» starbrood.free.fr
Overview
Analysis
IPs Addresses (1)
Downloads (1)
Network (2)
Website Detail
Related Domains (1)

starbrood.free.fr

FREE SAS (Proxy Registrant)

Domain Information

The domain starbrood.free.fr is registered by proxy through ONLINE SAS. Currently this domain has been known to host various forms of malware. The hosted servers are located in Bezons, Ile-De-France within France which resides on the RIPE Network Coordination Centre network.

Registrant:

FREE SAS

Registrar:

ONLINE SAS

Server location:

Ile-De-France, France (FR)

ASN:

AS12322 PROXAD Free SAS

Root domain:

free.fr

Whois:

1 free.fr record

Scanner detections:

Malware distribution (100% detected)

Scan engine

Details

Detections

MicroWorld eScan

Trojan.GenericKD.1202891

100.00%

Bitdefender

Trojan.GenericKD.1202891

100.00%

F-Secure

Trojan.GenericKD.1202891

100.00%

Emsisoft Anti-Malware

Trojan.GenericKD.1202891

100.00%

G Data

Trojan.GenericKD.1202891

100.00%

The domain starbrood.free.fr has been seen to resolve to the following IP address.

212.27.63.114

perso114-g5.free.fr

November 19, 2013

File downloads found at URLs served by starbrood.free.fr.

5 / 68 (Malware)

http://starbrood.free.fr/finance.exe (f3f881dea336c916b03db70cbb868e46)

The following 2 files have been seen to comunicate with starbrood.free.fr in live environments.

TCP » 212.27.63.114:80

online-guardian-v2.0.9.exe

TCP » 212.27.63.114:80

produpd.exe (produpd.exe by Vested Development, Inc)

URL:

http://starbrood.free.fr/

Title:

“StarCraft 2000”

Web server:

Apache/ProXad [Apr 20 2012 15:06:05]

Related Domains

online.fr

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.