home

cdn.ijnewhb.com

Linkury

Domain Information

The domain cdn.ijnewhb.com registered by Linkury was initially registered in November of 2015 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Los Angeles, California within the United States which resides on the EdgeCast Networks, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
California, United States (US)

Create date:
Monday, November 9, 2015

Expires date:
Thursday, November 9, 2017

Updated date:
Monday, November 9, 2015

ASN:
AS15133 EDGECAST - EdgeCast Networks, Inc.,US

Root domain:
ijnewhb.com

Whois:
1 ijnewhb.com record

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (92% detected)

Scan engine
Details
Detections

Dr.Web
Trojan.Revizer.958, infected with Trojan.Revizer.958, infected with Trojan.Revizer.973, infected with Trojan.Revizer.981, Win32.Sector.30
67.35%

Emsisoft Anti-Malware
Gen:Variant.Midie.5593, Gen:Variant.Adware.Midie.5593, Gen:Variant.Application.Graftor.264544, Gen:Variant.Mikey.29785, Adware.Generic.1476084, Gen:Variant.Midie.6387
67.35%

Norman
Gen:Variant.Graftor.264544, Gen:Variant.Adware.Midie.5593, Gen:Variant.Application.Graftor.264544, Gen:Variant.Mikey.29785
51.02%

McAfee
GenericR-FNF!A000E70244D4, Artemis!7AA71C937CB7, Trojan.Artemis!5F7F889B64B8, Trojan.Artemis!EDA61930F262, GenericR-FOI!991C0BFF1A0C, Trojan.GenericR-FRC!15BC1536519C, Trojan.RDN/Generic.mem
42.86%

ESET NOD32
Detection.Undefined, Win32/Toolbar.Linkury.AN potentially unwanted application, Win32/Sality.NBA virus
36.73%

Avira AntiVirus
ADWARE/Adware.Gen
24.49%

MicroWorld eScan
Gen:Variant.Midie.5593, Gen:Variant.Adware.Midie.5593, Gen:Variant.Mikey.29785, Gen:Variant.Application.Graftor.264544, Gen:Variant.Midie.6387, Rootkit.76103, Gen:Variant.Graftor.264544, Rootkit.76108
24.49%

Bitdefender
Gen:Variant.Midie.5593, Gen:Variant.Adware.Midie.5593, Gen:Variant.Mikey.29785, Gen:Variant.Application.Graftor.264544, Gen:Variant.Midie.6387
24.49%

Agnitum Outpost
PUA.Toolbar.Linkury
24.49%

Arcabit
Trojan.Midie.D15D9, Trojan.Adware.Midie.D15D9, Trojan.Mikey.D7459, Trojan.Application.Graftor.D40960, Trojan.Midie.D18F3
24.49%

G Data
Gen:Variant.Midie.5593, Gen:Variant.Adware.Midie.5593, Gen:Variant.Mikey.29785, Gen:Variant.Application.Graftor.264544, Gen:Variant.Midie.6387
24.49%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696
24.49%

Kaspersky
UDS:DangerousObject.Multi.Generic, Trojan-Dropper.Win32.Agent, Virus.Win32.Sality
22.45%

F-Secure
Gen:Variant.Graftor.264544, Gen:Variant.Adware.Midie, Gen:Variant.Mikey.29785, Gen:Variant.Application.Graftor, Rootkit.76103
22.45%

Sophos
Generic PUA MD (PUA), Generic PUA JO (PUA), Generic PUA HN (PUA), Generic PUA IM (PUA), Generic PUA PL (PUA), Generic PUA LN (PUA)
20.41%

The domain cdn.ijnewhb.com has been seen to resolve to the following IP address.

72.21.81.200
January 5, 2016

File downloads found at URLs served by cdn.ijnewhb.com.

11 / 68    (PUP)
http://cdn.ijnewhb.com/apdata/installers/installer/SafeFinder-AP/.../linker.exe  (adv_233.exe)

3 / 68      (PUP)
http://cdn.ijnewhb.com/apdata/installers/.../linker.exe  (d366148578f585d098052be4f77d0bc5)

10 / 68    (Malware)
http://cdn.ijnewhb.com/apdata/installers/installer/installers-config/safefinder-ap/.../statest.exe  (f6b46d817f8e08ba5f5b978e91e1a210)

URL:
http://cdn.ijnewhb.com/

Web server:
Microsoft-HTTPAPI/2.0

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.