» downloads.freeware.de
Overview
Analysis
IPs Addresses (2)
Downloads (3)
Network (8)
Related Domains (3)

downloads.freeware.de

Domain Information

Server location:

Bayern, Germany (DE)

ASN:

AS24940 HETZNER-AS Hetzner Online AG

Root domain:

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

Win32.Generic.sharewaredeSWVGmbH.Meta

100.00%

The domain downloads.freeware.de has been seen to resolve to the following 2 IP addresses.

www2.thinklabs-cluster.de

May 18, 2014

www1.thinklabs-cluster.de

May 18, 2014

File downloads found at URLs served by downloads.freeware.de.

1 / 68 (PUP)

http://downloads.freeware.de/?lastchange=1317827143&pid=freewarede&cid=h371683&camps=6633333837666237313332656461633965643333373639393939363065323730&campsel=66333338376662373133326564616339656433333736393939393630653237302D6D61696E3A312C66333338376662373133326564616339656433333736393939393630653237302D7365617263683A312C66333338376662373133326564616339656433333736393939393630653237302D686F6D6570673A312C&euid=c47a28e95c40bb5d2d6e3a79 (amc-downloader.exe)

1 / 68 (PUP)

http://downloads.freeware.de/?lastchange=1341147034&pid=freewarede&cid=h368109&camps=313565363834363632666435613861626539373038726567636C65616E70726F&campsel=313565363834363632666435613861626539373038726567636C65616E70726F2D6D61696E3A312C&euid=fe3e0637ad31b84e9916ab0c (freeyoutubetomp3converter-downloader.exe)

1 / 68 (PUP)

http://downloads.freeware.de/?lastchange=1353503326&pid=freewarede&cid=h374383&camps=39636261343934653235363436373462356365313332343661653263333361642C3237613865383266653632373039306134383433313338666538383764636235&campsel=39636261343934653235363436373462356365313332343661653263333361642D6D61696E3A312C39636261343934653235363436373462356365313332343661653263333361642D7365617263683A312C39636261343934653235363436373462356365313332343661653263333361642D686F6D653A312C32376138653832666536323730393061343834333133386665383837646362352D6D61696E3A312C&euid=87b87143413aebf83fe00efc&source= (esdtrl-photoplusx5-de-aq-downloader.exe)

The following 8 files have been seen to comunicate with downloads.freeware.de in live environments.

TCP » 88.198.27.201:80

ocs_v71a.exe (OCS)

TCP » 46.4.173.131:80

ocs_v71a.exe (OCS)

TCP » 46.4.173.131:80

ocs_v71b.exe (OCS)

TCP » 88.198.27.201:80

ocs_v71b.exe (OCS)

TCP » 46.4.173.131:80

ocs_v71b.exe (OCS)

TCP » 46.4.173.131:80

CyberGhost.exe (CyberGhost VPN 5 by CyberGhost S.R.L)

TCP » 46.4.173.131:80

sysTPLService.exe (sysTPLService by Tlapia)

TCP » 46.4.173.131:80

ocs_v71b.exe (OCS)

TCP » 46.4.173.131:80

ocs_v71b.exe (OCS)

TCP » 88.198.27.201:80

sysTPLService.exe (sysTPLService by Tlapia)

TCP » 88.198.27.201:80

ocs_v71b.exe (OCS)

TCP » 88.198.27.201:80

ocs_v71b.exe (OCS)

TCP » 88.198.27.201:80

ocs_v71b.exe (OCS)

TCP » 88.198.27.201:80

ocs_v71b.exe (OCS)

Related Domains

download-sponsor.de

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.