The domain cdnus.ironcdn.com is registered by proxy through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM and was originally registered in March of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Frankfurt Am Main, Hessen within Germany which resides on the Leaseweb USA, Inc. network.
Registrant:
Privacy Protection Service INC d/b/a PrivacyProtect.org
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM
Server location:
Hessen, Germany (DE)
Create date:
Wednesday, March 28, 2012
Expires date:
Tuesday, March 28, 2017
Updated date:
Sunday, February 21, 2016
ASN:
AS30633 LEASEWEB-US - Leaseweb USA, Inc.
Scanner detections:
Detections (96% detected)
Scan engine
Details
Detections
ESET NOD32
Win32/InstallCore.AZ (variant), Win32/InstallCore.AF (variant), Win32/InstallCore.AY (variant), Win32/InstallCore.AW (variant)
73.47%
Reason Heuristics
PUP.NextRadioTV.I, PUP.NextRadioTV.W, PUP.NextRadioTV.R, PUP.NextRadioTV.O, PUP.NextRadioTV.E, PUP.NextRadioTV.X, PUP.NextRadioTV.T, Win32.Generic, PUP.installCore.NextRadioTV (M), PUP.installCore.Clickrunsoftware (M), Threat.Win.Reputation.IMP, PUP.installCore.NextRadi (M), PUP.installCore.Clickrun (M), PUP.ironSource (M)
73.47%
Dr.Web
Adware.InstallCore.80, Adware.InstallCore.55, Adware.InstallCore.72, Adware.InstallCore.53, Adware.MediaFinder.2, Adware.InstallCore.43
71.43%
F-Prot
W32/InstallCore.W.gen, W32/InstallCore.W2.gen, W32/InstallCore.G.gen, W32/InstallCore.V2.gen, W32/InstallCore.P.gen, W32/InstallCore.S.gen
69.39%
Avira AntiVirus
ADWARE/InstallCore.Gen, APPL/Downloader.Gen6, PUA/InstallCore.Gen
65.31%
Trend Micro House Call
TROJ_GEN.F47V1228, TROJ_GEN.F47V0131, TROJ_GEN.F47V1225, TROJ_GEN.F47V1222, TROJ_GEN.RCBH1CC, TROJ_GEN.F47V1223, TROJ_GEN.RCBH1CE, TROJ_GEN.RCBH1LM, TROJ_GEN.RCBH1AM
59.18%
Malwarebytes
PUP.Optional.InstallCore
59.18%
Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
59.18%
K7 AntiVirus
Trojan , Unwanted-Program
55.10%
Sophos
InstallCore ToDownload, Generic PUA JL, Install Core, Install Core Click run software
53.06%
AhnLab V3 Security
PUP/Win32.InstallCore, ASD.Prevention, Adware/Win32.InstallCore
51.02%
Comodo Security
ApplicUnwnt.Win32.AdWare.Agent.~A, UnclassifiedMalware, Application.Win32.InstallCore.~A
48.98%
McAfee
Artemis!19EF503B0319, Artemis!803C759F7457, Artemis!B895F5F41BEF, Artemis!87C27D8A3D41, Artemis!3DF0A845B746, Artemis!B87A715E3A96, Artemis!2D6FE1E4DF49
46.94%
Emsisoft Anti-Malware
Riskware.Win32.InstallCore.AMN, Trojan.CryptRedol.Gen, Riskware.WebToolbar.Win32.InstallCore.AMN!A2, Riskware.Win32.InstallCore.AMN!A2
46.94%
Baidu Antivirus
Adware.Win32.InstallCore, Trojan.Win32.InstallCore
44.90%
The domain cdnus.ironcdn.com has been seen to resolve to the following 7 IP addresses.
50.115.122.45.static.westdc.net
November 16, 2013
hosted-by.leaseweb.com
November 16, 2013
hosted-by.leaseweb.com
November 16, 2013
File downloads found at URLs served by cdnus.ironcdn.com.
Latest 30 of 76 download URLs
The following 449 files have been seen to comunicate with cdnus.ironcdn.com in live environments.
URL:
http://cdnus.ironcdn.com/
Related Domains