mg.bubblesmedia.ru

Private Person  (Proxy Registrant)

Domain Information

The domain mg.bubblesmedia.ru is registered by proxy through REGRU-RU and was originally registered in March of 2010. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Moscow, Moscow City within Russia which resides on the RIPE Network Coordination Centre network.
Remove Malware from mg.bubblesmedia.ru - Powered by Reason Core Security
Registrar:
REGRU-RU

Server location:
Moscow City, Russia (RU)

Create date:
Wednesday, March 17, 2010

Expires date:
Thursday, March 17, 2016

ASN:
AS25532 MASTERHOST-AS .masterhost autonomous system

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Optional.MediaGetApp.Installer.X, PUP.Optional.MediaGet.Installer.Meta, Optional.MediaGetApp.Installer.W, PUP.Installer.Banner.n
100.00%

Malwarebytes
PUP.Adware.MediaGet, PUP.Optional.MediaGet
92.00%

Kaspersky
not-a-virus:Downloader.Win32.MediaGet, not-a-virus:HEUR:Downloader.Win32.MediaGet
88.00%

Dr.Web
Program.MediaGet.21, Program.MediaGet.88, Adware.Downware.9040, Program.MediaGet.105, Program.MediaGet.111, Program.MediaGet.115, Program.MediaGet.139
88.00%

G Data
Win32.Adware.MediaGet
88.00%

AVG
Banne
88.00%

Sophos
MediaGet, MediaGet (PUA)
76.00%

ESET NOD32
Win32/MediaGet (variant), Win32/MediaGet.AE (variant), Win32/MediaGet.AF (variant), Win32/MediaGet.AF potentially unwanted (variant)
76.00%

Avira AntiVirus
APPL/MediaGet.Gen5, PUA/MediaGet.Gen5
68.00%

McAfee
Artemis!E17503981B14, Artemis!3656B495F397, Artemis!6ECB8FDDB6A6, Artemis!7E80A4AEFB30, Artemis!297C0CE6C4D7, Artemis!6E45D83525BD, Artemis!1996C299ABE0, Artemis!A73F762584C4, Artemis!AD18474E3175, Artemis!C881CCD9D2EE, Artemis!13419F6DDE31
56.00%

McAfee Web Gateway
Heuristic.BehavesLike.Win32.Suspicious-BAY.G, BehavesLike.Win32.BadFile.bc, BehavesLike.Win32.BadFile.gc, BehavesLike.Win32.BadFile.hc
56.00%

Baidu Antivirus
Adware.Win32.MediaGet
56.00%

K7 Gateway Antivirus
Riskware , Trojan , Unwanted-Program
52.00%

K7 AntiVirus
Riskware , Trojan , Unwanted-Program
52.00%

Antiy Labs AVL
RiskWare[Downloader:not-a-virus]/Win32.MediaGet, RiskWare[Downloader:not-a-virus,HEUR]/Win32.MediaGet, RiskWare[Downloader]/Win32.MediaGet.ema
40.00%

The domain mg.bubblesmedia.ru has been seen to resolve to the following 2 IP addresses.

April 25, 2014

February 3, 2014

File downloads found at URLs served by mg.bubblesmedia.ru.

12 / 68    (PUP)

12 / 68    (PUP)

 
Latest 30 of 124 download URLs

URL:
http://mg.bubblesmedia.ru/

Web server:
nginx/1.8.0 (PHP/5.4.16)

Remove Malware from mg.bubblesmedia.ru - Powered by Reason Core Security