home

www.adscseed.info

Miro Shona

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
GoDaddy.com, LLC

Server location:
Arizona, United States (US)

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

Root domain:
adscseed.info

Whois:
1 adscseed.info record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

avast!
Win32:Adware-gen [Adw], Win32:Malware-gen
100.00%

Kaspersky
not-a-virus:AdWare.Win32.Vonteera, Backdoor.Win32.Farfli, not-a-virus:AdWare.Win32.ExtCrome
100.00%

Emsisoft Anti-Malware
Gen:Variant.Adware.Graftor.173198, Gen:Variant.Zusy.125061, Gen:Variant.Adware.Graftor.174180
100.00%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696
100.00%

McAfee
Artemis!6D9A3FB1569F, Artemis!55F67F9E06E9, Artemis!1744785C9409, Generic PUP.x, Artemis!DC338630A5CE, Program.Artemis!84353C391D14
100.00%

MicroWorld eScan
Gen:Variant.Adware.Graftor.173198, Gen:Variant.Zusy.125061, Gen:Variant.Adware.Graftor.174180
83.33%

Zillya! Antivirus
Adware.Vonteera.Win32.11, Backdoor.Farfli.Win32.1324, Adware.ExtCrome.Win32.256, Trojan.Black.Win32.23541, Adware.ExtCrome.Win32.254
83.33%

K7 AntiVirus
Adware
83.33%

Agnitum Outpost
PUA.Vonteera, Backdoor.Farfli, PUA.ExtCrome
83.33%

Bitdefender
Gen:Variant.Adware.Graftor.173198, Gen:Variant.Zusy.125061, Gen:Variant.Adware.Graftor.174180
83.33%

NANO AntiVirus
Riskware.Win32.Vonteera.doagzy, Trojan.Win32.Farfli.dnfhol, Riskware.Win32.ExtCrome.domqby, Riskware.Win32.Vonteera.dnayet
83.33%

Lavasoft Ad-Aware
Gen:Variant.Adware.Graftor.173198, Gen:Variant.Zusy.125061, Gen:Variant.Adware.Graftor.174180
83.33%

Comodo Security
ApplicUnwnt
83.33%

Sophos
Generic PUA MK, Mal/Generic-S, Generic PUA AL (PUA), Generic PUA CK (PUA), Generic PUA AD (PUA)
83.33%

G Data
Gen:Variant.Adware.Graftor.173198, Gen:Variant.Zusy.125061, Gen:Variant.Adware.Graftor.174180
83.33%

The domain www.adscseed.info has been seen to resolve to the following IP address.

50.63.202.78
ip-50-63-202-78.ip.secureserver.net
February 28, 2016

File downloads found at URLs served by www.adscseed.info.

29 / 68    (Adware)
http://www.adscseed.info/.../32f0236.exe  (1.exe)

11 / 68    (PUP)
http://www.adscseed.info/.../7273edb7.exe  (84353c391d14d20f0abd97744a9ccc15)

11 / 68    (PUP)
http://www.adscseed.info/.../56d24c.exe  (7273edb7.exe)

29 / 68    (Adware)
http://www.adscseed.info/.../3e4536.exe  (1.exe)

31 / 68    (PUP)
http://www.adscseed.info/.../90fe887d.exe  (227f8152.exe)

31 / 68    (PUP)
http://www.adscseed.info/.../227f8152.exe  (4c256f6ae3be5222cabdbe3756ebe95f)

35 / 68    (PUP)
http://www.adscseed.info/.../9440eb2c.exe  (4e7aa9b006.exe)

31 / 68    (PUP)
http://www.adscseed.info/.../971ae74f2.exe  (227f8152.exe)

31 / 68    (PUP)
http://www.adscseed.info/.../9070cae3.exe  (227f8152.exe)

31 / 68    (PUP)
http://www.adscseed.info/.../97d812.exe  (90fe887d.exe)

36 / 68    (PUP)
http://www.adscseed.info/.../751a23df3d.exe  (a88533e8be.exe)

The following 2 files have been seen to comunicate with www.adscseed.info in live environments.

TCP » 50.63.202.78:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 50.63.202.78:80
produpd.exe (produpd.exe by Vested Development, Inc)

URL:
http://www.adscseed.info/

Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)

wrapapp.net

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.