home

iframe.yourfilesdatak.asia

yourfilesdatak.asia

Domain Information

The domain iframe.yourfilesdatak.asia registered by yourfilesdatak.asia was initially registered in May of 2013 through PDR Ltd. d/b/a PublicDomainRegistry.com R28-ASIA (303). This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrar:
PDR Ltd. d/b/a PublicDomainRegistry.com R28-ASIA (303)

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Wednesday, May 1, 2013

Expires date:
Thursday, May 1, 2014

Updated date:
Monday, July 1, 2013

Root domain:
yourfilesdatak.asia

Whois:
1 yourfilesdatak.asia record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.WebPick.Installer.AA, Adware.WebPick.Installer.I, Adware.AdInjector.Installer.WebPick, PUP.WebPick.OstapLap (M), Adware.WebPick.Installer (M), PUP.WebPick.DmitryVo (M), Adware (M)
100.00%

Dr.Web
Adware.Downware.1442, Adware.Downware.1719
15.79%

VIPRE Antivirus
Threat.4150696
15.79%

AVG
Adware Skodna.Generic.ANV, InstallRex.2ef
15.79%

Bkav FE
W32.FamVT.AntiFWK.Trojan, W32.HfsAdware
15.79%

Quick Heal
Trojan.AntiFW.B5, Trojan.AntiFW.A5
15.79%

McAfee
PUP-FHQ, Program.PUP-FHQ
15.79%

Malwarebytes
PUP.Optional.Installrex, PUP.Optional.InstalleRex
15.79%

SUPERAntiSpyware
Adware.InstalleRex/Variant
15.79%

K7 AntiVirus
Unwanted-Program
15.79%

Agnitum Outpost
Adware.Generic, PUA.InstalleRex
15.79%

Kaspersky
not-a-virus:HEUR:Downloader.Win32.AdLoad, Trojan.Win32.AntiFW
15.79%

NANO AntiVirus
Riskware.Win32.Downware.crfmjd, Riskware.Win32.Downware.ctkpgz
15.79%

Sophos
InstallRex, PUA 'InstallRex'
15.79%

Comodo Security
Application.Win32.InstalleRex.KG
15.79%

The domain iframe.yourfilesdatak.asia has been seen to resolve to the following 3 IP addresses.

92.242.140.21
unallocated.barefruit.co.uk
June 18, 2015

141.101.116.30
January 11, 2014

141.101.117.30
January 11, 2014

File downloads found at URLs served by iframe.yourfilesdatak.asia.

