The domain cdn.roastfiles.info is registered by proxy through NameCheap, Inc. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Francisco, California within the United States which resides on the Fastly network.
Registrant:
WhoisGuard, Inc.
Server location:
California, United States (US)
ASN:
AS54113 FASTLY - Fastly, US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Norman
Downloader, Application.Generic.1554840, Gen:Variant.Kazy.784723
62.50%
VIPRE Antivirus
Threat.4150696, Trojan.Win32.Generic
62.50%
Reason Heuristics
PUP.Somoto.Installer (M), Adware.DNSUnlocker.wwwdnsun.Installer.Meta (M)
50.00%
ESET NOD32
Win32/Adware.CloudGuard.B application, multiple threats
50.00%
Kaspersky
not-a-virus:HEUR:Downloader.NSIS.Somoto, not-a-virus:AdWare.MSIL.DNSUnlocker, not-a-virus:AdWare.MSIL.CloudScout
37.50%
Emsisoft Anti-Malware
Application.Generic.1554840, Gen:Variant.Kazy.784723
37.50%
Trend Micro House Call
TROJ_GEN.R0CBH06GE14, ADW_TOMOS.SMN
25.00%
Dr.Web
Adware.Downware.3968, Adware.Somoto.139
25.00%
Qihoo 360 Security
Win32/Trojan.Dropper.c9f, HEUR/QVM42.1.Malware.Gen
25.00%
Clam AntiVirus
Win.Adware.Outbrowse-1197, Win.Adware.Somoto-2
25.00%
MicroWorld eScan
Application.Bundler.Somoto.AG, Application.Generic.1554840
25.00%
Malwarebytes
PUP.Optional.Somoto.C, PUP.Optional.DNSUnlocker.BrwsrFlsh
25.00%
Bitdefender
Application.Bundler.Somoto.AG, Application.Generic.1554840
25.00%
Lavasoft Ad-Aware
Application.Bundler.Somoto.AG, Application.Generic.1554840
25.00%
F-Secure
Application.Bundler.Somoto, Gen:Variant.MSILPerseus.9600
25.00%
The domain cdn.roastfiles.info has been seen to resolve to the following 4 IP addresses.
File downloads found at URLs served by cdn.roastfiles.info.
The following 6 files have been seen to comunicate with cdn.roastfiles.info in live environments.
URL:
http://cdn.roastfiles.info/