statstemp.rootsupport.net
DOMAIN PRIVACY SERVICE FBO REGISTRANT (Proxy Registrant)
Domain Information
The domain statstemp.rootsupport.net is registered by proxy through FASTDOMAIN, INC. and was originally registered in September of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Reston, Virginia within the United States which resides on the ServInt network.
Registrant:
DOMAIN PRIVACY SERVICE FBO REGISTRANT
Registrar:
FASTDOMAIN, INC.
Server location:
Virginia, United States (US)
Create date:
Monday, September 24, 2012
Expires date:
Wednesday, September 24, 2014
Updated date:
Monday, September 9, 2013
ASN:
AS25847 SERVINT - ServInt
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.SimpleLeads.M, Adware.Installer.SimpleLeads.M, PUP.Installer.BestDownloadManager.M, PUP.Installer.SimpleLeads.F
100.00%
McAfee
Artemis!9F03F85D50F4, Artemis!001529AB0AB4, Artemis!8D4C47D900B9, Artemis!EB798F4A1DC4
100.00%
Trend Micro House Call
TROJ_GEN.F47V1122, TROJ_GEN.F47V0201, TROJ_GEN.F47V1127, TROJ_GE.9797A2AA, TROJ_GEN.F47V1104
100.00%
K7 AntiVirus
Trojan
83.33%
F-Prot
W32/Undefined.Threat, W32/VBTrojan.Dropper.2
83.33%
ESET NOD32
Win32/MyPCBackup, Win32/KBM (variant)
50.00%
Bkav FE
W32.Clod993.Trojan
33.33%
Malwarebytes
PUP.Optional.BundleInstaller.A
16.67%
Agnitum Outpost
Riskware.Agent
16.67%
Dr.Web
Adware.Plugin.85
16.67%
VIPRE Antivirus
sterkly LLC
16.67%
Fortinet FortiGate
Riskware/InstallIQ
16.67%
XVirus List
Win32.Detected
16.67%
Avira AntiVirus
TR/VB.Downloader.Gen
16.67%
The domain statstemp.rootsupport.net has been seen to resolve to the following IP address.
serv.mozetta.com
December 16, 2013
File downloads found at URLs served by statstemp.rootsupport.net.
URL:
http://statstemp.rootsupport.net/
Web server:
Apache (Fat-Free Framework)
