» www.oneclickroot.com
Overview
Analysis
IPs Addresses (9)
Downloads (5)
Website Detail
Statistics

www.oneclickroot.com

One Click Root

Domain Information

The domain www.oneclickroot.com registered by One Click Root was initially registered in September of 2011 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Los Angeles, California within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).

Registrant:

One Click Root

Registrar:

GODADDY.COM, LLC

Server location:

California, United States (US)

Create date:

Thursday, September 8, 2011

Expires date:

Friday, September 8, 2017

Updated date:

Monday, April 22, 2013

ASN:

AS13335 CLOUDFLARENET - CloudFlare, Inc.,US

Root domain:

oneclickroot.com

Whois:

1 oneclickroot.com record

Scanner detections:

Detections (62% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.Installer.SimpleLeads, PUP.SimpleLeads.Installer (M), PUP.SimpleLe.Installer (M)

88.89%

Zillya! Antivirus

Tool.ArchSMS.Win32.25040

11.11%

Dr.Web

Trojan.Siggen6.55368, Trojan.Inject1.28681

11.11%

ESET NOD32

Win32/AutoRun.Delf.LV worm, Win32/Delf.NRJ worm

11.11%

F-Prot

W32/Autorun.ZF, W32/Renamer.A.gen

11.11%

avast!

Win32:AutoRun-CWJ [Trj], Win32:Agent-AODJ [Trj]

11.11%

McAfee

Virus.W32/Tainp.a, Virus.W32/Gnamer

11.11%

Norman

Trojan.Generic.KDV.391478, Worm.Generic.377772

11.11%

Kaspersky

Virus.Win32.Renamer

11.11%

Emsisoft Anti-Malware

Trojan.Generic.KDV.391478, Worm.Generic.377772

11.11%

Microsoft Security Essentials

Threat.Undefined

11.11%

F-Secure

Worm.Generic.377772

5.56%

AVG

Worm/Delf.KHX

5.56%

The domain www.oneclickroot.com has been seen to resolve to the following 9 IP addresses.

February 10, 2016

February 10, 2016

October 29, 2015

October 29, 2015

June 26, 2015

June 26, 2015

June 26, 2015

June 26, 2015

June 26, 2015

File downloads found at URLs served by www.oneclickroot.com.

0 / 68

https://www.oneclickroot.com/download-ocr.php (oneclickroot.exe)

1 / 68 (PUP)

https://www.oneclickroot.com/cdn-cgi/.../chk_captcha?id=2a733ed9761515ad&g-recaptcha-response=03AHJ_Vus-sgPc6QnjScoxqaJQOInwoZyZYyaqByj88yNd4K2oiol1xNe2y3ouCNFXPHM8JAWZ36YSuLSFSc4xoa3aIY64NaBmEZdPkVSb5JEgRfnU0Hy-_ly8KLYNUrCkQPP3WrOx4DCvHwFd9vdq_FPzBeHUKktVtMYuSoKTCtAyTDOBH-dsJtId51p62CDM9lDGTnjPAPJ0E3FntQhBEce7Lz9Sa7ym7do3OjZt7690tiLZ-T4_hCi3sjohCvEqwIjviYOnvyOD2PKhgW6taP46lszMeINOrmmAZRSEAJLbdHS3Vz6MpVxMO1Tq2jmzBvMoLFnyPYykdjygCdHr7_0h0hobwUam70E-Vcdo1Jkq5J7ZRanSWVYj5GgfhC-wSVRBLXXMA8Twy2yYdMMLtgE4CwOb7OuhOeZoADffRjsPl-afEV3yq6e-Ncc_gm179PYxf_tTYPPolHoV_9eyMh5u7qdHG4xJ13xghyKAVOURm8BgRlucuJwtuKrMLkL6UyjYCuk7QkjnhT7JIPKkoSQh3RhYFiRaorkXa0GDfa1M0s9rOwS5o_OLHF1RoyBNBvxfg2uhPlQL4uxHjG7Onvz5cjD9Lq9W032z7oW9LxmYjcZvpDQAoQfiSaeI-DMnP6MqjapReVyxxb7Y9LTgBbZ74ZqfjhVs7OzZq1HiqrdlimF_pF1sRv_4juLP_HLFDeVLDjKxvJxg9WbHZhsMV_XYIJm-ZJsFs6-LzvgnUKDLgLUfNbglFxNyVaic2vD_Ao7TTIWf3kc-toUpb87BLcpT2Z0cfdBbupzPeoz67UNzgqMU8bzUfqaVvYyLNegHxoFkL7xmStfDKw7XIHte5iTsFGcSfdLs4euItbRuRgsZen6vV1HHgO_sdU0MCks5ukQ4P0nVfJ (oneclickroot.exe)

