dl.faedmr.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain dl.faedmr.com is registered by proxy through GODADDY.COM, LLC and was originally registered in April of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Remove Malware from dl.faedmr.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Massachusetts, United States (US)

Create date:
Thursday, April 25, 2013

Expires date:
Monday, April 25, 2016

Updated date:
Monday, June 08, 2015

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:

Scanner detections:
Detections  (91% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.PortalProgramas.I, PUP.Installer.AppsInstallerSL.G, PUP.Installer.BechiroSL.V, PUP.Installer.AppsInstallerSL.T, PUP.Solimba.AppsInstaller (M), PUP.Solimba.PortalProgramas.Bundler (M)
90.91%

VIPRE Antivirus
Trojan.Win32.Generic, DownloadMR, Threat.4782980
27.27%

Fortinet FortiGate
W32/AdkDLLWrapper.A, Adware/Solimba
18.18%

K7 AntiVirus
Riskware , Unwanted-Program
18.18%

Sophos
DownloadMR
18.18%

Dr.Web
Adware.Downware.1125
18.18%

Comodo Security
Application.Win32.Solimba.GW
18.18%

Avira AntiVirus
APPL/Solimba.Gen
18.18%

Antiy Labs AVL
Virus/Win32.Slugin
9.09%

Filseclab Twister
W32.Bunndle.swah.arc.dll.mg
9.09%

Bkav FE
W32.Cloddfe.Trojan
9.09%

ESET NOD32
MSIL/Solimba
9.09%

IKARUS anti.virus
not-a-virus:Downloader.NSIS
9.09%

avast!
Solimba-C [PUP]
9.09%

ESET NOD32
MSIL/Solimba.U potentially unwanted application
9.09%

The domain dl.faedmr.com has been seen to resolve to the following 11 IP addresses.

December 17, 2015

October 20, 2014

a23-62-6-64.deploy.static.akamaitechnologies.com
September 5, 2014

a23-62-6-75.deploy.static.akamaitechnologies.com
September 5, 2014

a23-67-250-113.deploy.static.akamaitechnologies.com
May 5, 2014

a23-67-250-123.deploy.static.akamaitechnologies.com
May 5, 2014

a23-67-250-97.deploy.static.akamaitechnologies.com
May 5, 2014

a23-67-250-91.deploy.static.akamaitechnologies.com
May 5, 2014

a23-67-243-18.deploy.static.akamaitechnologies.com
March 15, 2014

January 1, 2014

a23-67-243-83.deploy.static.akamaitechnologies.com
January 1, 2014

File downloads found at URLs served by dl.faedmr.com.

1 / 68      (Adware)

1 / 68      (Adware)
http://dl.faedmr.com/n/3.0.14.1/.../jDownloader.exe  (c752cfd70d865956832a523f8f9e0aa3)

1 / 68      (Adware)

1 / 68      (Adware)
http://dl.faedmr.com/n/3.0.9/.../MySQL Workbench.exe  (f9317654506ae9f02a213779fb4536fe)

1 / 68      (Adware)
http://dl.faedmr.com/n/3.0.9.2/.../ultrasurf 1104.exe  (1a82303667ee393f66beb542a59ffb54)

1 / 68      (Adware)

17 / 68    (Adware)

4 / 68      (Adware)

5 / 68      (Adware)
http://dl.faedmr.com/n/3.0.9.1/.../iTunes.exe  (12704e5c385959179e6fe4bc04e9063a)

6 / 68      (false positives)
http://dl.faedmr.com/n/3.0.15.1/.../uTorrent.exe  (9fd5f385a0cb11454914e44cd8e6cdd6)

1 / 68      (Adware)
http://dl.faedmr.com/n/3.0.9.2/.../FactuSol.exe  (e35bb59b8078856f2489104d61123475)

The following 104 files have been seen to comunicate with dl.faedmr.com in live environments.

 
Latest 20 of 106 files

URL:
http://dl.faedmr.com/

Title:
“faedmr.com”

Web server:
Apache

Remove Malware from dl.faedmr.com - Powered by Reason Core Security