Private Person (Proxy Registrant)
The domain www.carambis.ru is registered by proxy through RU-CENTER-RU and was originally registered in August of 2008. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Sloboda, Voronezh within Russia which resides on the RIPE Network Coordination Centre network.
Voronezh, Russia (RU)
Wednesday, August 06, 2008
Saturday, August 06, 2016
AS9002 RETN-AS RETN Limited
Detections (100% detected)
PUP.Installer.ROSTPAY.AA, PUP.Installer.ROSTPAY.CC, PUP.Installer.ROSTPAY.U, PUP.Installer.ROSTPAY.c, PUP.Installer.ROSTPAY.BB, PUP.Installer.ROSTPAY.j
Trojan.Packed.198, Program.Unwanted.328, Program.Unwanted.271
Win32:PUP-gen [PUP], Win32:Agent-AYCR [PUP]
Trend Micro House Call
Suspicious_GEN.F47V0413, Suspicious_GEN.F47V0228, Suspicious_GEN.F47V0302, Suspicious_GEN.F47V0319
a variant of dcbd5d3a68a3b78e13d3f5ee0cd69b825e0096bb, a variant of b1882d752cf8263ffee3d3eceaf7144f79762d36
K7 Gateway Antivirus
The domain www.carambis.ru has been seen to resolve to the following 2 IP addresses.
December 28, 2013
File downloads found at URLs served by www.carambis.ru.
“Carambis - системные утилиты”
SSL certificate subject:
SSL certificate issuer:
CN=WoSign CA Free SSL Certificate G2, O=WoSign CA Limited, C=CN