files4.mirror8.net

mark marrocco

Domain Information

The domain files4.mirror8.net registered by mark marrocco was initially registered in July of 2013 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the nLayer Communications Internal/Backbone network.
Registrar:
GODADDY.COM, LLC

Server location:
New York, United States (US)

Create date:
Wednesday, July 31, 2013

Expires date:
Monday, July 31, 2017

Updated date:
Saturday, August 1, 2015

ASN:
AS4436 AS-GTT-4436 - nLayer Communications, Inc.,US

Root domain:

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.FullSpectrumInteractive.Y, Adware.Installer.FullSpectrumInteractive.Y, PUP.Installer.FullSpectrumInteractive.DD, PUP.DownloadAdmin.FullSpectrumInteractive.Installer (M), PUP.DownloadAdmin.FullSpec.Installer (M)
100.00%

VIPRE Antivirus
DownloadAdmin, Threat.4783369
88.46%

ESET NOD32
Win32/DownloadAdmin
84.62%

Dr.Web
Adware.DownloadAdmin.1, Adware.Downware.2220
80.77%

Sophos
Download Admin
76.92%

Malwarebytes
PUP.Optional.FullSpectrumAdmin, PUP.Optional.BundleInstaller.A, PUP.Optional.InstallCore.A
61.54%

Trend Micro House Call
TROJ_GEN.F47V1122, TROJ_GEN.F47V0921, TROJ_GEN.F47V1010, ADW_DWNADMIN, TROJ_GEN.F47V0920, TROJ_GEN.F47V0909, TROJ_GEN.F47V1124, TROJ_GEN.F47V1013
57.69%

Avira AntiVirus
Adware/DownloadAdmin.AH.5, Adware/DownloadAdmin.AL.1, Adware/DownloadAdmin.AH.28, Adware/DownloadAdmin.AL.21, Adware/DownloadAdmin.AD.16
53.85%

NANO AntiVirus
Trojan.Win32.Downware.crgjbr, Riskware.Win32.Downware.crgjbr
50.00%

McAfee
Artemis!26603DB6FCFA, Artemis!34375BAAFE6D, Artemis!29886DB3FB7A, Artemis!3B83A33ACCDC, Artemis!84C3F956FE30, Artemis!5A613455DF5C, Artemis!A4CCAFB7C81E, Artemis!E5D2FCDEE63C, Artemis!0EF9D23C9BA3, Artemis!F5D6FE9059A5
42.31%

Rising Antivirus
PE:Malware.XPACK/RDM!5.1
30.77%

herdProtect (fuzzy)
a variant of 4c33af3f22cb6fa73e1b89b1a77e4592c007fc62, a variant of 53f9b9ac771acbcdaa47239c209ef91631c52f39, a variant of 3f69d02c844bcafe6b676a2fb1601de056df8ad3
26.92%

K7 AntiVirus
Unwanted-Program , Trojan
19.23%

AVG
MalSign.InstallC
19.23%

avast!
Win32:PUP-gen [PUP], Adware-OH [Adw]
19.23%

The domain files4.mirror8.net has been seen to resolve to the following 77 IP addresses.

a104-96-221-91.deploy.static.akamaitechnologies.com
June 3, 2016

a104-96-221-98.deploy.static.akamaitechnologies.com
May 27, 2016

a104-96-221-112.deploy.static.akamaitechnologies.com
May 27, 2016

a104-96-220-233.deploy.static.akamaitechnologies.com
May 26, 2016

a104-112-235-19.deploy.static.akamaitechnologies.com
May 26, 2016

April 20, 2016

April 20, 2016

a23-15-7-97.deploy.static.akamaitechnologies.com
April 12, 2016

a23-15-7-105.deploy.static.akamaitechnologies.com
April 12, 2016

a23-62-236-27.deploy.static.akamaitechnologies.com
May 5, 2015

a23-62-236-17.deploy.static.akamaitechnologies.com
May 5, 2015

a23-62-236-147.deploy.static.akamaitechnologies.com
May 4, 2015

a23-62-236-162.deploy.static.akamaitechnologies.com
May 4, 2015

a173-223-204-11.deploy.static.akamaitechnologies.com
May 4, 2015

a173-223-204-18.deploy.static.akamaitechnologies.com
May 4, 2015

a184-26-44-98.deploy.static.akamaitechnologies.com
May 4, 2015

a184-26-44-103.deploy.static.akamaitechnologies.com
May 4, 2015

May 4, 2015

May 4, 2015

a96-6-113-193.deploy.akamaitechnologies.com
May 3, 2015

a96-6-113-153.deploy.akamaitechnologies.com
May 3, 2015

a23-67-243-59.deploy.static.akamaitechnologies.com
May 2, 2015

a23-62-6-40.deploy.static.akamaitechnologies.com
December 22, 2014

a184-51-126-50.deploy.static.akamaitechnologies.com
December 16, 2014

a23-62-6-51.deploy.static.akamaitechnologies.com
September 5, 2014

ip-69-31-29-197.nlayer.net
September 5, 2014

ip-69-31-29-47.nlayer.net
September 5, 2014

a23-0-160-26.deploy.static.akamaitechnologies.com
September 4, 2014

a184-50-229-137.deploy.static.akamaitechnologies.com
September 4, 2014

a184-50-229-177.deploy.static.akamaitechnologies.com
September 4, 2014

 
Showing 30 of 77 IP Addresses

File downloads found at URLs served by files4.mirror8.net.

 
Latest 30 of 809 download URLs

The following 930 files have been seen to comunicate with files4.mirror8.net in live environments.

 
Latest 20 of 965 files