files4.mirror6.net

mark marrocco

Domain Information

The domain files4.mirror6.net registered by mark marrocco was initially registered in July of 2013 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the nLayer Communications Internal/Backbone network.
Registrar:
GODADDY.COM, LLC

Server location:
New York, United States (US)

Create date:
Wednesday, July 31, 2013

Expires date:
Monday, July 31, 2017

Updated date:
Saturday, August 01, 2015

ASN:
AS4436 AS-GTT-4436 - nLayer Communications, Inc.,US

Root domain:

Google Safe Browsing:
malware

Scanner detections:
Detections  (95% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.CodeTechno.U, PUP.Installer.DownloadAdmin.U, PUP.Installer.DownloadAdmin.V, PUP.Installer.Groovecom.Y, PUP.Installer.CodeTechno.W, PUP.Groovecom.Y, PUP.Installer.DownloadAdmin.N, PUP.DownloadAdmin.T, PUP.Installer.CodeTechno.N, PUP.Installer.FullSpectrumInteractive.Z, PUP.Tightrope.Blueis.Bundler (M), PUP.DownloadAdmin.FullSpectrumInteractive.Installer (M), PUP.DownloadAdmin.Groovecom.Installer (M), PUP.Tightrope.Statscom.Bundler (M), PUP.Tightrope.DownloadAdmin.Bundler (M), PUP.Tightrope.Download.Bundler (M), PUP.DownloadAdmin.FullSpec.Installer (M), PUP.DownloadAdmin.Bundler (M)
100.00%

VIPRE Antivirus
DownloadAdmin, Threat.4150696, Threat.4783369, Trojan.Win32.Generic
68.57%

Dr.Web
Adware.Downware.2220, Adware.DAdmin.151, Trojan.Vittalia.27
68.57%

F-Secure
Adware:W32/WebInstallBundle
62.86%

Avira AntiVirus
ADWARE/Adware.Gen, APPL/Downloader.Gen, TR/Trash.Gen
60.00%

AVG
Generic, InstallC
60.00%

McAfee Web Gateway
Artemis!2B0AECF77D83, Artemis!DBCD0D1816F7, Artemis!5B3627DB611D, BehavesLike.Win32.Downloader.dc, Artemis!2A7B349E86B2
48.57%

Agnitum Outpost
Riskware.Agent
45.71%

K7 Gateway Antivirus
Trojan , Adware , Unwanted-Program
40.00%

Trend Micro House Call
Suspicious_GEN.F47V0620, Suspicious_GEN.F47V0720, Suspicious_GEN.F47V0705, Suspicious_GEN.F47V0802, Suspicious_GEN.F47V0801
37.14%

Sophos
Generic PUA OI, Download Admin, Generic PUA KN, PUA 'Download Admin'
37.14%

ESET NOD32
Win32/DownloadAdmin.G potentially unwanted application, Win32/DownloadAdmin.I potentially unwanted application
37.14%

Malwarebytes
PUP.Optional.DownloadAdmin, PUP.Optional.BundleInstaller.A, PUP.Optional.FullSpectrumAdmin, PUP.Optional.DownloadAdmin.A
34.29%

ESET NOD32
Win32/DownloadAdmin, Win32/DownloadAdmin (variant)
31.43%

McAfee
Artemis!2B0AECF77D83, Artemis!DBCD0D1816F7, Artemis!44207F5CA138, Artemis!5B3627DB611D, Artemis!2A7B349E86B2, Artemis!9588BF3C29EA, Artemis!5726256FCFA7, Artemis!CF10D7B83E12
25.71%

The domain files4.mirror6.net has been seen to resolve to the following 47 IP addresses.

a23-15-8-89.deploy.static.akamaitechnologies.com
August 30, 2016

a23-15-8-33.deploy.static.akamaitechnologies.com
August 30, 2016

a104-96-221-152.deploy.static.akamaitechnologies.com
July 23, 2016

a104-96-221-138.deploy.static.akamaitechnologies.com
July 23, 2016

a104-96-221-122.deploy.static.akamaitechnologies.com
July 23, 2016

a104-96-221-112.deploy.static.akamaitechnologies.com
July 23, 2016

a104-96-221-81.deploy.static.akamaitechnologies.com
July 23, 2016

a104-96-221-58.deploy.static.akamaitechnologies.com
July 23, 2016

a104-96-220-226.deploy.static.akamaitechnologies.com
June 24, 2016

a104-96-220-227.deploy.static.akamaitechnologies.com
June 24, 2016

a104-96-220-216.deploy.static.akamaitechnologies.com
May 24, 2016

a104-96-220-233.deploy.static.akamaitechnologies.com
May 24, 2016

April 14, 2016

April 14, 2016

a23-0-160-88.deploy.static.akamaitechnologies.com
February 29, 2016

a23-0-160-98.deploy.static.akamaitechnologies.com
February 29, 2016

a23-15-7-120.deploy.static.akamaitechnologies.com
August 11, 2015

a23-15-7-105.deploy.static.akamaitechnologies.com
August 11, 2015

a184-26-44-98.deploy.static.akamaitechnologies.com
May 3, 2015

a184-26-44-103.deploy.static.akamaitechnologies.com
May 3, 2015

a23-67-243-59.deploy.static.akamaitechnologies.com
May 2, 2015

ip-69-31-29-47.nlayer.net
December 23, 2014

ip-69-31-29-197.nlayer.net
December 23, 2014

a184-51-126-50.deploy.static.akamaitechnologies.com
September 9, 2014

a184-51-126-64.deploy.static.akamaitechnologies.com
September 9, 2014

a23-62-7-9.deploy.static.akamaitechnologies.com
September 7, 2014

a23-62-7-33.deploy.static.akamaitechnologies.com
September 7, 2014

a23-62-6-59.deploy.static.akamaitechnologies.com
September 5, 2014

a23-62-6-66.deploy.static.akamaitechnologies.com
September 5, 2014

a23-0-160-41.deploy.static.akamaitechnologies.com
September 5, 2014

 
Showing 30 of 47 IP Addresses

File downloads found at URLs served by files4.mirror6.net.

 
Latest 30 of 103 download URLs

The following 736 files have been seen to comunicate with files4.mirror6.net in live environments.

 
Latest 20 of 772 files