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/exact/dl.php?id=154824&r=http://yourfilesdatak.asia/.../?&q=Download&product_name=Download&installer_file_name=Download&__rnd=f0f941d61810750dbd4cc581bc6e6410  (download.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/05de0a640412851e9333fdee61a71b4b/dfnc/dl.php?id=1385819086578650431&r=http://getapplicationmy.info/.../?&q=GTA311(www.fullypcgames.net).rar&product_name=GTA311(www.fullypcgames.net).rar&installer_file_name=GTA311(www.fullypcgames.net).rar&__rnd=e4e0cb2f70ac43c3042cfc98bbb6ab4d  (gta311(www.fullypcgames.net).rar.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/04d83f279b3ee6e95921d6dae5dc6f51/sido/dl.php?id=1387300435882499687&r=http://datasafedepoty.asia/?e=wxd&clsb=1&sfx=1&osid=501&aff=1851006&publisher=1851&ip=3699915707&f=PatchworkBagCargo.rar&pi=http://.../dumper?esetup=2&idos=501&op=3699915707&idb=4&wg1=http://.../dumper?esetup=1&idos=501&op=3699915707&idb=4&wg2=http://.../dumper?esetup=3&idos=501&op=3699915707&idb=4&__rnd=b3f1128a74793a25199ebfb9dcddf35e  (u48ahge.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/65cba17f0e45149f750fb84c08fdf07f/sido/dl.php?id=1387348711987442060&r=http://datasafedepoty.asia/?e=wxd&clsb=1&sfx=1&osid=501&aff=1851006&publisher=1851&ip=1919799915&f=Download&pi=http://.../dumper?esetup=2&idos=501&op=1919799915&idb=4&wg1=http://.../dumper?esetup=1&idos=501&op=1919799915&idb=4&wg2=http://.../dumper?esetup=3&idos=501&op=1919799915&idb=4&__rnd=029316ace393bd6a0a7481cb95b0fb19  (8iemakdq.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/41537ab41691bcbbfe50b4697d178670/sido/dl.php?id=1387348987537605256&r=http://datasafedepoty.asia/?e=wxd&clsb=1&sfx=1&osid=501&aff=1851006&publisher=1851&ip=1919799915&f=Esyhappines1.rar&pi=http://.../dumper?esetup=2&idos=501&op=1919799915&idb=4&wg1=http://.../dumper?esetup=1&idos=501&op=1919799915&idb=4&wg2=http://.../dumper?esetup=3&idos=501&op=1919799915&idb=4&__rnd=cdee1d24d42e02ae33dcf2029b8699ff  (jj6j6m.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/5bfb62e63c940e8a9db784b1512e1416/sido/dl.php?id=1385539160776248473&r=http://zilliontoolkitusa.info/.../?&q=PAT5153.pdf&product_name=PAT5153.pdf&installer_file_name=PAT5153.pdf&affiliate_id=sys1&__rnd=dd7cbe5b53c1d3ca9acc95e5aee45f4a  (pat5153.pdf.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/4df123644519bf15b35903a24566d73c/sido/dl.php?id=1385157887631096247&r=http://zilliontoolkitusa.info/.../?&q=onet_patch_win7.rar&product_name=onet_patch_win7.rar&installer_file_name=onet_patch_win7.rar&affiliate_id=sys1&__rnd=61cd8a76ca8515e05fdde2e920e6e0e6  (onet_patch_win7.rar.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/28f97e52e0d75376d87e254c4b0a71af/sido/dl.php?id=1387377644973717005&r=http://datasafedepoty.asia/?e=wxd&clsb=1&sfx=1&osid=601&aff=1851006&publisher=1851&ip=1449258362&f=Download&pi=http://.../dumper?esetup=2&idos=601&op=1449258362&idb=4&wg1=http://.../dumper?esetup=1&idos=601&op=1449258362&idb=4&wg2=http://.../dumper?esetup=3&idos=601&op=1449258362&idb=4&__rnd=9289f5649ca40c4de18e877334391fde  (download.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/ccd910a50df326e730da7dd88987c5f3/sido/dl.php?id=1387377788881916044&r=http://datasafedepoty.asia/?e=wxd&clsb=1&sfx=1&osid=601&aff=1851006&publisher=1851&ip=1449258362&f=Biology-G12-uae.zip&pi=http://.../dumper?esetup=2&idos=601&op=1449258362&idb=4&wg1=http://.../dumper?esetup=1&idos=601&op=1449258362&idb=4&wg2=http://.../dumper?esetup=3&idos=601&op=1449258362&idb=4&__rnd=59ec1fd82d657bdd4f8632369976fa79  (4j.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/exact/dl.php?id=1488878&r=http://yourfilesdatak.asia/.../?&q=Download&product_name=Download&installer_file_name=Download&__rnd=17eeed90c9602763a79a684fb4929321  (download.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/76dcf470c673fbbd84bccca0e0e68428/bil/dl.php?id=1382634367476521070&r=http://bookmyzip.in/.../?&q=SC-8541V7854V2.rar&product_name=SC-8541V7854V2.rar&installer_file_name=SC-8541V7854V2.rar&__rnd=781178a0f00d260586c410459d733e36  (sc-8541v7854v2.rar.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/exact/dl.php?id=1630654&r=http://yourfilesdatak.asia/.../?&q=Download&product_name=Download&installer_file_name=Download&__rnd=3db8a25e8375d84ce37fe66c8deacc5e  (download.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/e286d667b9e0ba77ea49ff3db51fea05/sido/dl.php?id=1387423590744327562&r=http://datasafedepoty.asia/?e=wxd&clsb=1&sfx=1&osid=601&aff=1851006&publisher=1851&ip=3758089503&f=penjualansepedamotor.rar&pi=http://.../dumper?esetup=2&idos=601&op=3758089503&idb=4&wg1=http://.../dumper?esetup=1&idos=601&op=3758089503&idb=4&wg2=http://.../dumper?esetup=3&idos=601&op=3758089503&idb=4&__rnd=75698d6587cd239da8fa371cecc4c2c5  (wdssq4y.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/exact/dl.php?id=364616&r=http://yourfilesdatak.asia/.../?&q=Download&product_name=Download&installer_file_name=Download&__rnd=b0a65b8f89256d465275337264a43db4  (download.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/d2fc35a0faae69b3c28bff36013493a6/sido/dl.php?id=1387447408836254675&r=http://datasafedepoty.asia/?e=wxd&clsb=1&sfx=1&osid=501&aff=1851006&publisher=1851&ip=3398406468&f=scout8.rar&pi=http://.../dumper?esetup=2&idos=501&op=3398406468&idb=4&wg1=http://.../dumper?esetup=1&idos=501&op=3398406468&idb=4&wg2=http://.../dumper?esetup=3&idos=501&op=3398406468&idb=4&__rnd=cee8a46cc523aebcc248fea3b89205a3  (o8j2vn1.exe)

