home

ukrep.reimage.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain ukrep.reimage.com is registered by proxy through GODADDY.COM, LLC and was originally registered in August of 1997. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dulles, Virginia within the United States.
Registrar:
GODADDY.COM, LLC

Server location:
Virginia, United States (US)

Create date:
Monday, August 11, 1997

Expires date:
Thursday, August 10, 2017

Updated date:
Sunday, August 9, 2015

ASN:
AS19994 RACKSPACE - Rackspace Hosting,US

Root domain:
reimage.com

Whois:
1 reimage.com record

Scanner detections:
Detections  (92% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.ReimageLimited.O, PUP.Optional.ReimageLimited.N, PUP.Optional.ReimageLimited.Y, PUP.Optional.ReimageLimited.W, Win32.Generic, PUP.Reimage.Installer.Meta (L), PUP.Reimage.ReimageR.Installer.Meta (L)
97.87%

Dr.Web
Adware.Plugin.171, Trojan.Crossrider1.1621, Program.Unwanted.493, riskware program Program.Unwanted.497
51.06%

Trend Micro House Call
Suspicious_GEN.F47V0729, Suspicious_GEN.F47V1116, Suspicious_GEN.F47V0106, Suspicious_GEN.F47V0202, Suspicious_GEN.F47V0528
31.91%

ESET NOD32
Win32/ReImageRepair (variant), Win32/ReImageRepair.E potentially unwanted (variant), Win32/ReImageRepair.F potentially unwanted
25.53%

Fortinet FortiGate
Riskware/ReImageRepair
19.15%

Baidu Antivirus
PUA.Win32.VMDetect, PUA.Win32.ReImageRepair
19.15%

IKARUS anti.virus
PUA.ReImageRepair, AdWare.Plugin
19.15%

McAfee
Artemis!8DDC6C3D11DC, Artemis!729EC34D3530, Artemis!5FC7934C9790, Artemis!B3C7121FD4C9
14.89%

Vba32 AntiVirus
AdWare.MSIL.OutBrowse
14.89%

Qihoo 360 Security
Malware.QVM10.Gen, Malware.QVM27.Gen
12.77%

Bkav FE
W32.HfsAdware
12.77%

G Data
Win32.Application.VMDetect, Win32.Application.ReImageRepair
10.64%

avast!
Win32:Rootkit-gen [Rtk], Win32:Malware-gen
10.64%

Zillya! Antivirus
Downloader.Agent.Win32.227126, Trojan.Injector.Win32.326336
8.51%

AVG
Generic
8.51%

The domain ukrep.reimage.com has been seen to resolve to the following IP address.

23.253.160.91
January 4, 2016

File downloads found at URLs served by ukrep.reimage.com.

1 / 68      (Malware)
http://ukrep.reimage.com/download/.../reimagerepair.exe  (d9c06ee609c9aa46a9a33f7a21fcf9de)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1841.exe  (ReimagePackage.exe)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1841x64.exe  (5f28bb509cfcaec77b64afc7eb9cc09f)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimageRepair.exe  (d75cdc8d301f32f6c9374bd901e05d16)

4 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1803x64d.exe  (47969474e7e7d0754de22eb4d28c9fd4)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1825x64.exe  (ReimagePackage.exe)

4 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1659.exe  (reimagepackage.exe)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1838.exe  (ReimagePackage.exe)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimageRepair.exe  (f29276aa323af1dcdc42ae193af3425a)

4 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1661.exe  (reimagepackage.exe)

6 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1803d.exe  (ReimagePackage.exe)

13 / 68    (PUP)
http://ukrep.reimage.com/.../ReimageRepair.exe  (ab9f67cefe765a5e652e72748d884253)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1837.exe  (ReimagePackage.exe)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1838x64.exe  (ebb15438e002a3ebea96366f3b47db71)

3 / 68      (PUP)
http://ukrep.reimage.com/.../ProtectorPackage2007d.exe  (d89fc3875604563f8a8ea636efc47905)

0 / 68
http://ukrep.reimage.com/.../ProtectorPackage2010x64a.exe  (1ac479b52b8c05241275fff4151b974b)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1836.exe  (35045e912891612f17d558ef1f5041be)

0 / 68
http://ukrep.reimage.com/.../ProtectorPackage2010a.exe  (a54100cbf8b15891f1acdc62e9ac6af9)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1837x64.exe  (e1d958fcdcef050da1bf4bc07b3f98cc)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1836x64.exe  (ReimagePackage.exe)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimageRepair.exe  (6938646b6df01137c04c9273eee4d16f)

5 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1803b.exe  (ReimagePackage.exe)

9 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1805.exe  (ReimagePackage.exe)

3 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1801l.exe  (ReimagePackage.exe)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ProtectorPackage2009.exe  (9efedfb573d598cb12def76e2aefb434)

3 / 68      (PUP)
http://ukrep.reimage.com/download/.../ReimageRepair.exe  (664f1578b326cdb19f8f6e07f0f4a109)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1835x64.exe  (ac9699dd2095f3d19b2d7b32f2dc7481)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimagePackage1835.exe  (26f99244858c49076aad051b5c42a168)

1 / 68      (PUP)
http://ukrep.reimage.com/.../ReimageRepair.exe  (fa1b4bf4c63dae48318f4f233180080a)

2 / 68      (false positives)
http://ukrep.reimage.com/.../ReimagePackage1826.exe  (wrar420.exe)

 
Latest 30 of 100 download URLs

URL:
http://ukrep.reimage.com/

Web server:
Microsoft-IIS/8.0

efix.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.