The domain app.prntscr.com registered by Skillbrains was initially registered in January of 2010 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in West McLean, Virginia within the United States which resides on the Latin American and Caribbean IP address Regional Registry network.
Virginia, United States (US)
Thursday, January 07, 2010
Monday, January 07, 2019
Friday, January 08, 2016
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US
Detections (92% detected)
PUP.Installer.OOOKango.L, PUP.Installer.OOOKango.P, PUP.Installer.OOOKango.V, PUP.Installer.OOOKango.U, PUP.Installer.OOOKango.W
Adware.Plugin.111, Win32.HLLP.Neshta, Win32.Parite.2, Win32.Sector.30
Win.Adware.Agent-7758, W32.Neshuta.A, Heuristics.W32.Parite.B
W32.NeshtaB.PE, W32.Pinfi.B, W32.Sality.PE
Win32.Neshta.A, Win32.Parite.B, Win32.Sality.3
Virus/W32.Neshta, Virus/W32.Parite.C, Virus/W32.Sality.D
W32.Neshta.C8, W32.Perite.A, W32.Sality.U
W32/Netshta.gen, W32/Pate.B, W32/Sality.gen
K7 Gateway Antivirus
Win32.Neshta.A, Win32.Parite.B, Win32.Sality.BK
W32/HLLP.41472, W32/Parite.B, W32/Sality.gen2
Neshta.C, Win32.Parite.B, Win32.Sality.3
Win32/Neshta.A, Win32/Pinfi.A, Win32/Sality.AA
Trend Micro House Call
PE_NESHTA.A, PE_PARITE.A, PE_SALITY.RL
The domain app.prntscr.com has been seen to resolve to the following 9 IP addresses.
November 17, 2014
November 17, 2014
File downloads found at URLs served by app.prntscr.com.
“Lightshot — screenshot tool for Mac & Win”
SSL certificate subject:
CN=ssl276658.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated
SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
Statistics are for the previous month.