rss2search.com

Web Hosting Logic, Inc

Domain Information

The domain rss2search.com registered by Web Hosting Logic, Inc was initially registered in January of 2008 through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Manhattan, New York within the United States which resides on the AnchorFree Inc. network.
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM

Server location:
New York, United States (US)

Create date:
Friday, January 04, 2008

Expires date:
Monday, January 04, 2021

Updated date:
Friday, December 11, 2015

ASN:
AS26642 AFAS - AnchorFree Inc.,US

Scanner detections:
Detections  (72% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.BetterInstaller.Somoto.W, PUP.MP3Support.O, PUP.Installer.MP3Support.J, PUP.Installer.BonjoySoftware, PUP.DriverDownloader.PDEpubli.Installer.Meta (M), PUP.Perion Partner.PaloAltoTechnologies.Bundler (M), Win32.Generic, PUP.Adknowledge.INSTALLDOTEXE.Installer (M), PUP.Adknowledge.FUSIONINSTALLER.Installer (M), PUP.Adknowledge.BuildInp.Bundler (M), PUP.Inbox.Installer (M), Adware.WebPick.Installer (M), PUP.Tuguu.TuguuIsr.Bundler (M), PUP.Softpulse.Bundler (M), PUP.installCore.Bestopap.Installer (M), PUP.SquareNe.Installer (M), PUP.Tuguu.Payments.Bundler (M), PUP.Tuguu.TuguuU.Bundler (M), PUP.CoolMirage.Installer (M), PUP.Performersoft.R2D2Tech.Bundler (M), PUP.Softonic.Bundler (M), PUP.Outbrowse.Bundler (M), Adware (M), PUP.Tuguu (M), PUP (M), PUP.Softpulse.DigitalP.Bundler (M), PUP.Solimba (M), PUP.installCore (M)
86.84%

Dr.Web
Adware.Downware.1184, Adware.Toolbar.276, Adware.OpenCandy.72, Program.Unwanted.115, Adware.OpenCandy.139, riskware program Program.Unwanted.493
26.32%

ESET NOD32
Win32/OpenCandy (variant), Win32/InstallCore.PQ (variant), Win32/OpenCandy.A potentially unsafe (variant), Win32/SoftonicDownloader (variant)
21.05%

Malwarebytes
PUP.Optional.Somoto, PUP.Optional.ReImageRepair.A, PUP.Optional.Softonic, PUP.Optional.SearchSuite, PUP.Optional.InstallCore
18.42%

K7 AntiVirus
Unwanted-Program , Adware
18.42%

K7 Gateway Antivirus
Unwanted-Program
18.42%

Avira AntiVirus
APPL/Somoto.itv.38, ADWARE/InstallCore.Gen7, W32/Virut.Gen, APPL/Dldr.Softonic.371032, PUA/SeaSuite.Gen, APPL/Inbox.H.23
18.42%

Antiy Labs AVL
Downloader/NSIS.Agent.gen, Virus/Win32.Virut.ce, RiskWare[Downloader]/Win32.Agent.djbe, GrayWare[Downloader:not-a-virus]/Win32.Agent.bxib
18.42%

McAfee
Artemis!04172528BF95, Artemis!ACC7CAA5F5E5, Artemis!61CC5EB8581F, Artemis!E8C3BC80F1D0, Artemis!72CB31555DA5, Artemis!2BD5BACBB0FE
18.42%

McAfee Web Gateway
BehavesLike.Win32.BadFile.tc, Artemis, BehavesLike.Win32.Downloader.fc, BehavesLike.Win32.Obfuscated.vc, Artemis!5032EA165D47
18.42%

Bkav FE
W32.Clod1df.Trojan, W32.HfsAdware
15.79%

Trend Micro House Call
TROJ_GEN.R0CBH0AJ613, Suspicious_GEN.F47V1210, Suspicious_GEN.F47V0305, TROJ_GEN.R0C1H07DH15, Suspicious_GEN.F47V0520, TROJ_GEN.F47V0127
15.79%

VIPRE Antivirus
BetterInstaller, Opencandy, Softonic Downloader, Threat.4150696, Optimum Installer
15.79%

G Data
Win32.Application.Somoto, Win32.Virtob.Gen.12, Win32.Trojan.Agent.95WKEY, Win32.Adware.Softonic, Win32.Application.ToolbarCrawler
15.79%

Fortinet FortiGate
Riskware/OpenCandy, W32/Virut.CE.gen, Riskware/ReImageRepair, Riskware/Agent, Riskware/IBryte
15.79%

The domain rss2search.com has been seen to resolve to the following 4 IP addresses.

74-115-0-211.anchorfree.com
January 16, 2015

74-115-1-135.anchorfree.com
January 16, 2015

74-115-0-51.anchorfree.com
January 31, 2014

74-115-0-7.anchorfree.com
January 31, 2014

File downloads found at URLs served by rss2search.com.

 
Latest 30 of 65 download URLs

The following 179 files have been seen to comunicate with rss2search.com in live environments.

 
Latest 20 of 339 files

URL:
http://rss2search.com/

Title:
“AnchorFree”

Web server:
hefishkUtZiafopyoshGeOnnIbDoufye (PHP/5.5.13)

Facebook:
Likes:  12
Shares:  52
Comments:  23

Statistics above are for the previous month of July 2017.