home

a.compcollection.work

Domain Information

Server location:
Arizona, United States (US)

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC

Root domain:
compcollection.work

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.PCUtilities.Task.Meta (M), Threat.Win.Reputation.IMP
100.00%

VIPRE Antivirus
Threat.4732184
20.00%

Dr.Web
Win32.Siggen.7
20.00%

Microsoft Security Essentials
Threat.Undefined
20.00%

McAfee
Virus.W32/Virut.n.gen
20.00%

The domain a.compcollection.work has been seen to resolve to the following 7 IP addresses.

50.63.202.85
ip-50-63-202-85.ip.secureserver.net
June 24, 2016

52.27.128.59
ec2-52-27-128-59.us-west-2.compute.amazonaws.com
May 19, 2016

52.27.128.56
ec2-52-27-128-56.us-west-2.compute.amazonaws.com
May 19, 2016

52.27.128.62
ec2-52-27-128-62.us-west-2.compute.amazonaws.com
May 19, 2016

52.26.142.237
ec2-52-26-142-237.us-west-2.compute.amazonaws.com
June 26, 2015

52.26.130.111
ec2-52-26-130-111.us-west-2.compute.amazonaws.com
June 26, 2015

52.25.121.207
ec2-52-25-121-207.us-west-2.compute.amazonaws.com
June 26, 2015

File downloads found at URLs served by a.compcollection.work.

1 / 68      (Malware)
http://a.compcollection.work/hp/?q=rB3ZVWq2RxgrfABCDWPQZHwrFwA1HMnj6JLGFaRXY5/RVV0DkJ DcJId4YyEXlzYgFCCqlNeeD62qDeQAz 0YTq3V0PPZREzUV77YQhzOqfG Vq15wpBqLeuaE37icP6wdfNQC4OJFBA7C12BDujnPh5TM8u02Tv9gNL0kKgN8/WmQahkWFkLg86gaPRgqGA5ms1kI4EmUQopAAIuU/aiLrkobwH/VN u6NdmJwp6kzyBecAgrqFu/EXNUbDvgWrJEkP3n3PjR 17CMI/qyp771XPOIfxMPEegWR1M2W CgXznKjv4H84dK42IdiwPpW795VGx qqZMSrssQFJxbCPikfa0NuholrRMf9ZE5xZpanEeiz7IwKUyXtdQWaGjWVClV7dx6zStXpXPFnqKe8gNpG4Q3GZm aDof8JrkEkDh59zJtKPPMENhrddjMnM VUMvm/.../ov  (big-game-hrv-6191736.exe)

1 / 68      (Malware)
http://a.compcollection.work/hp/?q=Sep4wDwtzbgp/jlhab7xHbeayN95UnLUV56v2dQ1UQ7mTDzahnXo7ulzdDbuccdg5Z ICbBdN1iY4RuzHnGIkkeRhdAiJwgMuT8nc4KVQUv3bGrnHuuTKXVRi4Mz3VZeydJikirvA 9QkmhqzEzikVFP4a80JIx4eG10yK8akwUcaG5I9pUsOsthWJIdoYY 8sg5Hh6lAUy3JT6lfjH4r2WFS1ySdL gQoMETHCy9gsdGCJGptweWtU5NwBRwBZEn6XGKOMacsez63tbz9DaHUWNCvOJrCM1eFqyRYrElsslOYl/os rk HRLZHRW61T7k9HztADfPwi7AH4Wk nUkvgv 3mjI1zebZGU2oODedq z9lKrvvo6/FAWBix Exy9WzPUnUNADVpnmDXP6oARS98u7VKFEADXk/DXE9RdAjpXfLhD3JUAlcDeWc5PLwub0A a7GvdB2ririNyLcyynUwsiXHeudhLqg7AvEMZB9XxPFG2KYZXkAh/rkHCeEwBaTcVUhCVoj4hYLJTCQPF6mQvlX LM1G32WhfAspY44Ko6Wmv/v8cPLB5wQKJJPdjyWOsVqgw9srt43TH9to HpMZdHPSwneje1wdpxHI1/.../4zfoKDZt0zjfaGxFTMITxifS3taaStCuJMLnpqyJ5OBdP  (adobe-photoshop-cs6.exe)

