www.appfindr.org

Catherine Pfannenstiel

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Remove Malware from www.appfindr.org - Powered by Reason Core Security
Registrar:
1API GmbH

Server location:
Arizona, United States (US)

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC

Root domain:

Scanner detections:
Detections  (56% detected)

Scan engine
Details
Detections

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
93.10%

McAfee Web Gateway
Artemis!E4B9C4012DBA, Artemis!2B38427B906F, Artemis!21B267D1A690, Artemis!EF887489D1FE, BehavesLike.Win32.CryptDoma.dc, BehavesLike.Win32.Downloader.kh
68.97%

McAfee
Artemis!E4B9C4012DBA, Artemis!2B38427B906F, Artemis!21B267D1A690, Artemis!EF887489D1FE, Artemis!D1F55A994B44, Artemis!E02D0B838BC8, Artemis!4A8BF95CFAED, Artemis!0C57055C24D0, Artemis!B0AA0C564D61, RDN/Generic Downloader.x, Artemis!56DE7E08C2AB, Artemis!9F9CDA77FF03, Artemis!AE390380DC55
55.17%

SUPERAntiSpyware
Heur.Agent/Gen-WhiteBox, Trojan.Agent/Gen-Downloader
48.28%

AVG
MultiBundle, Could be an adware MultiBundle
44.83%

avast!
Win32:Malware-gen, Win32:Dropper-gen [Drp]
37.93%

Trend Micro House Call
TROJ_GEN.F47V0122, TROJ_GEN.F47V0315, TROJ_GEN.R0CBH07CQ14, TROJ_GEN.R0CBH05KG13, TROJ_GEN.F47V0904, TROJ_GEN.F47V0724, Suspicious_GEN.F47V1221
27.59%

ESET NOD32
Win32/DownWare, Win32/DownWare.AN potentially unwanted, Win32/DownWare.AO potentially unwanted, Win32/DownWare.AB potentially unwanted
27.59%

VIPRE Antivirus
Trojan.Win32.Generic, Trojan.Win32.Generic.pak!cobra, Threat.4657539
27.59%

Dr.Web
Trojan.DownLoader14.51344, Trojan.DownLoader13.42699, Trojan.DownLoader14.64404, Trojan.DownLoader16.62061, Trojan.DownLoader16.8834
24.14%

NANO AntiVirus
Trojan.Win32.DownLoader13.dttvan, Riskware.Nsis.Dloader.dvvnkj, Riskware.Win32.Downware.delvwg
24.14%

Baidu Antivirus
Trojan.Win32.DownWare, Adware.Win32.AppFindr, PUA.Win32.DownWare
20.69%

Kaspersky
not-a-virus:Downloader.NSIS.Agent, UDS:DangerousObject.Multi.Generic
17.24%

Antiy Labs AVL
Trojan/Win32.Generic.gen, Trojan[:HEUR]/Win32.Unknown, Virus/Win32.Sality
13.79%

Kingsoft AntiVirus
VIRUS_UNKNOWN, Win32.Troj.Generic.a.(kcloud)
13.79%

The domain www.appfindr.org has been seen to resolve to the following 3 IP addresses.

May 3, 2015

May 3, 2015

p3nlhg678c1678.shr.prod.phx3.secureserver.net
January 14, 2014

File downloads found at URLs served by www.appfindr.org.

4 / 68      (PUP)

9 / 68      (PUP)

2 / 68
http://www.appfindr.org/.../Adobe_Reader.exe  (7cf7fc0a302cde195e1b35f42832c2a1)

0 / 68
http://www.appfindr.org/.../PDF_Reader.exe  (sumatrapdf-2.5.2-install.exe)

5 / 68      (inconclusive)

8 / 68      (PUP)

9 / 68      (PUP)
http://www.appfindr.org/en/.../download.php  (freepowerpointsetup.exe)

14 / 68    (PUP)
http://www.appfindr.org/en/.../download.php  (freephotoeditorsetup.exe)

0 / 68
http://www.appfindr.org/Hugin.zip  (14c63eb28dbd7f1fc085fdd8a8bbe6dd)

1 / 68      (inconclusive)

6 / 68      (inconclusive)

7 / 68      (PUP)

10 / 68    (PUP)

7 / 68      (PUP)

1 / 68
http://www.appfindr.org/.../Adobe_Flash_Player.exe  (367b491ff048837563c3f272d26045a2)

11 / 68    (PUP)
http://www.appfindr.org/.../Adobe_Flash_Player.exe  (ef887489d1fe73ef3bfc7bfd6728ca5c)

11 / 68    (PUP)
http://www.appfindr.org/.../download.php  (adobe_flash_player.exe)

12 / 68    (PUP)
http://www.appfindr.org/lps/.../Adobe_Flash_Player.exe  (21b267d1a6907a54101ae1a05bd67b76)

12 / 68    (PUP)

URL:
http://www.appfindr.org/

Title:
“AppFindr”

SSL certificate subject:
CN=sni101501.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
cloudflare-nginx

Facebook:
Likes:  2
Shares:  4
Comments:  12

Statistics are for the previous month.

Remove Malware from www.appfindr.org - Powered by Reason Core Security