d.downloadmeteoroids.com
Domains By Proxy, LLC (Proxy Registrant)
Domain Information
The domain d.downloadmeteoroids.com is registered by proxy through GODADDY.COM, LLC and was originally registered in May of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Cloudfront CDN service which utilizes a number of proxy IP Addresses (see below).
Registrant:
Domains By Proxy, LLC
Registrar:
GODADDY.COM, LLC
Server location:
Virginia, United States (US)
Create date:
Friday, May 23, 2014
Expires date:
Saturday, May 23, 2015
Updated date:
Thursday, July 10, 2014
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.AcuteAngleSolutions.F
100.00%
ESET NOD32
multiple threats
100.00%
VIPRE Antivirus
Threat.4784449
100.00%
Dr.Web
Threat.Undefined
100.00%
MicroWorld eScan
Application.Generic.728095
100.00%
McAfee
Artemis!84490CE64670
100.00%
Malwarebytes
PUP.Optional.PullUpdate
100.00%
K7 AntiVirus
Adware
100.00%
Trend Micro House Call
Suspici.63D1E3E6
100.00%
Bitdefender
Application.Generic.728095
100.00%
Agnitum Outpost
PUA.PullUpdate
100.00%
Lavasoft Ad-Aware
Application.Generic.728095
100.00%
F-Secure
Application.Generic.728095
100.00%
G Data
Application.Generic.728095
100.00%
The domain d.downloadmeteoroids.com has been seen to resolve to the following 8 IP addresses.
server-54-230-194-216.iad53.r.cloudfront.net
October 20, 2014
server-54-230-192-230.iad53.r.cloudfront.net
October 20, 2014
server-54-230-192-149.iad53.r.cloudfront.net
October 20, 2014
server-54-192-192-128.iad53.r.cloudfront.net
October 20, 2014
server-54-239-152-188.iad53.r.cloudfront.net
October 20, 2014
server-54-239-152-30.iad53.r.cloudfront.net
October 20, 2014
server-54-230-195-126.iad53.r.cloudfront.net
October 20, 2014
server-54-230-195-80.iad53.r.cloudfront.net
October 20, 2014
File downloads found at URLs served by d.downloadmeteoroids.com.
The following 3 files have been seen to comunicate with d.downloadmeteoroids.com in live environments.
URL:
http://d.downloadmeteoroids.com/
Network:
Amazon Cloudfront