The domain www.oneclickroot.com registered by One Click Root was initially registered in September of 2011 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Los Angeles, California within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Registrant:
One Click Root
Registrar:
GODADDY.COM, LLC
Server location:
California, United States (US)
Create date:
Thursday, September 8, 2011
Expires date:
Friday, September 8, 2017
Updated date:
Monday, April 22, 2013
ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US
Scanner detections:
Detections (62% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.SimpleLeads, PUP.SimpleLeads.Installer (M), PUP.SimpleLe.Installer (M)
88.89%
Zillya! Antivirus
Tool.ArchSMS.Win32.25040
11.11%
Dr.Web
Trojan.Siggen6.55368, Trojan.Inject1.28681
11.11%
ESET NOD32
Win32/AutoRun.Delf.LV worm, Win32/Delf.NRJ worm
11.11%
F-Prot
W32/Autorun.ZF, W32/Renamer.A.gen
11.11%
avast!
Win32:AutoRun-CWJ [Trj], Win32:Agent-AODJ [Trj]
11.11%
McAfee
Virus.W32/Tainp.a, Virus.W32/Gnamer
11.11%
Norman
Trojan.Generic.KDV.391478, Worm.Generic.377772
11.11%
Kaspersky
Virus.Win32.Renamer
11.11%
Emsisoft Anti-Malware
Trojan.Generic.KDV.391478, Worm.Generic.377772
11.11%
Microsoft Security Essentials
Threat.Undefined
11.11%
F-Secure
Worm.Generic.377772
5.56%
The domain www.oneclickroot.com has been seen to resolve to the following 9 IP addresses.
File downloads found at URLs served by www.oneclickroot.com.
URL:
http://www.oneclickroot.com/
Google Analytics:
UA-38268321
Title:
“One Click Root | Safely Root Any Android Device”
Description:
“One Click Root is the smartest android rooting software available. Just one click and you can root your android device to harness its full potential.”
SSL certificate subject:
CN=sni164472.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated
SSL certificate issuer:
CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
Web server:
cloudflare-nginx (PHP/5.4.44)
Facebook:
Likes: 27
Shares: 60
Comments: 67
Statistics are for the previous month.