files4.safelink9.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain files4.safelink9.com is registered by proxy through GODADDY.COM, LLC and was originally registered in December of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Chicago, Illinois within the United States which resides on the MCI Communications Services, Inc. d/b/a Verizon Business network.
Remove Malware from files4.safelink9.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Illinois, United States (US)

Create date:
Thursday, December 26, 2013

Expires date:
Saturday, December 26, 2015

Updated date:
Saturday, December 27, 2014

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:

Scanner detections:
Detections  (94% detected)

Scan engine
Details
Detections

Dr.Web
Win32.Sector.21, Adware.Downware.2220, Threat.Undefined, Adware.DAdmin.151, Trojan.Vittalia.2
93.33%

VIPRE Antivirus
DownloadAdmin, Threat.4783369, Trojan.Win32.Generic, Threat.4150696
93.33%

Reason Heuristics
PUP.Installer.FullSpectrumInteractive.Y, PUP.Installer.FullSpectrumInteractive.BB, PUP.Installer.Groovecom.Y, PUP.Tightrope.Bundler
93.33%

NANO AntiVirus
Trojan.Win32.Downware.crgjbr, Riskware.Win32.Downware.crgjbr, Riskware.Win32.Downware.djahkt, Trojan.Win32.DAdmin.djhtdm
76.67%

Sophos
Download Admin, Generic PUA OK, PUA 'Download Admin'
73.33%

ESET NOD32
Win32/DownloadAdmin, Win32/DownloadAdmin (variant), Win32/DownloadAdmin.G potentially unwanted
73.33%

AVG
MalSign.InstallC, Generic
56.67%

McAfee Web Gateway
Artemis!4A5A3EF72E65, Artemis!60BC40941F0A, Artemis!AE4749A366F2, Artemis!67DA572C248F, BehavesLike.Win32.Downloader.bc
53.33%

Avira AntiVirus
W32/Sality.AT, APPL/Downloader.Gen, ADWARE/Adware.Gen, TR/Trash.Gen, PUA/DownloadAdmin.Gen
50.00%

Trend Micro House Call
TROJ_GEN.F47V0211, TROJ_GEN.F47V0326, TROJ_GEN.F47V0525, Suspici.B577CD42, TROJ_GEN.F47V0507, TROJ_GEN.R047C0OK814
43.33%

F-Secure
Application.Bundler.I, Adware:W32/WebInstallBundle
43.33%

Malwarebytes
PUP.Optional.BundleInstaller.A, PUP.Optional.DownloadAdmin
36.67%

K7 AntiVirus
Unwanted-Program , Trojan
33.33%

K7 Gateway Antivirus
Unwanted-Program , Trojan
33.33%

avast!
Adware-OH [Adw], Win32:Rootkit-gen [Rtk], NSIS:Adware-OH [Adw], Win32:GenMalicious-AGK [Trj], Win32:GenMalicious-AGF [Trj]
33.33%

The domain files4.safelink9.com has been seen to resolve to the following 48 IP addresses.

May 5, 2015

a96-6-113-162.deploy.akamaitechnologies.com
May 3, 2015

a96-6-113-153.deploy.akamaitechnologies.com
May 3, 2015

a173-223-205-50.deploy.static.akamaitechnologies.com
May 3, 2015

a173-223-205-11.deploy.static.akamaitechnologies.com
May 3, 2015

a184-26-44-98.deploy.static.akamaitechnologies.com
May 3, 2015

a184-26-44-103.deploy.static.akamaitechnologies.com
May 3, 2015

a184-26-136-83.deploy.static.akamaitechnologies.com
January 7, 2015

a184-26-136-64.deploy.static.akamaitechnologies.com
January 7, 2015

a23-15-9-138.deploy.static.akamaitechnologies.com
December 9, 2014

a23-15-9-147.deploy.static.akamaitechnologies.com
December 9, 2014

a23-62-7-33.deploy.static.akamaitechnologies.com
December 1, 2014

a23-62-7-9.deploy.static.akamaitechnologies.com
December 1, 2014

a23-32-248-43.deploy.static.akamaitechnologies.com
November 2, 2014

a23-32-248-17.deploy.static.akamaitechnologies.com
November 2, 2014

a184-50-229-137.deploy.static.akamaitechnologies.com
September 7, 2014

a184-50-229-177.deploy.static.akamaitechnologies.com
September 7, 2014

a23-0-160-74.deploy.static.akamaitechnologies.com
September 4, 2014

a23-0-160-11.deploy.static.akamaitechnologies.com
September 4, 2014

a184-51-126-32.deploy.static.akamaitechnologies.com
September 4, 2014

a23-62-6-51.deploy.static.akamaitechnologies.com
September 3, 2014

a23-62-6-40.deploy.static.akamaitechnologies.com
September 3, 2014

a184-51-126-50.deploy.static.akamaitechnologies.com
September 3, 2014

a184-51-126-56.deploy.static.akamaitechnologies.com
September 3, 2014

a23-62-6-66.deploy.static.akamaitechnologies.com
September 2, 2014

a23-62-6-59.deploy.static.akamaitechnologies.com
September 2, 2014

a23-0-160-72.deploy.static.akamaitechnologies.com
September 2, 2014

a23-0-160-65.deploy.static.akamaitechnologies.com
September 2, 2014

August 19, 2014

August 19, 2014

 
Showing 30 of 48 IP Addresses

File downloads found at URLs served by files4.safelink9.com.

 
Latest 30 of 267 download URLs

The following 494 files have been seen to comunicate with files4.safelink9.com in live environments.

 
Latest 20 of 507 files

Remove Malware from files4.safelink9.com - Powered by Reason Core Security