home

freempr9.jrcaaa.com

Only contact by email, all postal mail will be rejected  (Proxy Registrant)

Domain Information

The domain freempr9.jrcaaa.com is registered by proxy through SOLUCIONES CORPORATIVAS IP, SL and was originally registered in September of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Madrid, Madrid within Spain which resides on the RIPE Network Coordination Centre network.
Registrar:
SOLUCIONES CORPORATIVAS IP, SL

Server location:
Madrid, Spain (ES)

Create date:
Tuesday, September 23, 2014

Expires date:
Friday, September 23, 2016

Updated date:
Tuesday, August 25, 2015

Root domain:
jrcaaa.com

Whois:
4 jrcaaa.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.AstroDeliveryFriedCookie.e, PUP.FreeSoftware.e, PUP.CodeTechno.FF, PUP.Tightrope.Bundler, PUP.Installer.InstallCore.ironSource, PUP.Installer.FreeSoftware, PUP.DownloadAdmin.CodeTechno.Installer (M), PUP.Air Software.InstallerSetup (M), PUP.Tightrope.Sanflex.Bundler (M), PUP.InstallCore.FC.Installer (M), PUP.Outbrowse.ClickYes.Bundler (M), PUP.DownloadAdmin.CodeTech.Installer (M), PUP.Outbrowse.Outborwse.Installer (M), PUP.Air Software.Installe.Installer (M), PUP.Outbrowse (M), PUP.DownloadAdmin (M), PUP.InstallCore.FC (M), PUP.Air Software (M)
100.00%

VIPRE Antivirus
InstallCore, Vittalia Installer, Trojan.Win32.Generic, DownloadAdmin, Threat.4786018, Threat.4782551, Threat.4150696, Threat.4782985
34.09%

Malwarebytes
PUP.Optional.FriedCookie, PUP.Optional.BundleInstaller, PUP.Optional.DownloadAdmin, PUP.Optional.InstallCore, PUP.Optional.AirInstall
31.82%

AVG
Generic
31.82%

Dr.Web
Trojan.InstallCore.15, Adware.Downware.2220, Trojan.DownLoad3.35287, Adware.Iminent.4
27.27%

Avira AntiVirus
ADWARE/InstallCore.Gen7, ADWARE/InstallCore.Gen9, ADWARE/Adware.Gen, APPL/InstallCo.ewbs, PUA/InstallCore.Gen, TR/Dropper.Gen
27.27%

ESET NOD32
Win32/InstallCore.RO (variant), Win32/InstallCore.RZ (variant), Win32/InstallCore.SC (variant), Win32/DownloadAdmin (variant)
25.00%

Trend Micro House Call
Suspicious_GEN.F47V1120, Suspicious_GEN.F47V1201, Suspicious_GEN.F47V1205, Suspicious_GEN.F47V1202, Suspicious_GEN.F47V1203
20.45%

Sophos
Generic PUA NP, Generic PUA NG, Generic PUA NI, Generic PUA IB, PUA 'InstallCore ToDownload', Generic PUA KN, Download Admin
20.45%

K7 AntiVirus
Unwanted-Program , Trojan
20.45%

Baidu Antivirus
Adware.Win32.InstallCore
11.36%

Qihoo 360 Security
Win32/Virus.Adware.94c, Win32/Virus.Adware.f22, HEUR/QVM42.0.Malware.Gen
11.36%

McAfee
Artemis!277182093948, Artemis!E512F6F1B7E4, Artemis!062B257A9C36, Artemis!71FDA62E4885, Artemis!AF3E0231E84F
11.36%

Agnitum Outpost
Riskware.Agent, PUA.InstallCore, PUA.AirAd
11.36%

NANO AntiVirus
Riskware.Win32.Downware.djahkt, Riskware.Win32.InstallCore.dnqbyw, Riskware.Win32.Iminent.djreap
11.36%

The domain freempr9.jrcaaa.com has been seen to resolve to the following 5 IP addresses.

