The domain www.4threquest.me is registered by proxy through eNom Inc R32-ME (48) and was originally registered in September of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Beauharnois, Quebec within Canada which resides on the OVH Hosting, Inc. network.
Registrant:
WhoisGuard, Inc.
Registrar:
eNom Inc R32-ME (48)
Server location:
Quebec, Canada (CA)
Create date:
Tuesday, September 2, 2014
Expires date:
Friday, September 2, 2016
Updated date:
Friday, January 29, 2016
ASN:
AS16276 OVH OVH SAS,FR
Scanner detections:
Detections (88% detected)
Scan engine
Details
Detections
AVG
Generic, WebFilter.X, Adware Generic6.AAKX, Downloader
70.45%
McAfee
Artemis!54D8B3A1920D, Trojan.Artemis!CD594B7E64BB, Artemis!04A835251535, Artemis!1CE2CA501F6B, Trojan.PUP-RFTY, Artemis!54B55D4656F2, Program.Artemis!82327E20B89E
68.18%
Emsisoft Anti-Malware
Trojan.Generic.13173700, Gen:Heur.Conjar, Trojan.Generic.14856005, Gen:Variant.Adware.Strictor.88475, Gen:Variant.Strictor.103432, Gen:Variant.Adware.Strictor.103432
68.18%
F-Prot
W32/A-07794f8f, W32/Adware.ALMA (exact, not disinfectable), W32/NetFilter-PUA.B
68.18%
Dr.Web
infected with Trojan.Fraudster.1624, Trojan.Fraudster.1468, Trojan.Fraudster.1465, Trojan.DownLoader14.1572, Detection.Undefined, Trojan.DownLoader13.4533
65.91%
ESET NOD32
multiple threats, NSIS/TrojanDownloader.Adload.AU trojan
63.64%
Norman
Suspicious_Gen4.IANYM, Gen:Heur.Conjar.1, Gen:Variant.Adware.Strictor.88475, Gen:Variant.Strictor.103432, ShellCode.C, Gen:Variant.Adware.Strictor.103432
61.36%
Microsoft Security Essentials
Threat.Undefined
56.82%
VIPRE Antivirus
Threat.4734384, Yontoo, Trojan.Win32.Generic, Threat.4150696, NetFilter, Threat.4785227, Amonetize
40.91%
F-Secure
Gen:Heur.Conjar.1, Variant.Adware.Strictor, Variant.Strictor.103432
36.36%
avast!
Win32:PUP-gen [PUP], Win32:Adware-gen [Adw], Win32:Malware-gen, NSIS:Downloader-ACE [PUP]
36.36%
Kaspersky
Trojan.Win32.Pincav, Trojan.Win32.Nurjax, not-a-virus:NetTool.Win64.NetFilter, not-a-virus:AdWare.NSIS.Agent, Trojan-Downloader.Win32.Genome
27.27%
NANO AntiVirus
Trojan.Win32.Triosir.dgibtv, Riskware.Win32.Netfilter.dpglho, Trojan.Nsis.Pincav.doipia, Trojan.Win64.Fraudster.dvddue, Trojan.Nsis.Genome.drxdju
25.00%
G Data
Win32.Riskware.NJax, Trojan.Generic.13173700, Gen:Heur.Conjar, Win32.Application.Agent.1U0J1K, Trojan.Generic.14856005, Application.Generic.1161666
25.00%
Baidu Antivirus
Trojan.Win32.Pincav, Trojan.Win32.Nurjax, Hacktool.Win32.NetFilter, Hacktool.Win64.NetFilter, PUA.Win32.Adload
25.00%
The domain www.4threquest.me has been seen to resolve to the following IP address.
File downloads found at URLs served by www.4threquest.me.
Related Domains