dl01.fabdmr.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain dl01.fabdmr.com is registered by proxy through GODADDY.COM, LLC and was originally registered in April of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Remove Malware from dl01.fabdmr.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Massachusetts, United States (US)

Create date:
Thursday, April 25, 2013

Expires date:
Monday, April 25, 2016

Updated date:
Friday, June 26, 2015

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.FIRSERIASL.J, PUP.FIRSERIASL.I, PUP.FIRSERIASL.P, PUP.Installer.AppsInstallerSL.R, PUP.Installer.AppsInstallerSL.Q, PUP.Installer.FIRSERIASL.Q, PUP.Installer.AppsInstallerSL.U, PUP.FIRSERIASL.Q, PUP.Solimba.FIRSERIA.Bundler (M), PUP.Solimba.VetaformDevelopments (M), PUP.Solimba.RAPIDDOWN.Bundler (M), PUP.Solimba.AppsInstaller.Installer (M), PUP.Solimba.Firseria.Bundler (M)
97.22%

VIPRE Antivirus
DownloadMR, Trojan.Win32.Generic, Threat.4782980, Solimba
72.22%

Malwarebytes
PUP.Optional.Solimba.mr, PUP.Optional.Firseria
66.67%

Avira AntiVirus
TR/Dropper.Gen, APPL/Firseria.Gen, APPL/Solimba.Gen, TR/Crypt.ULPM.Gen, Adware/Firseria.B
66.67%

avast!
MSIL:Crypt-KA [PUP], Win32:Solimba-C [PUP], Win32:PUP-gen [PUP], Win32:Firseria-A [PUP], Win32:Solimba-O [PUP]
61.11%

ESET NOD32
MSIL/Solimba.AB, Win32/FirseriaInstaller (variant)
55.56%

Sophos
Solimba Installer, DownloadMR, Generic PUA GG, Mal/Generic-S
50.00%

Dr.Web
Adware.Downware.1433, Adware.Downware.1125, Trojan.DownLoader10.9253, Trojan.DownLoader10.30851, Trojan.DownLoader10.62400
50.00%

Comodo Security
TrojWare.Win32.Trojan.Obfuscated.~EN, Application.Win32.Solimba.GW, Application.Win32.Solimba.J, Application.Win32.Firseria.AFGH
47.22%

Rising Antivirus
PE:PUA.FirseriaInstaller@CV!1.9C54, PE:PUF.FirseriaInstaller@CV!1.5C42, PE:PUF.FirseriaInstaller@CV!1.9C54
44.44%

AVG
AdInstaller.Firseria, AdInstaller.V, Skodna.Generic, Adware Skodna.Generic.AMG, BundleApp.H, Adware AdInstaller.Firseria
44.44%

K7 AntiVirus
Riskware , Unwanted-Program , Backdoor
41.67%

K7 Gateway Antivirus
Unwanted-Program , Trojan
41.67%

Fortinet FortiGate
W32/AdkDLLWrapper.A, Adware/Solimba, Adware/Firseria, Adware/Sality.MO, MSIL/LdMon.A!tr
38.89%

Agnitum Outpost
PUA.Solimba, PUA.Agent, PUA.Downloader, Adware.Agent
38.89%

The domain dl01.fabdmr.com has been seen to resolve to the following 23 IP addresses.

October 20, 2015

July 7, 2015

a23-0-160-42.deploy.static.akamaitechnologies.com
December 1, 2014

a23-62-7-51.deploy.static.akamaitechnologies.com
October 9, 2014

a23-62-7-25.deploy.static.akamaitechnologies.com
October 9, 2014

September 15, 2014

September 15, 2014

a23-62-6-42.deploy.static.akamaitechnologies.com
September 5, 2014

a23-62-6-67.deploy.static.akamaitechnologies.com
September 5, 2014

a184-51-126-17.deploy.static.akamaitechnologies.com
August 26, 2014

a184-51-126-51.deploy.static.akamaitechnologies.com
August 26, 2014

a23-0-160-49.deploy.static.akamaitechnologies.com
August 16, 2014

a23-0-160-41.deploy.static.akamaitechnologies.com
August 16, 2014

a23-62-238-90.deploy.static.akamaitechnologies.com
December 26, 2013

a23-62-238-51.deploy.static.akamaitechnologies.com
December 26, 2013

November 16, 2013

November 16, 2013

November 16, 2013

November 16, 2013

a23-67-243-98.deploy.static.akamaitechnologies.com
November 16, 2013

a23-67-243-25.deploy.static.akamaitechnologies.com
November 16, 2013

November 16, 2013

a23-67-242-34.deploy.static.akamaitechnologies.com
November 16, 2013

File downloads found at URLs served by dl01.fabdmr.com.

