cdn.reimage.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain cdn.reimage.com is registered by proxy through GODADDY.COM, LLC and was originally registered in August of 1997. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Jose, California within the United States which resides on the CDNetworks Inc. network.
Remove Malware from cdn.reimage.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
California, United States (US)

Create date:
Monday, August 11, 1997

Expires date:
Thursday, August 10, 2017

Updated date:
Sunday, August 09, 2015

ASN:
AS36408 CDNETWORKSUS-02 CDNetworks Inc.

Root domain:

Scanner detections:
Detections  (90% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.ReimageLimited.H, PUP.Optional.ReimageLimited.K, PUP.Optional.ReimageLimited.L, PUP.Optional.Installer, Win32.Generic.Reimage.Installer.Meta, PUP.Reimage.Optional.Installer.Meta (L)
95.00%

ESET NOD32
Win32/Toolbar.Babylon, Win32/DownWare.AC, Win32/ReImageRepair (variant), Win32/ReImageRepair.E potentially unwanted (variant)
80.00%

Dr.Web
Adware.Plugin.171, riskware program Program.Unwanted.35, Trojan.Crossrider1.1621, riskware program Program.Unwanted.376, Adware.Plugin.171
65.00%

Antiy Labs AVL
GrayWare[AdWare:not-a-virus]/Win32.Inffinity, RiskWare[WebToolbar:not-a-virus]/Win32.Agent
60.00%

McAfee
Artemis!7CB5D5BE15CC, Artemis!6B9240136E7F, Artemis!91A6D8A06EC7, Artemis!E818730CB7CB, Artemis!18A90E6BBC25, Artemis!5A9504A79EBF
55.00%

Trend Micro House Call
TROJ_GEN.F47V0204, TROJ_GEN.F47V0108, Suspicious_GEN.F47V0723, Suspicious_GEN.F47V0118, Suspicious_GEN.F47V0202, Suspicious_GEN.F47V0311
55.00%

McAfee Web Gateway
Artemis!7CB5D5BE15CC
50.00%

Baidu Antivirus
PUA.Win32.SearchPlugin, PUA.Win32.ReImageRepair
45.00%

Rising Antivirus
NS:PUF.SilenceInstaller!1.9DDF
40.00%

NANO AntiVirus
Riskware.Nsis.Babylon.cvvuwk
40.00%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h, AdWare.MSIL.OutBrowse
40.00%

Fortinet FortiGate
Riskware/ReImageRepair
30.00%

IKARUS anti.virus
PUA.ReImageRepair
25.00%

ESET NOD32
Win32/ReImageRepair.E potentially unwanted application, Win32/ReImageRepair.G potentially unwanted application
15.00%

avast!
Win32:Malware-gen
10.00%

The domain cdn.reimage.com has been seen to resolve to the following 33 IP addresses.

February 7, 2016

February 7, 2016

February 2, 2016

February 2, 2016

February 1, 2016

February 1, 2016

February 1, 2016

February 1, 2016

February 1, 2016

February 1, 2016

November 12, 2015

November 12, 2015

August 13, 2015

August 11, 2015

August 11, 2015

June 30, 2015

June 30, 2015

January 11, 2015

January 11, 2015

January 7, 2015

January 7, 2015

September 4, 2014

September 4, 2014

September 3, 2014

September 3, 2014

May 24, 2014

May 24, 2014

April 16, 2014

April 16, 2014

March 15, 2014

 
Showing 30 of 33 IP Addresses

File downloads found at URLs served by cdn.reimage.com.

7 / 68      (PUP)

11 / 68    (PUP)

11 / 68    (PUP)

1 / 68      (PUP)
http://cdn.reimage.com/install/.../eFixPro.exe  (9e71913ee64cb72454057430ed0d023a)

8 / 68      (PUP)
http://cdn.reimage.com/.../eFixProPackage1808x64.exe  (e818730cb7cb32d4a119d1aa334ddf04)

11 / 68    (PUP)

9 / 68      (PUP)
http://cdn.reimage.com/.../eFixPro.exe  (5a9504a79ebff887199f498c3ac25286)

1 / 68      (PUP)
http://cdn.reimage.com/install/.../eFixPro.exe  (8831cad642995f12cf2e17ff30a06c75)

0 / 68
http://cdn.reimage.com/install/.../eFixPro.exe  (176e638d93789b3dce0f6001e7823de8)

2 / 68      (inconclusive)
http://cdn.reimage.com/inst/.../eFixPro.exe  (409be1e62f79e888503e8996bf305f52)

6 / 68      (PUP)
http://cdn.reimage.com/install/.../eFixPro.exe  (a4a6584b8d7b06c8a317e6f471d491d1)

7 / 68      (PUP)
http://cdn.reimage.com/inst/.../eFixPro.exe  (78ac087cd20816bec6017dffec3f6b95)

11 / 68    (PUP)
http://cdn.reimage.com/install/.../eFixPro.exe  (88f5bd64e755fff90b61a79e3e9c19f4)

2 / 68      (PUP)

15 / 68    (PUP)
http://cdn.reimage.com/.../eFixPro.exe  (ad83ed834f7b12d45e0ee552b2a78f1f)

3 / 68      (PUP)
http://cdn.reimage.com/download/.../eFixPro.exe  (36d5f57275526ea96ced4ab31571a067)

10 / 68    (PUP)
http://cdn.reimage.com/download/.../eFixPro.exe  (371783f4c4bdd86da1f5b220b1e8b687)

6 / 68      (PUP)
http://cdn.reimage.com/.../eFixPro.exe  (e367a6611e1eb6afdf7611cf3a0ee9b6)

5 / 68      (PUP)
http://cdn.reimage.com/download/.../eFixPro.exe  (efe42e8167d01fdd33c4bc7988a05e21)

10 / 68    (PUP)
http://cdn.reimage.com/download/.../eFixPro.exe  (cfc4ac8eeabf59fa9f9a79eec900e7aa)

10 / 68    (PUP)
http://cdn.reimage.com/download/.../eFixPro.exe  (5c108f41b87a618f74fc71a8aaef0587)

The following file have been seen to comunicate with cdn.reimage.com in live environments.

URL:
http://cdn.reimage.com/

Web server:
PWS/8.1.20.25

Remove Malware from cdn.reimage.com - Powered by Reason Core Security