home

www.officia-fr.me

Domain Information

Server location:
Northern Ireland, United Kingdom (GB)

Root domain:
officia-fr.me

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Malwarebytes
Trojan.Banker
100.00%

NANO AntiVirus
Trojan.Win32.Agent2.pmtnd
100.00%

Norman
Suspicious.UE
100.00%

Clam AntiVirus
Trojan.Agent-304245
100.00%

VIPRE Antivirus
Trojan.Win32.Generic
100.00%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
100.00%

The domain www.officia-fr.me has been seen to resolve to the following IP address.

92.242.140.21
unallocated.barefruit.co.uk
May 21, 2015

File downloads found at URLs served by www.officia-fr.me.

6 / 68      (Malware)
http://www.officia-fr.me/cache/officia-fr.me/.../install_www--1551-flashplayer.exe  (663c518e27c8fadde432f12779ce3293)

The following 230 files have been seen to comunicate with www.officia-fr.me in live environments.

TCP » 92.242.140.21:80
smelled.exe (Smelled)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
marini.exe (Marini)

TCP » 92.242.140.21:443
client.exe (ClientWrapper)

TCP » 92.242.140.21:80
thebrowser.exe (TheBrowser by Goobzo)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:443
WindowService.exe (WindowService)

TCP » 92.242.140.21:443
ciuninstall.exe

TCP » 92.242.140.21:1866
jutched.exe

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
masterupdater.exe

TCP » 92.242.140.21:80
pricemeterexpress.crx

TCP » 92.242.140.21:80
chrome.crx

TCP » 92.242.140.21:80
app-center.crx

TCP » 92.242.140.21:80
ntp.crx

TCP » 92.242.140.21:80
3dayinvite.crx

TCP » 92.242.140.21:80
twitter.crx

TCP » 92.242.140.21:80
viewlater.crx

TCP » 92.242.140.21:80
rss.crx

TCP » 92.242.140.21:80
datapump.crx

 
Latest 20 of 230 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.