1 / 68      (Adware)
http://dl01.fabdmr.com/n/.../FLV_Media_Player.exe  (ba460e53241ee2de936021946602b463)

24 / 68    (Adware)
http://dl01.fabdmr.com/n/.../Avast.exe  (01d51889dd5766f58412d03ff7d409f0)

1 / 68      (Adware)

31 / 68    (Adware)

33 / 68    (Adware)
http://dl01.fabdmr.com/n/.../FLV_Media_Player.exe  (73782efa45a8d374193bd917ce2bee28)

1 / 68      (Adware)
http://dl01.fabdmr.com/n/3.0.21/.../FLV_Media_Player.exe  (b1a4797abf3046149c38edf8eafcdee7)

1 / 68      (Adware)
http://dl01.fabdmr.com/n/.../Earn to Die 2012.exe  (213f6a298c41fe072ca8a448669fbb67)

1 / 68      (Adware)

31 / 68    (Adware)
http://dl01.fabdmr.com/n/.../AVS_Media_Player.exe  (2845048f20f6bad2c3bcab0f62ceaaca)

1 / 68      (Adware)

6 / 68      (Adware)
http://dl01.fabdmr.com/n/.../Skype.exe  (8e08a56653620efac8f8a4c8d95318cb)

1 / 68      (Adware)
http://dl01.fabdmr.com/n/.../Google Chrome.exe  (10bab93d297bc9442dd2533375ce9c97)

1 / 68      (Adware)
http://dl01.fabdmr.com/n/.../Mediaget.exe  (2d1aae9474861da2a35170af9fba6b2d)

19 / 68    (Adware)
http://dl01.fabdmr.com/n/3.0.6/.../FlvMPlayer.exe  (48b483cab2f88f1d441f5c7158c5a780)

37 / 68    (Adware)

25 / 68    (Adware)

36 / 68    (Adware)
http://dl01.fabdmr.com/n/.../FLV_Media_Player.exe  (9e612dfdb8d867624efe1c30a715fb00)

37 / 68    (Adware)
http://dl01.fabdmr.com/n/.../AVS_Media_Player.exe  (90463d49b57250387c082c41449ff005)

19 / 68    (Adware)
http://dl01.fabdmr.com/n/.../Windows_Media_Player.exe  (90aacd908b85a2acc724beb975cb952a)

26 / 68    (Adware)

30 / 68    (Adware)

6 / 68      (false positives)
http://dl01.fabdmr.com/n/3.0.23.4/.../Utorrent.exe  (40292fe425361ee3145f3e72a2344ca5)

6 / 68      (false positives)
http://dl01.fabdmr.com/n/.../Utorrent.exe  (40292fe425361ee3145f3e72a2344ca5)

17 / 68    (Adware)

17 / 68    (Adware)
http://dl01.fabdmr.com/n/.../USB Disk Security.exe  (e2e8ac038c52b05a7644441cad1ef505)

19 / 68    (Adware)
http://dl01.fabdmr.com/n/3.0.23.4/.../Mediaget.exe  (ab6fb33077d88c1239654845b16bdb10)

19 / 68    (Adware)
http://dl01.fabdmr.com/n/.../Dreamweaver CS6.exe  (f8374232a594ee112ca4ae355a3a3d48)

8 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

 
Latest 30 of 41 download URLs

The following 123 files have been seen to comunicate with dl01.fabdmr.com in live environments.

 
Latest 20 of 126 files

URL:
http://dl01.fabdmr.com/

Title:
“fabdmr.com - fabdmr Resources and Information.”

Description:
“fabdmr.com is your first and best source for information about fabdmr . Here you will also find topics relating to issues of general interest. We hope you find what you are looking for!”

Web server:
Apache (PHP/5.3.3-7+squeeze28)

Remove Malware from dl01.fabdmr.com - Powered by Reason Core Security