home

get.rugready.com

Domain Information

Server location:
Massachusetts, United States (US)

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:
rugready.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.DelimaxConcept.J, PUP.Solimba.DelimaxC (M)
100.00%

Emsisoft Anti-Malware
Gen:Variant.Kazy.525798
33.33%

Lavasoft Ad-Aware
Gen:Variant.Kazy.525798
33.33%

F-Secure
Gen:Variant.Kazy.525798
33.33%

AVG
Adware BundleApp_r.AJ
33.33%

Norman
Gen:Variant.Kazy.525798
33.33%

Sophos
PUA 'Solimba Installer'
33.33%

MicroWorld eScan
Gen:Variant.Kazy.525798
33.33%

K7 AntiVirus
Unwanted-Program
33.33%

F-Prot
W32/S-d8e33fef
33.33%

Bitdefender
Gen:Variant.Kazy.525798
33.33%

NANO AntiVirus
Trojan.Win32.Morstar.djtcxn
33.33%

SUPERAntiSpyware
Trojan.Agent/Gen-RogueAV
33.33%

Comodo Security
Application.Win32.Firseria.GH
33.33%

Avira AntiVirus
APPL/Firseria.Gen
33.33%

The domain get.rugready.com has been seen to resolve to the following 3 IP addresses.

204.11.56.48
May 19, 2016

23.0.160.217
a23-0-160-217.deploy.static.akamaitechnologies.com
January 16, 2015

23.0.160.216
a23-0-160-216.deploy.static.akamaitechnologies.com
January 16, 2015

File downloads found at URLs served by get.rugready.com.

1 / 68      (Adware)
http://get.rugready.com/n/3.2.53/.../Head Soccer for PC.exe  (137cd1a82a114a53f3bb352462e23e10)

1 / 68      (Adware)
http://get.rugready.com/n/3.2.47/.../Google Chrome.exe  (5f9c11d017c5a7ea432defa50e4198f6)

22 / 68    (Adware)
http://get.rugready.com/n/3.2.52/.../Megapolis.exe  (88a803452d025aa3113659fb8a77ff6a)

The following 20 files have been seen to comunicate with get.rugready.com in live environments.

TCP » 204.11.56.48:80
chrome.crx

TCP » 204.11.56.48:80
chrome.crx

TCP » 23.0.160.216:80
iTunes.exe (iTunes by Apple)

TCP » 23.0.160.216:80
gjjofdeodiofmmdlnbgpeekgefglmkfj.crx

TCP » 23.0.160.216:80
kheplajlialegkhogehgdbhaogeikfag.crx

TCP » 23.0.160.216:80
idipklkclglaeaidmeedenepljfnfbfn.crx

TCP » 23.0.160.216:80
ioeoeknoofgmflombeebbhpddabifcfo.crx

TCP » 23.0.160.216:80
gmhhhiljddfafnapfeffelbdilmmdhma.crx

TCP » 23.0.160.216:80
kheplajlialegkhogehgdbhaogeikfag.crx

TCP » 23.0.160.216:80
bjenifhdbikcfkdibbokmiknmnmcfcjl.crx

TCP » 23.0.160.217:80
bcdgpdgkgjpogkcbbbkhmmkknbfgdepo.crx

TCP » 23.0.160.217:80
bcdgpdgkgjpogkcbbbkhmmkknbfgdepo.crx

TCP » 23.0.160.217:80
ifnhcmgmcjfkndpoeadjdincafeloipf.crx

TCP » 23.0.160.217:80
hambiomgokbbaninkkcbfcgcfnjhoknd.crx

TCP » 23.0.160.217:80
mmkiappddlgaapjmejnpjcmlpmcoomja.crx

TCP » 23.0.160.217:80
eeobdlandcipocmboklfdomliagpibdk.crx

TCP » 23.0.160.217:80
oogalfnachjonnakeieehcfjfmmdjbgh.crx

TCP » 23.0.160.217:80
lipaogcjlelcllcedgplofkhhfpeidkh.crx

TCP » 23.0.160.217:80
aglopkjdlojmcfmgialedpkgangpjcel.crx

TCP » 23.0.160.217:80
proc.exe

 
Latest 20 of 21 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.