files4.freega.me

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain files4.freega.me is registered by proxy through GoDaddy.com, LLC R41-ME (146) and was originally registered in September of 2011. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Registrar:
GoDaddy.com, LLC R41-ME (146)

Server location:
Massachusetts, United States (US)

Create date:
Friday, September 30, 2011

Expires date:
Friday, September 30, 2016

Updated date:
Thursday, October 01, 2015

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.DownloadAdmin.M, PUP.Installer.DownloadAdmin.CC, PUP.Installer.DownloadAdmin.X, PUP.Tightrope.Bundler, PUP.Installer.DownloadAdmin.U, PUP.Installer.DownloadAdmin.R, PUP.Bundler.Tightrope, PUP.Tightrope.Blueis.Bundler (M), PUP.Tightrope.DownloadAdmin.Bundler (M), PUP.DownloadAdmin.Bundler.Installer.Meta (M), PUP.Tightrope.Download.Bundler (M), PUP.DownloadAdmin.SuperCli.Installer (M), Adware.CatLadyI.Installer.Meta.Bundler, PUP.DownloadAdmin.Bundler (M)
92.86%

VIPRE Antivirus
Threat.4783369, DownloadAdmin
32.14%

Dr.Web
Adware.DAdmin.151, Adware.Downware.2220, Threat.Undefined, Adware.Downware.411, Trojan.Vittalia.8699
28.57%

herdProtect (fuzzy)
a variant of f8ec604fb7009fe15c78f71c4f6ec1f5b9d9d134, a variant of 891abcb5e10441d20ac0a5f582fa3b9519327ff1, a variant of 515fd89eed11d6fde64e6fe643ad90a83ca6d9ff
25.00%

Sophos
Download Admin
25.00%

Malwarebytes
PUP.Optional.DownloadAdmin
21.43%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
21.43%

ESET NOD32
Win32/DownloadAdmin.G potentially unwanted application, Win32/DownloadAdmin.R potentially unwanted application, Win32/DownloadAdmin.Q potentially unwanted application
17.86%

ESET NOD32
Win32/DownloadAdmin, Win32/DownloadAdmin.Q potentially unwanted (variant)
17.86%

Avira AntiVirus
ADWARE/Adware.Gen, TR/Agent.105200
14.29%

F-Secure
Adware:W32/WebInstallBundle, Gen:Variant.Razy.12439
14.29%

NANO AntiVirus
Trojan.Win32.Downware.crgjbr, Trojan.Win32.Downware.bqhlba
14.29%

Rising Antivirus
PE:Malware.XPACK/RDM!5.1, PE:Malware.Generic(Thunder)!1.A1C4 [F]
14.29%

Trend Micro House Call
Suspicious_GEN.F47V0706, TROJ_GEN.F47V0512
10.71%

AVG
Generic, MultiBundle
10.71%

The domain files4.freega.me has been seen to resolve to the following 35 IP addresses.

a184-51-126-105.deploy.static.akamaitechnologies.com
June 7, 2016

a104-96-220-226.deploy.static.akamaitechnologies.com
May 26, 2016

a104-96-220-216.deploy.static.akamaitechnologies.com
May 18, 2016

a104-112-235-19.deploy.static.akamaitechnologies.com
May 18, 2016

a104-96-220-233.deploy.static.akamaitechnologies.com
May 18, 2016

a104-96-221-98.deploy.static.akamaitechnologies.com
May 18, 2016

a104-96-221-91.deploy.static.akamaitechnologies.com
May 18, 2016

a23-15-9-138.deploy.static.akamaitechnologies.com
April 21, 2016

a23-15-9-147.deploy.static.akamaitechnologies.com
April 21, 2016

April 14, 2016

April 14, 2016

a184-51-126-83.deploy.static.akamaitechnologies.com
April 4, 2016

a184-51-126-90.deploy.static.akamaitechnologies.com
April 4, 2016

May 5, 2015

a184-26-44-103.deploy.static.akamaitechnologies.com
May 4, 2015

a184-26-44-98.deploy.static.akamaitechnologies.com
May 4, 2015

a23-67-243-59.deploy.static.akamaitechnologies.com
May 3, 2015

a23-67-243-24.deploy.static.akamaitechnologies.com
May 3, 2015

a23-67-250-112.deploy.static.akamaitechnologies.com
May 3, 2015

a23-67-250-104.deploy.static.akamaitechnologies.com
May 3, 2015

a23-0-160-74.deploy.static.akamaitechnologies.com
December 1, 2014

a184-51-126-18.deploy.static.akamaitechnologies.com
September 5, 2014

a184-51-126-64.deploy.static.akamaitechnologies.com
September 5, 2014

a184-51-126-50.deploy.static.akamaitechnologies.com
September 5, 2014

a23-0-160-65.deploy.static.akamaitechnologies.com
September 5, 2014

a23-0-160-11.deploy.static.akamaitechnologies.com
September 5, 2014

a23-0-160-72.deploy.static.akamaitechnologies.com
September 5, 2014

a184-51-126-32.deploy.static.akamaitechnologies.com
September 5, 2014

a184-51-126-56.deploy.static.akamaitechnologies.com
September 5, 2014

May 31, 2014

 
Showing 30 of 35 IP Addresses

File downloads found at URLs served by files4.freega.me.

 
Latest 30 of 97 download URLs

The following 863 files have been seen to comunicate with files4.freega.me in live environments.

 
Latest 20 of 917 files