1fgm8go.oloadcdn.net
WHOISGUARD, INC. (Proxy Registrant)
Domain Information
The domain 1fgm8go.oloadcdn.net is registered by proxy through ENOM, INC. and was originally registered in August of 2015. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Bucharest, Bucuresti within Romania which resides on the RIPE Network Coordination Centre network.
Registrant:
WHOISGUARD, INC.
Server location:
Bucuresti, Romania (RO)
Create date:
Tuesday, August 4, 2015
Expires date:
Thursday, August 4, 2016
Updated date:
Monday, August 24, 2015
ASN:
AS9009 M247 M247 Ltd,GB
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Malwarebytes
RiskWare.Tool.HCK
100.00%
VIPRE Antivirus
Trojan.Win32.Generic
100.00%
Agnitum Outpost
Trojan.Kryptik
100.00%
NANO AntiVirus
Trojan.Win32.Agent.dvoqco
100.00%
IKARUS anti.virus
possible-Threat.Patch.XForce
100.00%
Qihoo 360 Security
HEUR/QVM18.1.Malware.Gen
100.00%
The domain 1fgm8go.oloadcdn.net has been seen to resolve to the following IP address.
no-rdns.m247.ro
January 30, 2016
File downloads found at URLs served by 1fgm8go.oloadcdn.net.
The following file have been seen to comunicate with 1fgm8go.oloadcdn.net in live environments.
URL:
http://1fgm8go.oloadcdn.net/
SSL certificate subject:
CN=*.oloadcdn.net, OU=PositiveSSL Wildcard, OU=Domain Control Validated
SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
