The domain 49883610b2899a565445-f8bbcd60a34d32bcae8d0f1cb50205b0.r36.cf1.rackcdn.com registered by Rackspace US, Inc. was initially registered in December of 2010 through CSC CORPORATE DOMAINS, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Los Angeles, California within the United States which resides on the Akamai Technologies, Inc. network.
Registrant:
Rackspace US, Inc.
Registrar:
CSC CORPORATE DOMAINS, INC.
Server location:
California, United States (US)
Create date:
Wednesday, December 15, 2010
Expires date:
Thursday, December 15, 2016
Updated date:
Saturday, December 12, 2015
ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V., US
Scanner detections:
Detections (91% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Extension.ChromePlugin, Adware.Plugin.Meta, (M), PUP.Montiera.KeepMySearch (M), PUP.OPTIADS (M), Threat.Win.Reputation.IMP, PUP.Babylon.Banylon.Installer (M), Adware.Toolbar
88.64%
Norman
Downloader, Trojan.GenericKD.3195977, Gen:Variant.Razy.46920, Trojan.GenericKD.3196158, Win32.Neshta.A
18.18%
F-Secure
Variant.Razy.46920, Trojan.GenericKD.3196158
9.09%
Qihoo 360 Security
Win32/Virus.Adware.331, HEUR/QVM42.1.Malware.Gen, Win32/Trojan.dff
6.82%
ESET NOD32
Win32/Toolbar.Montiera.Z potentially unwanted (variant), Win32/Toolbar.Montiera.AE potentially unwanted (variant), Win32/Toolbar.Montiera.G potentially unwanted (variant)
6.82%
Dr.Web
Adware.Searcher.2781, Adware.Searcher.2939, Win32.HLLP.Neshta
6.82%
VIPRE Antivirus
Trojan.Win32.Generic, Threat.4276445
6.82%
Emsisoft Anti-Malware
Gen:Variant.Adware.Graftor.201006, Gen:Variant.Mikey.36279, Win32.Neshta
6.82%
AVG
Generic, Generic37, Win32.Generic.WC
6.82%
avast!
Win32:Malware-gen, Win32:Apanas [Trj], Win32:Adware-gen [Adw]
6.82%
Avira AntiVirus
Adware/AgentCV.A.10093, PUA/Montiera.Gen7
4.55%
MicroWorld eScan
Gen:Variant.Adware.Graftor.201006, Gen:Variant.Mikey.36279
4.55%
Malwarebytes
PUP.Optional.KeepMySearch.SID.A, PUP.Optional.KeytoSearch.A
4.55%
Bitdefender
Gen:Variant.Adware.Graftor.201006, Gen:Variant.Mikey.36279
4.55%
K7 AntiVirus
Unwanted-Program , Adware
4.55%
The domain 49883610b2899a565445-f8bbcd60a34d32bcae8d0f1cb50205b0.r36.cf1.rackcdn.com has been seen to resolve to the following 17 IP addresses.
207.126.104.113.available.above.net
July 21, 2016
207.126.104.115.available.above.net
July 18, 2016
a72-246-64-128.deploy.akamaitechnologies.com
June 28, 2016
207.126.104.107.available.above.net
June 4, 2016
207.126.104.120.available.above.net
June 4, 2016
a96-17-170-33.deploy.akamaitechnologies.com
May 15, 2016
a96-17-170-9.deploy.akamaitechnologies.com
April 14, 2016
a96-17-170-19.deploy.akamaitechnologies.com
April 14, 2016
a72-246-64-130.deploy.akamaitechnologies.com
February 7, 2016
a72-246-64-113.deploy.akamaitechnologies.com
February 7, 2016
a72-246-64-122.deploy.akamaitechnologies.com
February 3, 2016
a96-17-161-138.deploy.akamaitechnologies.com
January 5, 2016
a96-17-161-106.deploy.akamaitechnologies.com
January 5, 2016
63-158-227-58.dia.static.qwest.net
January 4, 2016
63-158-227-16.dia.static.qwest.net
January 4, 2016
File downloads found at URLs served by 49883610b2899a565445-f8bbcd60a34d32bcae8d0f1cb50205b0.r36.cf1.rackcdn.com.
Latest 30 of 64 download URLs
The following 19 files have been seen to comunicate with 49883610b2899a565445-f8bbcd60a34d32bcae8d0f1cb50205b0.r36.cf1.rackcdn.com in live environments.