» paiyafototips.com
Overview
Analysis
IPs Addresses (6)
Downloads (21)
Website Detail

paiyafototips.com

Domain Registries Foundation

Domain Information

The domain paiyafototips.com registered by Domain Registries Foundation was initially registered in April of 2016 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Zurich, Zurich within Switzerland which resides on the RIPE Network Coordination Centre network.

Registrant:

Domain Registries Foundation

Registrar:

GODADDY.COM, LLC

Server location:

Zurich, Switzerland (CH)

Create date:

Wednesday, April 27, 2016

Expires date:

Thursday, April 27, 2017

Updated date:

Wednesday, April 27, 2016

ASN:

AS40034 CONFLUENCE-NETWORK-INC - Confluence Networks Inc,VG

Whois:

1 paiyafototips.com record

Scanner detections:

Detections (83% detected)

Scan engine

Details

Detections

Reason Heuristics

Adware.Downloader (M), Adware.Bundler.Itgms.Meta (M), Adware.Downloader.Itgms.Meta (M), PUP.RabahAzr (M)

72.73%

F-Secure

Application:W32/Generic.70053c248f!Online, Variant.Symmi.33879, Variant.Zusy.189545, Variant.Symmi.42459

36.36%

Emsisoft Anti-Malware

Gen:Variant.Symmi.33879, Gen:Variant.Symmi.48000, Gen:Variant.Zusy.189545, Gen:Variant.Symmi.42459

36.36%

Norman

Gen:Variant.Symmi.33879, Gen:Variant.Symmi.48000, Gen:Variant.Zusy.189545, Gen:Variant.Symmi.42459

36.36%

Microsoft Security Essentials

Worm:Win32/NeksMiner.A, Threat.Undefined

27.27%

ESET NOD32

Win32/Injector.CXJL trojan, Win32/Kovter.D trojan

18.18%

Kaspersky

Trojan.Win32.Ocna, Trojan.Win32.Kovter

18.18%

Dr.Web

Trojan.DownLoader21.30574

9.09%

avast!

Win32:Injector-CUL [Trj]

9.09%

The domain paiyafototips.com has been seen to resolve to the following 6 IP addresses.

June 7, 2016

June 7, 2016

June 7, 2016

May 27, 2016

May 26, 2016

May 23, 2016

File downloads found at URLs served by paiyafototips.com.

1 / 68 (PUP)

https://paiyafototips.com/913410441952/913410441952/.../FlashPlayer.exe (Kapitalkontoer1.exe)

1 / 68 (PUP)

https://paiyafototips.com/2031633318239/2031633318239/.../FlashPlayer.exe (79e72d5e04220b186681897e67d87f68)

3 / 68 (Malware)

https://paiyafototips.com/5881279905633/5881279905633/.../FlashPlayer.exe (c1f163032a77f05fd79b2a2bc456f981)

1 / 68 (PUP)

https://paiyafototips.com/6432889358118/6432889358118/.../FlashPlayer.exe (Kapitalkontoer1.exe)

1 / 68 (PUP)

https://paiyafototips.com/396758412098/396758412098/.../FlashPlayer.exe (alrdofpe.exe)

5 / 68 (PUP)

https://paiyafototips.com/3682925795240/3682925795240/.../FlashPlayer.exe (e7dc6f82bb57263f23da8fbad00a74ec)

1 / 68 (PUP)

https://paiyafototips.com/7122913878655/7122913878655/.../FlashPlayer.exe (stbndpch.exe)

2 / 68 (false positives)

https://paiyafototips.com/7391165453379/7391165453379/.../FlashPlayer.exe (wrar420.exe)

1 / 68 (PUP)

https://paiyafototips.com/5802889488498/5802889488498/.../FlashPlayer.exe (Kapitalkontoer1.exe)

1 / 68 (PUP)

https://paiyafototips.com/662417613001/662417613001/.../FlashPlayer.exe (00842e737cb0240e0fbdd0e96394f3d9)

0 / 68

https://paiyafototips.com/818409659689/818409659689/.../FlashPlayer.exe (351d9a013296104be457266814c117c9)

6 / 68 (PUP)

https://paiyafototips.com/4162890811108/4162890811108/.../FlashPlayer.exe (c91eb5ce16804180d6ab2b27386ecf32)

1 / 68 (PUP)

https://paiyafototips.com/488841447744/488841447744/.../FlashPlayer.exe (79e72d5e04220b186681897e67d87f68)

1 / 68 (PUP)

https://paiyafototips.com/8211219609195/8211219609195/.../FlashPlayer.exe (79e72d5e04220b186681897e67d87f68)

1 / 68 (PUP)

https://paiyafototips.com/9182395327380/9182395327380/.../FlashPlayer.exe (Kapitalkontoer1.exe)

1 / 68 (PUP)

https://paiyafototips.com/3501182706266/3501182706266/.../FlashPlayer.exe (Kapitalkontoer1.exe)

1 / 68 (PUP)

https://paiyafototips.com/9641748664789/9641748664789/.../FlashPlayer.exe (9aytos2i.exe)

1 / 68 (PUP)

https://paiyafototips.com/6142913410054/6142913410054/.../FlashPlayer.exe (alrdofpe.exe)

1 / 68 (PUP)

https://paiyafototips.com/7572926024809/7572926024809/.../FlashPlayer.exe (stbndpch.exe)

1 / 68 (PUP)

https://paiyafototips.com/7192886311214/7192886311214/.../FlashPlayer.exe (alrdofpe.exe)

7 / 68 (Malware)

https://paiyafototips.com/8191645476877/8191645476877/.../FlashPlayer.exe (3599689227d1646023e16f176d7c2e13)

URL:

http://paiyafototips.com/

Title:

“paiyafototips.com”

Web server:

Apache

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.