

Trend Micro House Call
TROJ_GEN.F47V0507, TROJ_GEN.F47V0406
80.00%

ESET NOD32
Win32/Toolbar.Conduit, Win32/TrojanDownloader.Adload.NMV
60.00%

Norman
Agent.ASCUC, Bundlore.CERT
40.00%

avast!
Win32:Bundlore-A [PUP]
20.00%

Bkav FE
W32.Clod357.Trojan
20.00%

McAfee
Artemis!D0AA0A857FBF
20.00%

McAfee Web Gateway
Artemis!D0AA0A857FBF
20.00%

ESET NOD32
Win32/Toolbar.Conduit potentially unwanted application
20.00%

AVG
Adware AdInstaller.Bundlor
20.00%

Sophos
Bundlore
20.00%

The domain dfd.windowmediaconverter.com has been seen to resolve to the following 10 IP addresses.

a23-62-6-184.deploy.static.akamaitechnologies.com
February 10, 2016

a23-62-6-168.deploy.static.akamaitechnologies.com
February 10, 2016

a23-3-13-241.deploy.static.akamaitechnologies.com
August 11, 2015

a23-3-13-242.deploy.static.akamaitechnologies.com
September 4, 2014

a23-3-13-227.deploy.static.akamaitechnologies.com
September 4, 2014

a23-67-250-136.deploy.static.akamaitechnologies.com
April 11, 2014

a23-67-250-145.deploy.static.akamaitechnologies.com
April 11, 2014

a23-67-242-34.deploy.static.akamaitechnologies.com
March 15, 2014

a23-67-242-67.deploy.static.akamaitechnologies.com
February 7, 2014

a23-67-242-40.deploy.static.akamaitechnologies.com
February 7, 2014

File downloads found at URLs served by dfd.windowmediaconverter.com.

7 / 68      (Adware)

10 / 68    (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

1 / 68      (PUP)

12 / 68    (Adware)

The following 27 files have been seen to comunicate with dfd.windowmediaconverter.com in live environments.

 
Latest 20 of 27 files

URL:
http://dfd.windowmediaconverter.com/

Web server:
Apache/2.2.3 (CentOS) (PHP/5.3.26)

Remove Malware from dfd.windowmediaconverter.com - Powered by Reason Core Security