catalinahub.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain catalinahub.com is registered by proxy through GODADDY.COM, LLC and was originally registered in March of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Tampa, Florida within the United States which resides on the NOC4Hosts Inc. network.
Remove Malware from catalinahub.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Florida, United States (US)

Create date:
Friday, March 15, 2013

Expires date:
Thursday, March 15, 2018

Updated date:
Friday, October 10, 2014

ASN:
AS29802 HVC-AS - HIVELOCITY VENTURES CORP

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Dr.Web
Adware.Downware.10572, Adware.Downware.10015, Adware.Downware.10572, Adware.Downware.9733, Trojan.DownLoad3.27814, Adware.Downware.1751
100.00%

Reason Heuristics
PUP.Catalina.CatalinaGroup.Installer (M)
98.00%

Trend Micro House Call
Suspicious_GEN.F47V0331, TROJ_GEN.F47V0622, TROJ_GEN.F47V1119
96.00%

Bkav FE
W32.HfsAdware
96.00%

McAfee
GenericATG-FBEN!EE3A91ABB9FF, Artemis!612C55BF3A55
94.00%

F-Secure
Adware.Eorezo.BZ, Adware.Generic.1225902, Trojan.Generic.12187150
94.00%

Avira AntiVirus
Adware/Downware.925752, Adware/Downware.924720, TR/Trash.Gen
94.00%

avast!
Win32:Adware-gen [Adw], Win32:Malware-gen
94.00%

Emsisoft Anti-Malware
Adware.Generic.1210412, Trojan.Generic.12187150
94.00%

Panda Antivirus
PUP/Citrio
92.00%

IKARUS anti.virus
PUA.Optional.Install, Trojan.Agent
92.00%

Agnitum Outpost
PUA.Downware, Trojan.DownLoad
92.00%

Lavasoft Ad-Aware
Adware.Generic.1210412, Trojan.Generic.12187150
92.00%

MicroWorld eScan
Adware.Generic.1210412, Trojan.Generic.12187150
92.00%

Bitdefender
Adware.Generic.1210412, Trojan.Generic.12187150
92.00%

The domain catalinahub.com has been seen to resolve to the following 3 IP addresses.

May 21, 2015

162-252-82-211.static.hvvc.us
May 1, 2014

199-193-116-231.static.hvvc.us
December 29, 2013

File downloads found at URLs served by catalinahub.com.

26 / 68    (PUP)

10 / 68    (PUP)
http://catalinahub.com/.../CitrioOfflineInstaller.exe  (5b678eb7d275d015f1f85d77c0b9c847)

The following 2 files have been seen to comunicate with catalinahub.com in live environments.

URL:
http://catalinahub.com/

Title:
“Catalina group”

SSL certificate subject:
E=webmaster@catalinahub.com, CN=www.catalinahub.com, C=UA

SSL certificate issuer:
CN=StartCom Class 1 Primary Intermediate Server CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Web server:
Apache/2.2.17 (CentOS)

Remove Malware from catalinahub.com - Powered by Reason Core Security