download.yontoo.com
Yontoo LLC (via a Proxy Registrant)
Domain Information
download.yontoo.com is operated by Sambreel's (now QuestPoint) subsidiary Yontoo. The domain download.yontoo.com is registered by proxy through GODADDY.COM, LLC and was originally registered in March of 2007. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Broomfield, Colorado within the United States which resides on the Level 3 Communications, Inc. network. The domain is associated with the publisher Yontoo LLC who is located in Carlsbad, California in the United States.
Registrar:
GODADDY.COM, LLC
Server location:
Colorado, United States (US)
Create date:
Friday, March 30, 2007
Expires date:
Wednesday, March 30, 2016
Updated date:
Monday, April 27, 2015
ASN:
AS54761 ARIN-SAMBREEL-SVCS - Sambreel Services, LLC
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
VIPRE Antivirus
Yontoo
100.00%
Reason Heuristics
PUP.Installer.YontooTechnology.V, PUP.Installer.YontooTechnology.R, PUP.Yontoo.YontooTechnology.Installer (M)
100.00%
Norman
Agent.VBAZ.dropper
40.00%
Dr.Web
Adware.Plugin.11
40.00%
Avira AntiVirus
ADWARE/Yontoo.Gen
40.00%
ESET NOD32
Win32/Adware.Yontoo, Win32/Adware.Yontoo (variant)
40.00%
Rising Antivirus
Trojan.InstallRex!562A
40.00%
IKARUS anti.virus
AdWare.Yontoo
40.00%
Trend Micro House Call
TROJ_GEN.R0CBH01GT13
20.00%
The domain download.yontoo.com has been seen to resolve to the following IP address.
File downloads found at URLs served by download.yontoo.com.
The following 576 files have been seen to comunicate with download.yontoo.com in live environments.
URL:
http://download.yontoo.com/
SSL certificate subject:
CN=*.yontoo.com, OU=Domain Control Validated
SSL certificate issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc."
Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)
Related Domains