1 / 68 (PUP)

https://www.oneclickroot.com/cdn-cgi/.../chk_captcha?id=2a832c381237403e&g-recaptcha-response=03AHJ_VuvX2fNH2MDz7WKPBHsvK2fPqHiqsKqh3TfOqwk8EiBOsqN_BtjtjM4iD7R0y0TGtE8saPFBWnjavBsfxIudPGzTVGoYvEY0RuE23KGAGW9p6wg70IhG1a5JrG9Eozk95zrQpTllWVhn4PJ_ozs6d6M2W8OT-U44C4fF1i6M7BmTDj115hlyur5fDNzIXFdhS-TtrwmUXe38Qg4Jm5Ys76py6Izf-Hfpf4Im8lIiOw95U9cLJKtv3mXWiJ6KUL5ANAUoNK7GFjaKu98bm47O5EK4a_bPeJ7EXSiuJSSOq-aMX6NvRTfi8D-qbPTR6wBOn-tDH7ZRgj3SxMAl5rt_886rmt-DIF7xFP3mx7h6m_YOvqKbY8zdUMEC3j2tefG2IcVWX1tWtnAWstv-Hk-1uZHArlfHSI8Nf-DsijRip93L2jPCtLmK06GVm4-K8xW0Qun1jxUjBJ1dtIKgSSMyUPe9MlRdnhzeSEn1VGMvWjDlclQwM0OrT_mZuYNXCqnLDaNPvcNBaEyMyfchxlUUIWTGv4mvfiEu44xR_RV4qdBTfGqZ3Gu16qnfzkx7-y80i7biyhsPE1J-3i7gt7nCPypN1XrVv5b8sbdNqig9UqAW_TlNsXKVWhly9xk7ijhY84vlPDZt4bSDxnufIfK_tqcMI0COgGYZ516S5VTbon-5H6Pwj8EmqQZUVW6TupoLOoyOVrkE7Xgo0xPd_nTaUuhIFvgunQLcKTeo9r8lo_xQCx2sromR1_P94okYF7F4UhEkKt7NCBypMe1huUfRBNkhbgvMGKIPmkt-HsxxkI4OtPzaHXDdyjqO4urjXtOf6IYhEQAxOpMr3dF6B_n71PKqx37KZH7RD3u46ARWpMxTmUvXjMGwilvaVDa9cymq5nH1XZ (oneclickroot.exe)

1 / 68 (PUP)

https://www.oneclickroot.com/download.php (oneclickroot.exe)

1 / 68 (PUP)

http://www.oneclickroot.com/download.php (oneclickroot.exe)

URL:

http://www.oneclickroot.com/

Google Analytics:

UA-38268321

Title:

“One Click Root | Safely Root Any Android Device”

Description:

“One Click Root is the smartest android rooting software available. Just one click and you can root your android device to harness its full potential.”

SSL certificate subject:

CN=sni164472.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:

CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:

cloudflare-nginx (PHP/5.4.44)

Facebook:

Likes: 27

Shares: 60

Comments: 67

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.