34 / 68    (Adware)
http://iframe.yourfilesdatak.asia/e90b4d1177a0a5fa2370d23c61b6c21a/lemonNC2/dl.php?id=1388350105263956068&r=http://solutionnice.info/.../?&q=Joe Dassin-Salut&product_name=Joe Dassin-Salut&installer_file_name=Joe Dassin-Salut&id=1388350105263956068&d=1307&q=Joe Dassin-Salut&__rnd=9d37751c26a937aed6eacc2635e7986d&a=1&q=Joe Dassin-Salut&__rnd=a283481849fdd094692de9e754b8a68d  (joe+dassin-salut.exe)

34 / 68    (Adware)
http://iframe.yourfilesdatak.asia/e90b4d1177a0a5fa2370d23c61b6c21a/lemonNC2/dl.php?id=1388350105263956068&r=http://solutionnice.info/.../?&q=Joe Dassin-Salut&product_name=Joe Dassin-Salut&installer_file_name=Joe Dassin-Salut&id=1388350105263956068&d=1307&q=Joe Dassin-Salut&__rnd=9d37751c26a937aed6eacc2635e7986d&a=1&q=Joe Dassin-Salut&__rnd=a283481849fdd094692de9e754b8a68d  (joe+dassin-salut.exe)

26 / 68    (Adware)
http://iframe.yourfilesdatak.asia/exact/dl.php?id=1490239&r=http://yourfilesdatak.asia/.../?&q=Download&product_name=Download&installer_file_name=Download&__rnd=80439edacfd3afa7dbb626a2cfbca711  (download.exe)

26 / 68    (Adware)
http://iframe.yourfilesdatak.asia/exact/dl.php?id=1490239&r=http://yourfilesdatak.asia/.../?&q=Download&product_name=Download&installer_file_name=Download&__rnd=80439edacfd3afa7dbb626a2cfbca711  (download.exe)

1 / 68      (Adware)
http://iframe.yourfilesdatak.asia/6bf8ac6fdf5d0cba55ba35309a960d1f/DFS/dl.php?id=1389378548107748549&r=http://solutionnice.info/.../?&q=Hack Facebook Account 2014&product_name=Hack Facebook Account 2014&installer_file_name=Hack Facebook Account 2014&id=1389378548107748549&d=1917&q=Hack Facebook Account 2014&__rnd=f38c2a5fec4fae4ca05725a232e916f5&q=Hack Facebook Account 2014&__rnd=a2bbe32aa9e515dfc4265bf59ad8aafd  (hack facebook account 2014.exe)

The following 230 files have been seen to comunicate with iframe.yourfilesdatak.asia in live environments.

TCP » 92.242.140.21:80
smelled.exe (Smelled)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
marini.exe (Marini)

TCP » 92.242.140.21:443
client.exe (ClientWrapper)

TCP » 92.242.140.21:80
thebrowser.exe (TheBrowser by Goobzo)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:443
WindowService.exe (WindowService)

TCP » 92.242.140.21:443
ciuninstall.exe

TCP » 92.242.140.21:1866
jutched.exe

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
masterupdater.exe

TCP » 92.242.140.21:80
pricemeterexpress.crx

TCP » 92.242.140.21:80
chrome.crx

TCP » 92.242.140.21:80
app-center.crx

TCP » 92.242.140.21:80
ntp.crx

TCP » 92.242.140.21:80
3dayinvite.crx

TCP » 92.242.140.21:80
twitter.crx

TCP » 92.242.140.21:80
viewlater.crx

TCP » 92.242.140.21:80
rss.crx

TCP » 92.242.140.21:80
datapump.crx

 
Latest 20 of 230 files

URL:
http://iframe.yourfilesdatak.asia/

Web server:
nginx/1.0.15

Alexa:
Global rank:  2,033,777
Backlinks:  2

Statistics are for the previous month (Alexa statistics are for entire yourfilesdatak.asia).

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.