toolbar.mystart.com

Visicom Media inc.

Domain Information

The domain toolbar.mystart.com registered by Visicom Media inc. was initially registered in May of 1998 through DNC HOLDINGS, INC.. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Atlanta, Georgia within the United States.
Registrar:
DNC HOLDINGS, INC.

Server location:
Georgia, United States (US)

Create date:
Wednesday, May 27, 1998

Expires date:
Thursday, May 26, 2016

Updated date:
Saturday, April 11, 2015

ASN:
AS22384 NATIONALNET-1 - NationalNet, Inc.,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.MyStartToolbarInstaller.VisicomMedia.Y, PUP.Installer.VisicomMedia.Y, PUP.MyStartToolbarInstaller.VisicomMedia.O, PUP.Visicom.VisicomMedia.Installer (M)
100.00%

Malwarebytes
PUP.Optional.MyStartTB.A
33.33%

Dr.Web
Tool.InstallToolbar.129, Adware.Toolbar.272, Tool.InstallToolbar.179
33.33%

Trend Micro House Call
TROJ_GE.9192F1DD, Suspicious_GEN.F47V0506
22.22%

McAfee
Artemis!C3D6A7A78CFE
11.11%

ESET NOD32
Win32/Toolbar.Visicom (variant)
11.11%

K7 Gateway Antivirus
Virus
11.11%

VIPRE Antivirus
Threat.4150696
11.11%

ESET NOD32
Win32/Toolbar.Visicom.A potentially unwanted application
11.11%

Agnitum Outpost
PUA.Toolbar.Visicom
11.11%

Clam AntiVirus
Win.Trojan.Outbrowse
11.11%

IKARUS anti.virus
PUA.Toolbar.Visicom
11.11%

Bkav FE
W32.HfsAdware
11.11%

Qihoo 360 Security
Trojan.Generic
11.11%

avast!
Win32:Evo-gen [Susp]
11.11%

The domain toolbar.mystart.com has been seen to resolve to the following 3 IP addresses.

visicom-93.nationalnet.com
April 9, 2016

visicom-98.nationalnet.com
February 15, 2016

February 8, 2014

File downloads found at URLs served by toolbar.mystart.com.

1 / 68      (PUP)

5 / 68      (PUP)

1 / 68      (PUP)
http://toolbar.mystart.com/.../mystartTb_5.6.0.6.exe  (b92b073e4ac6157c179b358bfa7b4041)

1 / 68      (PUP)

1 / 68      (PUP)

2 / 68      (PUP)

8 / 68      (PUP)
http://toolbar.mystart.com/.../mystartTb_5.4.2.6.exe  (00bbf325194026064a1a0789fdef6be5)

3 / 68      (Adware)

6 / 68      (PUP)

The following file have been seen to comunicate with toolbar.mystart.com in live environments.

URL:
http://toolbar.mystart.com/

Google Analytics:
UA-17836508

Title:
“MyStart Toolbar - Get the best of the Web delivered to you!”

Description:
“Instantly access tons of apps, games, video and social networks directly in your browser: Facebook, YouTube, Google, shopping, email and so much more!”

SSL certificate subject:
CN=*.mystart.com, OU=Domain Control Validated

SSL certificate issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc."

Web server:
Apache/2.2.22 (Debian) PHP/5.4.45-0+deb7u2 mod_ssl/2.2.22 OpenSSL/1.0.1e (PHP/5.4.45-0+deb7u2)

Facebook:
Likes:  10
Shares:  2

Statistics are for the previous month.