home

www.gaappraiser.com

Interland Inc.

Domain Information

The domain www.gaappraiser.com registered by Interland Inc. was initially registered in November of 2001 through REGISTER.COM, INC.. Currently this domain has been known to host various forms of malware. The hosted servers are located in Sauk Centre, Minnesota within the United States which resides on the Web.com, Inc. network.
Registrar:
REGISTER.COM, INC.

Server location:
Minnesota, United States (US)

Create date:
Thursday, November 29, 2001

Expires date:
Wednesday, November 29, 2017

Updated date:
Monday, September 21, 2015

ASN:
AS36476 WEB-COM-ASN1 - Web.com, Inc.

Root domain:
gaappraiser.com

Whois:
1 gaappraiser.com record

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

McAfee
Artemis!4085CE297359
100.00%

Agnitum Outpost
Trojan.MulDrop
100.00%

Norman
Agent.WZZP
100.00%

Trend Micro House Call
Suspicious_GEN.F47V0310
100.00%

avast!
Win32:Malware-gen
100.00%

Clam AntiVirus
Win.Trojan.Agent-637712
100.00%

Dr.Web
Trojan.MulDrop3.46750
100.00%

G Data
Win32.Trojan.Agent.6GG2E0
100.00%

Rising Antivirus
PE:Trojan.DL.Microjoin.eu!1173743880
100.00%

IKARUS anti.virus
Trojan.Agent4
100.00%

AVG
Agent4.TFY.dropper
100.00%

Qihoo 360 Security
HEUR/QVM20.1.Malware.Gen
100.00%

The domain www.gaappraiser.com has been seen to resolve to the following IP address.

209.237.150.20
2358549.sites.myregisteredsite.com
January 6, 2016

File downloads found at URLs served by www.gaappraiser.com.

12 / 68    (Malware)
http://www.gaappraiser.com/.../analyzer4.exe  (4085ce297359d9cefc565125d90654e2)

The following 8 files have been seen to comunicate with www.gaappraiser.com in live environments.

TCP » 209.237.150.20:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.237.150.20:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.237.150.20:80
ssn.exe (ssn)

TCP » 209.237.150.20:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.237.150.20:80
online-guardian-v2.0.9.exe

TCP » 209.237.150.20:80
GrooveMonitor.exe (GrooveMonitor Utility by Microsoft)

TCP » 209.237.150.20:80
SMax4PNP.exe (SMax4PNP Application by Analog Devices)

TCP » 209.237.150.20:80
instatime.exe

URL:
http://www.gaappraiser.com/

Title:
“Georgia Appraiser”

Web server:
Apache

cadrail.com

cammotion.com

chordfind.com

connect2geek.com

daytona-twintec.com

dhal.com

dharma-haven.org

dvd--copy.net

enforcer.com.tw

fepinfo.com

foresoft.com

fototagger.com

galaxyfaraway.com

howarddavidjohnson.com

kellyware.com

khalids.com

kusterco.com

labelvision.com

medlog.com

morrisonmarket.com

net2.com

opto-pps.com

pragsoft.com

quicdoc.com

sagecollege.edu

softtruck.com

studiotekprinting.com

udadownload.com

usbman.com

zootsoftware.com

30 of 30 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.