The domain files4.mirror6.net registered by mark marrocco was initially registered in July of 2013 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the nLayer Communications Internal/Backbone network.
Registrar:
GODADDY.COM, LLC
Server location:
New York, United States (US)
Create date:
Wednesday, July 31, 2013
Expires date:
Monday, July 31, 2017
Updated date:
Saturday, August 1, 2015
ASN:
AS4436 AS-GTT-4436 - nLayer Communications, Inc.,US
Google Safe Browsing:
malware
Scanner detections:
Detections (95% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.CodeTechno.U, PUP.Installer.DownloadAdmin.U, PUP.Installer.DownloadAdmin.V, PUP.Installer.Groovecom.Y, PUP.Installer.CodeTechno.W, PUP.Groovecom.Y, PUP.Installer.DownloadAdmin.N, PUP.DownloadAdmin.T, PUP.Installer.CodeTechno.N, PUP.Installer.FullSpectrumInteractive.Z, PUP.Tightrope.Blueis.Bundler (M), PUP.DownloadAdmin.FullSpectrumInteractive.Installer (M), PUP.DownloadAdmin.Groovecom.Installer (M), PUP.Tightrope.Statscom.Bundler (M), PUP.Tightrope.DownloadAdmin.Bundler (M), PUP.Tightrope.Download.Bundler (M), PUP.DownloadAdmin.FullSpec.Installer (M), PUP.DownloadAdmin.Bundler (M)
100.00%
VIPRE Antivirus
DownloadAdmin, Threat.4150696, Threat.4783369, Trojan.Win32.Generic
68.57%
Dr.Web
Adware.Downware.2220, Adware.DAdmin.151, Trojan.Vittalia.27
68.57%
F-Secure
Adware:W32/WebInstallBundle
62.86%
Avira AntiVirus
ADWARE/Adware.Gen, APPL/Downloader.Gen, TR/Trash.Gen
60.00%
AVG
Generic, InstallC
60.00%
Agnitum Outpost
Riskware.Agent
45.71%
Trend Micro House Call
Suspicious_GEN.F47V0620, Suspicious_GEN.F47V0720, Suspicious_GEN.F47V0705, Suspicious_GEN.F47V0802, Suspicious_GEN.F47V0801
37.14%
Sophos
Generic PUA OI, Download Admin, Generic PUA KN, PUA 'Download Admin'
37.14%
ESET NOD32
Win32/DownloadAdmin.G potentially unwanted application, Win32/DownloadAdmin.I potentially unwanted application
37.14%
Malwarebytes
PUP.Optional.DownloadAdmin, PUP.Optional.BundleInstaller.A, PUP.Optional.FullSpectrumAdmin, PUP.Optional.DownloadAdmin.A
34.29%
ESET NOD32
Win32/DownloadAdmin, Win32/DownloadAdmin (variant)
31.43%
McAfee
Artemis!2B0AECF77D83, Artemis!DBCD0D1816F7, Artemis!44207F5CA138, Artemis!5B3627DB611D, Artemis!2A7B349E86B2, Artemis!9588BF3C29EA, Artemis!5726256FCFA7, Artemis!CF10D7B83E12
25.71%
K7 AntiVirus
Adware , Unwanted-Program , Trojan
25.71%
NANO AntiVirus
Riskware.Win32.Downware.crgjbr, Riskware.Win32.Downware.djahkt, Trojan.Win32.DAdmin.djhtdm, Riskware.Nsis.Downware.dlgjls
22.86%
The domain files4.mirror6.net has been seen to resolve to the following 47 IP addresses.
a23-15-8-89.deploy.static.akamaitechnologies.com
August 30, 2016
a23-15-8-33.deploy.static.akamaitechnologies.com
August 30, 2016
a104-96-221-152.deploy.static.akamaitechnologies.com
July 23, 2016
a104-96-221-138.deploy.static.akamaitechnologies.com
July 23, 2016
a104-96-221-122.deploy.static.akamaitechnologies.com
July 23, 2016
a104-96-221-112.deploy.static.akamaitechnologies.com
July 23, 2016
a104-96-221-81.deploy.static.akamaitechnologies.com
July 23, 2016
a104-96-221-58.deploy.static.akamaitechnologies.com
July 23, 2016
a104-96-220-226.deploy.static.akamaitechnologies.com
June 24, 2016
a104-96-220-227.deploy.static.akamaitechnologies.com
June 24, 2016
a104-96-220-216.deploy.static.akamaitechnologies.com
May 24, 2016
a104-96-220-233.deploy.static.akamaitechnologies.com
May 24, 2016
a23-0-160-88.deploy.static.akamaitechnologies.com
February 29, 2016
a23-0-160-98.deploy.static.akamaitechnologies.com
February 29, 2016
a23-15-7-120.deploy.static.akamaitechnologies.com
August 11, 2015
a23-15-7-105.deploy.static.akamaitechnologies.com
August 11, 2015
a184-26-44-98.deploy.static.akamaitechnologies.com
May 3, 2015
a184-26-44-103.deploy.static.akamaitechnologies.com
May 3, 2015
a23-67-243-59.deploy.static.akamaitechnologies.com
May 2, 2015
ip-69-31-29-47.nlayer.net
December 23, 2014
ip-69-31-29-197.nlayer.net
December 23, 2014
a184-51-126-50.deploy.static.akamaitechnologies.com
September 9, 2014
a184-51-126-64.deploy.static.akamaitechnologies.com
September 9, 2014
a23-62-7-9.deploy.static.akamaitechnologies.com
September 7, 2014
a23-62-7-33.deploy.static.akamaitechnologies.com
September 7, 2014
a23-62-6-59.deploy.static.akamaitechnologies.com
September 5, 2014
a23-62-6-66.deploy.static.akamaitechnologies.com
September 5, 2014
a23-0-160-41.deploy.static.akamaitechnologies.com
September 5, 2014
Showing 30 of 47 IP Addresses
File downloads found at URLs served by files4.mirror6.net.
Latest 30 of 103 download URLs
The following 736 files have been seen to comunicate with files4.mirror6.net in live environments.