cdn.reasonsecurity.com

Reason Software Company Inc.

Domain Information

The domain cdn.reasonsecurity.com registered by Reason Software Company Inc. was initially registered in January of 2015 through GODADDY.COM, LLC. Currently this domain has been known to host various forms of malware. The hosted servers are located in Ashburn, Virginia within the United States. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US East (Northern Virginia) region datacenter.
Registrar:
GODADDY.COM, LLC

Server location:
Virginia, United States (US)

Create date:
Friday, January 23, 2015

Expires date:
Monday, January 23, 2017

Updated date:
Sunday, January 24, 2016

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:

Scanner detections:
Malware distribution  (60% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore (M), Threat.Win.Reputation.IMP
50.00%

F-Prot
W32/Autorun.ZF, W32/HLLP.41472
50.00%

ESET NOD32
Win32/AutoRun.Delf.LV worm, Win32/Neshta.A virus
50.00%

Microsoft Security Essentials
Threat.Undefined
50.00%

avast!
Win32:AutoRun-CWJ [Trj], Win32:Crypt-SKC [Trj], Win32:Apanas [Trj]
50.00%

Dr.Web
Trojan.Siggen6.55368, Win32.HLLP.Neshta
50.00%

VIPRE Antivirus
Threat.4150696, Threat.4276445
33.33%

Emsisoft Anti-Malware
Win32.Neshta
33.33%

F-Secure
Trojan.Generic.KDV.391478
16.67%

Norman
Trojan.Generic.KDV.391478
16.67%

AVG
Worm/Delf.FF
16.67%

Kaspersky
Virus.Win32.Neshta
16.67%

The domain cdn.reasonsecurity.com has been seen to resolve to the following 22 IP addresses.

September 2, 2016

September 2, 2016

September 1, 2016

September 1, 2016

s3-website-us-east-1.amazonaws.com
April 21, 2016

s3-website-us-east-1.amazonaws.com
April 21, 2016

s3-website-us-east-1.amazonaws.com
April 21, 2016

s3-website-us-east-1.amazonaws.com
April 20, 2016

s3-website-us-east-1.amazonaws.com
April 20, 2016

s3-website-us-east-1.amazonaws.com
April 19, 2016

s3-website-us-east-1.amazonaws.com
April 18, 2016

s3-website-us-east-1.amazonaws.com
April 18, 2016

s3-website-us-east-1.amazonaws.com
April 17, 2016

s3-website-us-east-1.amazonaws.com
April 17, 2016

s3-website-us-east-1.amazonaws.com
April 16, 2016

s3-website-us-east-1.amazonaws.com
April 16, 2016

s3-website-us-east-1.amazonaws.com
April 16, 2016

s3-website-us-east-1.amazonaws.com
April 15, 2016

October 26, 2015

October 26, 2015

May 6, 2015

May 6, 2015

File downloads found at URLs served by cdn.reasonsecurity.com.

The following 136 files have been seen to comunicate with cdn.reasonsecurity.com in live environments.

 
Latest 20 of 166 files

URL:
http://cdn.reasonsecurity.com/

Network:
Amazon Web Services (AWS)

SSL certificate subject:
CN=ssl279439.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
cloudflare-nginx (ASP.NET)