cdn.roamingrate.com
Domains By Proxy, LLC (Proxy Registrant)
Domain Information
The domain cdn.roamingrate.com is registered by proxy through GODADDY.COM, LLC and was originally registered in December of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Denver, Colorado within the United States which resides on the Akamai Technologies, Inc. network.
Registrant:
Domains By Proxy, LLC
Registrar:
GODADDY.COM, LLC
Server location:
Colorado, United States (US)
Create date:
Tuesday, December 16, 2014
Expires date:
Friday, December 16, 2016
Updated date:
Thursday, December 17, 2015
ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.,US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.Yontoo, Threat.Yontoo.Installer, PUP.Yontoo.Installer, PUP.Yontoo.RoamingRate.Installer (M), PUP.Yontoo.RoamingR.Installer (M)
100.00%
Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
44.74%
Dr.Web
Trojan.Yontoo.1734, Trojan.Yontoo.1735, Trojan.Yontoo.1809
44.74%
herdProtect (fuzzy)
a variant of 7d8345d94fff242f91e42d4afc42d0f25f2264f0, a variant of 1322ffc74953a4acbb5ad210c62f2b4a32109c46, a variant of 9a21e285a7cde29668246fbfd571c4c20f07ede9
42.11%
AVG
BrowseFox, Generic
34.21%
Bkav FE
W32.HfsAdware
31.58%
Qihoo 360 Security
HEUR/QVM42.0.Malware.Gen
28.95%
AhnLab V3 Security
PUP/Win32.BrowseFox
23.68%
Baidu Antivirus
Adware.Win32.BrowseFox
21.05%
Clam AntiVirus
Win.Adware.Browsefox-725
21.05%
VIPRE Antivirus
Threat.4741131
18.42%
G Data
Win32.Adware.StrongSignal
15.79%
Malwarebytes
PUP.Optional.DragonBranch.A, PUP.Optional.RecordPage.A, PUP.Optional.RoamingRate.SID.A
15.79%
ESET NOD32
Win32/BrowseFox.AZ potentially unwanted application, Win32/BrowseFox.BC potentially unwanted application
13.16%
Trend Micro House Call
Suspicious_GEN.F47V0319, Suspicious_GEN.F47V0406
10.53%
The domain cdn.roamingrate.com has been seen to resolve to the following 20 IP addresses.
a72-247-8-123.deploy.akamaitechnologies.com
June 7, 2016
a72-247-8-139.deploy.akamaitechnologies.com
June 7, 2016
a104-96-220-99.deploy.static.akamaitechnologies.com
May 18, 2016
a104-96-220-139.deploy.static.akamaitechnologies.com
May 16, 2016
a104-96-220-98.deploy.static.akamaitechnologies.com
May 16, 2016
a23-62-6-72.deploy.static.akamaitechnologies.com
April 5, 2016
a184-51-126-107.deploy.static.akamaitechnologies.com
March 4, 2016
a96-16-12-115.deploy.akamaitechnologies.com
February 22, 2016
a96-16-12-113.deploy.akamaitechnologies.com
February 22, 2016
a23-0-160-35.deploy.static.akamaitechnologies.com
February 10, 2016
a23-0-160-59.deploy.static.akamaitechnologies.com
February 3, 2016
a23-0-160-82.deploy.static.akamaitechnologies.com
February 3, 2016
a23-15-8-218.deploy.static.akamaitechnologies.com
February 3, 2016
a23-15-8-201.deploy.static.akamaitechnologies.com
February 3, 2016
a184-51-126-99.deploy.static.akamaitechnologies.com
January 5, 2016
a184-51-126-82.deploy.static.akamaitechnologies.com
January 5, 2016
a184-51-126-152.deploy.static.akamaitechnologies.com
January 4, 2016
a184-51-126-195.deploy.static.akamaitechnologies.com
January 4, 2016
a23-62-6-83.deploy.static.akamaitechnologies.com
January 4, 2016
a23-62-6-80.deploy.static.akamaitechnologies.com
January 4, 2016
File downloads found at URLs served by cdn.roamingrate.com.
The following 407 files have been seen to comunicate with cdn.roamingrate.com in live environments.
URL:
http://cdn.roamingrate.com/
Web server:
Microsoft-IIS/7.5
