dl.s0ftohqimjjedf0jq.net

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain dl.s0ftohqimjjedf0jq.net is registered by proxy through GODADDY.COM, LLC and was originally registered in September of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Remove Malware from dl.s0ftohqimjjedf0jq.net - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Massachusetts, United States (US)

Create date:
Thursday, September 19, 2013

Expires date:
Saturday, September 19, 2015

Updated date:
Wednesday, May 20, 2015

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.AppsInstallerSL.K, PUP.Installer.FIRSERIASL.X, PUP.Solimba.FIRSERIA.Bundler (M)
100.00%

Malwarebytes
PUP.Optional.Firseria
100.00%

K7 Gateway Antivirus
Trojan , Unwanted-Program
100.00%

K7 AntiVirus
Trojan , Unwanted-Program , Backdoor
100.00%

Agnitum Outpost
PUA.Firseria, PUA.Downloader
100.00%

Sophos
Solimba Installer
100.00%

VIPRE Antivirus
DownloadMR, Threat.4782980
66.67%

Avira AntiVirus
APPL/Firseria.A.28, APPL/Firseria.A.3
66.67%

G Data
Win32.Application.Morstar, Gen:Application.Bundler.Firseria
66.67%

Vba32 AntiVirus
Downware.Morstar
66.67%

AVG
BundleApp, Adware AdInstaller.Firseria
66.67%

avast!
Win32:Firseria-A [PUP]
66.67%

Kaspersky
not-a-virus:Downloader.Win32.Firser
66.67%

CMC Antivirus
Trojan.Win32.VBKrypt!O
66.67%

F-Prot
W32/Morstar.C.gen, W32/Backdoor2.HTEZ
66.67%

The domain dl.s0ftohqimjjedf0jq.net has been seen to resolve to the following 11 IP addresses.

a23-67-243-27.deploy.static.akamaitechnologies.com
June 22, 2014

a23-67-243-75.deploy.static.akamaitechnologies.com
June 22, 2014

a23-67-243-83.deploy.static.akamaitechnologies.com
June 22, 2014

a23-67-243-98.deploy.static.akamaitechnologies.com
June 22, 2014

a23-67-243-59.deploy.static.akamaitechnologies.com
June 22, 2014

June 22, 2014

June 22, 2014

a23-67-243-91.deploy.static.akamaitechnologies.com
June 22, 2014

May 10, 2014

a23-67-243-50.deploy.static.akamaitechnologies.com
May 10, 2014

a23-67-243-18.deploy.static.akamaitechnologies.com
May 10, 2014

File downloads found at URLs served by dl.s0ftohqimjjedf0jq.net.

13 / 68    (Adware)

28 / 68    (Adware)

12 / 68    (Adware)
http://dl.s0ftohqimjjedf0jq.net/n/.../VMP 0.2.1.383.exe  (9288f93ee5cf23c584df602e4e70c67a)

The following 189 files have been seen to comunicate with dl.s0ftohqimjjedf0jq.net in live environments.

 
Latest 20 of 190 files

Remove Malware from dl.s0ftohqimjjedf0jq.net - Powered by Reason Core Security