1 / 68      (Malware)
http://a.compcollection.work/hp/?q=ZCUxCFaBshSLxBCDWYRL/Go BF9kHmT6izh1HIuToaqzBNi7g8gd8n8d/jrGbjirE1XfwDAZhvC7kkQXMKiFY6tbIjiek0O4CvbzWfhUpTYDtMKIxYOIviJx babGDuMTPwX0RB8KV73yncE0FXqm3iHVs7Uapb5T8XCso4neP130Nk1kBD83SxM SFGZZun0PVLrIkAnsPTloTyg4NevUuK5XfDZVJ3bK9WUl8JFKyo0y6MTvQSUk5R/MQ/QgRAhW01WVqGfzZRnR51v9QGEfpq88CsmZAjQKpHESy8zjfobThBkcjh8h19P1xSsNL5gvyU/QgihuDe1F3kxE6jZeo4GRaWZde4LA1Gv6DouSsXSmivw5G8Jj5Vo1/LPMkO0cHCElaDur15K S7xiRLN3qlGEqXBpHhAP e7FD4CFY4l65aHd6PQFxCf0Xl52 m1YwfpJG/aRSqsZFGTOjJ gS71b1pZW lwdvaKTbfpR2l1213VzZJ3NOjoNzJr9Gh05JmhX7dpEK5wkTE2CGtGNKUPq0TTjCTnRauy1bWSYLN7muVmQbbD3oXfu8xiwQHqadgXvY/3KeYW2P73nbcupK44lT1RjEUET1OtczsDTdQeTFWhnXpsphGdDn8SrsrWsQ/ wMtXyIBLb9vMl4N5j1CVFXGTrMU40sh5TmLyggFoQ7DVBUDt85RE77kltY8lVk/.../mQHM294Med2V6EKOfi6o0gAtpWk8QG6dYDxFtcRNUkpeUcOohHRESyWFA0CoWujTuLGQ8Kd MFNFQh6 PWGmRb2FU22epCKqLEJsp2Q7EQp02DYsbyTGXng12O69J0HnMpdQqAkc mt7bzRe6y2YuefFC5sTXrjVRsaN0EeUBC7aI3ayTgylHaKE1jPZE2rJshMlCwHBj88bQBgzi sQHdcWq0RN  (ru_zsa magdolna - prilis.exe)

1 / 68      (Malware)
http://a.compcollection.work/hp/?q=H57P2rtkEJr2DWYSUMFusRUZECQRit620gWZDjSN8YucJkU2opwcNyfs4J boxraPB3OfQlj09qU4O0XM6fxZyqDchA0WvWIfTHT0DuiNTF7yXa/52qg8juX3MFBHaxoKetHC6Fa7XHrF5Jw7wPc5IzHlNXChPZgdm6tVff3oS/KkybThl4MkyeRzwfDBt39/ivoHQ7pHvvI6gwpa ZZnZC/hu1FmUwjbH6eRE6Lb5COY5C 8K7LDdlKCS8LBPvran8k6RPU8ttUpMJWcLrsMClsVQrKFxDNFaYjej7qAstbYygiP1omItkpbKPtwfEUej8aR1ZsZVStCPP72L/hJ7 a1qh1xPMBzzZa/jpyfita3Aw9wOVrSSohqAhDantSqFVGPS3w0e 3ij62wpQOlPpUEFi2ju4rHEjaoj05/.../kJHGfkEYCybkFuhsZ6UM7y6b C79tVFaDOuLTFu041eeZP4lTmzjPKBmuVDaxlWTsRgEjYOdP1en6gxGOuA9CBqjvn72pzppDGlBPSeI KQ6FK637FWiYFyVc6 uVS7ERwlAEJWPFX6I6TCfdzXTl5rUXQPe9wyd64sHKSVbUhi6afQ44S4Aj2Y3p 5KZH0Pg0  (minecraft_26565.exe)

5 / 68      (PUP)
http://a.compcollection.work/hp/?q=M1k79wDOXJBljEG xziWayGduj6yqp48Gpecd9XF2xItNnSRziEaEsospmlbMrGMF/EiFnj8gvuu6zL4Hl4t8W1AdWaHRXQgJOZyxhJlezFQ2F ijlOBFmQ9gAnPHgWC mR3M93pYgYQfoks9Q6jnu6PcU dcOhVpNMKcZ Bb51T0sdKcx0wSGe0TGkKFtdKwa6cnhDZJZ0Cyq/hnEkQw0kqZyWm4aa5mdq7Nf 6M0EZMlYfsHGrkxeqP480/1MVB0oSTv/k2z7QDA7DhuTVBi1JhtYr1OTGMGkAo8EXC/b29reJnPqsfzjY0QhTyB2ash6cK/g R7lXat9tfu/HgW4svRB1tquWZJxnui5giBqjtSKw 0IGcwLiwJzqhRxKSa1enyjP4U/dXHzQIHeNP05kpUWoTGYKKKWgL /zyQiLArdlY3Y3Idnr/LrxaSa9uF eFw8BFypWFDxafolezbsCJ6GxVC09SyG6igOTtTK1rI2U 5I3PCBDCoYyxv2GUipxXmFeP7YrlQsCK ntOUCrB/AMECQMfLTTaWmMFok3z/OOwAOITjbwrinQ9cKKkTuT8tovxtKowzfY8XIb/.../eVfkSNqqXhRGC57HIjqomfqsuWbJ0sOiiCWtbvpqnK4i2FEq17C1NW0RJkjWSHeRBLQmqOd2C TLFaoGvs3ZI4cGDR1fWn9PKjn mvxZ9tkNpHMQBMmsCcS1 Jb579NVZvMZsXX6mMk bprUKWJ rBM9J hM9  (youwave_android-3.21 _crck_(ask4pc).zip.exe)

The following 3 files have been seen to comunicate with a.compcollection.work in live environments.

TCP » 50.63.202.85:80
tunnel.exe (by Microsoft)

TCP » 52.27.128.56:80
updating.exe

TCP » 52.27.128.59:80
download.exe

TCP » 52.27.128.62:80
updating.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.