109.70.130.152
152.130.70.109.factoriadigital.com
January 6, 2016

185.47.13.82
November 19, 2015

109.70.129.198
July 23, 2015

93.189.36.167
rack24u4.hispaweb.net
May 2, 2015

93.189.35.253
November 29, 2014

File downloads found at URLs served by freempr9.jrcaaa.com.

1 / 68      (PUP)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=6943164751417712901  (installer_adobe_flash_player_english.exe)

1 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=31948134921417530278  (installer_adobe_flash_player_english.exe)

1 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=ub571440b54503f0d3aa3347708  (installer_adobe_flash_player_english.exe)

1 / 68      (PUP)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=u29e955f95133d578cf9314c26  (installer_adobe_flash_player_english.exe)

1 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=20989098371421138038  (installer_adobe_flash_player_english.exe)

1 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=uc5f1988b54aeadc21d6cc683a8  (installer_adobe_flash_player_english.exe)

1 / 68      (PUP)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=uc879298f529185e4521de07823  (installer_adobe_flash_player_english.exe)

1 / 68      (PUP)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=u7c79eb265364307831e95b735  (installer_adobe_flash_player_english.exe)

23 / 68    (PUP)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=13375404461418732107  (Setup.exe)

6 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=u1fdfda4c5480f263925676113e  (installer_adobe_flash_player_english.exe)

11 / 68    (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=15837393691417266569  (installer_adobe_flash_player_english.exe)

6 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=33158052421417192440  (installer_adobe_flash_player_english.exe)

19 / 68    (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=13074648311417200304  (installer_adobe_flash_player_english.exe)

12 / 68    (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=ubfb26a0e544978bb4d707d9db7  (installer_adobe_flash_player_english_2.exe)

7 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=28692958941417798574  (installer_adobe_flash_player_english.exe)

12 / 68    (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=30171841211417006999  (installer_adobe_flash_player_english_2.exe)

15 / 68    (PUP)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=35740685151418321584  (unconfirmed 319906.torchdownload)

13 / 68    (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=18562860941417519711  (installer_adobe_flash_player_english.exe)

11 / 68    (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=18565975021417084629  (installer_adobe_flash_player_english.exe)

14 / 68    (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=2484576781417448321  (installer_adobe_flash_player_english.exe)

8 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=REVENUE&trckid=003767484016572838457  (installer_adobe_flash_player_english.exe)

1 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=u3ecb0d655471d35797322acf64  (installer_adobe_flash_player_english.exe)

1 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=10500577701420906525  (installer_adobe_flash_player_english.exe)

1 / 68      (PUP)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=6570403151417253064  (installer_adobe_flash_player_english.exe)

1 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=u29e0948251a1efa62414a84253  (installer_adobe_flash_player_english.exe)

1 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=19415990571417474777  (installer_adobe_flash_player_english.exe)

1 / 68      (PUP)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=15934093061419950364  (installer_adobe_flash_player_english.exe)

1 / 68      (PUP)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=16056535821418081380  (installer_adobe_flash_player_english.exe)

1 / 68      (PUP)
http://freempr9.jrcaaa.com/down.php?p=ADCASH-DDownload&trckid=35771796681419232098  (installer_adobe_flash_player_english.exe)

1 / 68      (Adware)
http://freempr9.jrcaaa.com/down.php?p=REVENUE&trckid=008053908015868793941  (installer_adobe_flash_player_english.exe)

 
Latest 30 of 449 download URLs

URL:
http://freempr9.jrcaaa.com/

Google Analytics:
UA-49362613

Title:
“Flash Player”

Web server:
nginx/1.4.6 (Ubuntu) (PHP/5.5.9-1ubuntu4.14)

begin.pro

descargaresdwn.com

filepc.net

filepcdwn.com

fileprogdwn.com

fileprogram.net

filewin.com

filewindwn.com

filewon.com

freesoftpc.com

freesoftstore.com

freetrialdownloads.com

keweek.com

nawert.com

programa.com

programasplus.com

programtop.net

programvaradwn.com

scaricaresoft.com

takethesoft.com

telechargers.net

telechargersdwn.com

telechargerstop.com

totalprogramasdwn.com

watajreda.com

zaredjr.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.