home

cdn.sysweatheralert.site

Domain Information

Server location:
Pennsylvania, United States (US)

ASN:
AS60068 CDN77 Datacamp Limited,GB

Root domain:
sysweatheralert.site

The domain cdn.sysweatheralert.site has been seen to resolve to the following 3 IP addresses.

185.59.223.27
new-york-20.cdn77.com
May 26, 2016

185.59.223.28
new-york-20.cdn77.com
May 26, 2016

185.93.0.16
atlanta-3.cdn77.com
May 25, 2016

File downloads found at URLs served by cdn.sysweatheralert.site.

2 / 68      (inconclusive)
http://cdn.sysweatheralert.site/autofiles/qxk9dbu91x9x//.../SysWeatherAlert_Setup_rec_prd.exe  (0ebd53bdf21f285051b970e575a315f0)

5 / 68      (Malware)
http://cdn.sysweatheralert.site/autofiles/qxk9dbu91x9x//.../SysWeatherAlert_Setup_rec_prd.exe  (19de9fe98804786dd77e623d8d36761c)

2 / 68      (inconclusive)
http://cdn.sysweatheralert.site/autofiles/5lzd3nizgmxd//.../SysWeatherAlert_Setup_rec_prd.exe  (c7b1ca79587e5c7426881a6229ad55f9)

The following 2 files have been seen to comunicate with cdn.sysweatheralert.site in live environments.

TCP » 185.59.223.28:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 185.59.223.27:443
online-guardian-v2.0.9.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.