files4.freega.me

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain files4.freega.me is registered by proxy through GoDaddy.com, LLC R41-ME (146) and was originally registered in September of 2011. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Remove Malware from files4.freega.me - Powered by Reason Core Security
Registrar:
GoDaddy.com, LLC R41-ME (146)

Server location:
Massachusetts, United States (US)

Create date:
Friday, September 30, 2011

Expires date:
Wednesday, September 30, 2015

Updated date:
Wednesday, October 01, 2014

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.DownloadAdmin.M, PUP.Installer.DownloadAdmin.X, PUP.Installer.DownloadAdmin.CC, PUP.Installer.DownloadAdmin.e, PUP.Installer.DownloadAdmin.V, PUP.Tightrope.Bundler, PUP.Installer.DownloadAdmin.U, PUP.Installer.DownloadAdmin.R, PUP.Bundler.Tightrope
100.00%

herdProtect (fuzzy)
a variant of f8ec604fb7009fe15c78f71c4f6ec1f5b9d9d134, a variant of a9a182a69f5a593ca2b4208bde80862379dbb76b, a variant of fa6e02852e42170564ed963284be5e74cf076679
75.00%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
66.67%

VIPRE Antivirus
Threat.4783369, DownloadAdmin
62.50%

Dr.Web
Adware.DAdmin.151, Adware.Downware.2220, Threat.Undefined, Adware.Downware.411
58.33%

Sophos
Download Admin
58.33%

NANO AntiVirus
Trojan.Win32.Downware.crgjbr, Riskware.Win32.Downware.crgjbr, Trojan.Win32.Downware.bqhlba
58.33%

Malwarebytes
PUP.Optional.DownloadAdmin
50.00%

ESET NOD32
Win32/DownloadAdmin
50.00%

Rising Antivirus
PE:Malware.XPACK/RDM!5.1
37.50%

ESET NOD32
Win32/DownloadAdmin.G potentially unwanted application
25.00%

SUPERAntiSpyware
Trojan.Agent/Gen-Artemis
20.83%

Trend Micro House Call
Suspicious_GEN.F47V0706, TROJ_GEN.F47V0512
16.67%

AVG
Generic, MultiBundle
16.67%

Avira AntiVirus
ADWARE/Adware.Gen
12.50%

The domain files4.freega.me has been seen to resolve to the following 22 IP addresses.

May 5, 2015

a184-26-44-103.deploy.static.akamaitechnologies.com
May 4, 2015

a184-26-44-98.deploy.static.akamaitechnologies.com
May 4, 2015

a23-67-243-59.deploy.static.akamaitechnologies.com
May 3, 2015

a23-67-243-24.deploy.static.akamaitechnologies.com
May 3, 2015

a23-67-250-112.deploy.static.akamaitechnologies.com
May 3, 2015

a23-67-250-104.deploy.static.akamaitechnologies.com
May 3, 2015

a23-0-160-74.deploy.static.akamaitechnologies.com
December 1, 2014

a184-51-126-18.deploy.static.akamaitechnologies.com
September 5, 2014

a184-51-126-64.deploy.static.akamaitechnologies.com
September 5, 2014

a184-51-126-50.deploy.static.akamaitechnologies.com
September 5, 2014

a23-0-160-65.deploy.static.akamaitechnologies.com
September 5, 2014

a23-0-160-11.deploy.static.akamaitechnologies.com
September 5, 2014

a23-0-160-72.deploy.static.akamaitechnologies.com
September 5, 2014

a184-51-126-32.deploy.static.akamaitechnologies.com
September 5, 2014

a184-51-126-56.deploy.static.akamaitechnologies.com
September 5, 2014

May 31, 2014

May 31, 2014

April 11, 2014

April 11, 2014

April 11, 2014

April 11, 2014

File downloads found at URLs served by files4.freega.me.

 
Latest 30 of 78 download URLs

The following 388 files have been seen to comunicate with files4.freega.me in live environments.

 
Latest 20 of 391 files

Remove Malware from files4.freega.me - Powered by Reason Core Security