www.carambis.ru

Private Person  (Proxy Registrant)

Domain Information

The domain www.carambis.ru is registered by proxy through RU-CENTER-RU and was originally registered in August of 2008. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Sloboda, Voronezh within Russia which resides on the RIPE Network Coordination Centre network.
Remove Malware from www.carambis.ru - Powered by Reason Core Security
Registrar:
RU-CENTER-RU

Server location:
Voronezh, Russia (RU)

Create date:
Wednesday, August 06, 2008

Expires date:
Saturday, August 06, 2016

ASN:
AS9002 RETN-AS RETN Limited

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.ROSTPAY.AA, PUP.Installer.ROSTPAY.CC, PUP.Installer.ROSTPAY.U, PUP.Installer.ROSTPAY.c, PUP.Installer.ROSTPAY.BB, PUP.Installer.ROSTPAY.j
94.74%

Dr.Web
Trojan.Packed.198, Program.Unwanted.328, Program.Unwanted.271
42.11%

avast!
Win32:PUP-gen [PUP], Win32:Agent-AYCR [PUP]
36.84%

ESET NOD32
Win32/Bundled.Toolbar.Ask (variant)
26.32%

Trend Micro House Call
Suspicious_GEN.F47V0413, Suspicious_GEN.F47V0228, Suspicious_GEN.F47V0302, Suspicious_GEN.F47V0319
21.05%

herdProtect (fuzzy)
a variant of dcbd5d3a68a3b78e13d3f5ee0cd69b825e0096bb, a variant of b1882d752cf8263ffee3d3eceaf7144f79762d36
15.79%

Baidu Antivirus
Hacktool.Win32.Bundled.bToolbar
5.26%

Zillya! Antivirus
Adware.PennyBee.Win32.2501
5.26%

K7 Gateway Antivirus
Riskware
5.26%

K7 AntiVirus
Riskware
5.26%

The domain www.carambis.ru has been seen to resolve to the following 2 IP addresses.

October 20, 2015

server6.freeteam.org
December 28, 2013

File downloads found at URLs served by www.carambis.ru.

3 / 68      (PUP)

3 / 68      (PUP)

6 / 68      (PUP)

4 / 68      (PUP)

3 / 68      (PUP)

5 / 68      (PUP)

1 / 68      (PUP)

5 / 68      (PUP)

4 / 68      (PUP)

2 / 68      (PUP)

1 / 68      (PUP)
https://www.carambis.ru/lp/.../driver_updater.html  (driverupdatersetupa-2.3.1.4215+1x4088g873d83.exe)

1 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (PUP)

1 / 68      (PUP)
http://www.carambis.ru/lp/.../cleaner.html  (cleanersetup-1.0.2.4101+140u6t4128j44.exe)

2 / 68      (PUP)

1 / 68      (PUP)

2 / 68      (PUP)

1 / 68      (PUP)

2 / 68      (PUP)

URL:
http://www.carambis.ru/

Google Analytics:
UA-753548

Title:
“Carambis - системные утилиты”

SSL certificate subject:
CN=carambis.com

SSL certificate issuer:
CN=WoSign CA Free SSL Certificate G2, O=WoSign CA Limited, C=CN

Web server:
nginx

Remove Malware from www.carambis.ru - Powered by Reason Core Security