» direct.mine-a-craft.com
Overview
Analysis
IPs Addresses (1)
Downloads (1)
Website Detail

direct.mine-a-craft.com

WHOISGUARD, INC. (Proxy Registrant)

Domain Information

The domain direct.mine-a-craft.com is registered by proxy through ENOM, INC. and was originally registered in February of 2015. Currently this domain has been known to host various forms of malware. The hosted servers are located in Charlotte, North Carolina within the United States which resides on the AT&T Internet Services network.

Registrant:

WHOISGUARD, INC.

Registrar:

ENOM, INC.

Server location:

North Carolina, United States (US)

Create date:

Thursday, February 26, 2015

Expires date:

Sunday, February 26, 2017

Updated date:

Tuesday, March 10, 2015

ASN:

AS7018 ATT-INTERNET4 - AT&T Services, Inc.,US

Root domain:

mine-a-craft.com

Whois:

1 mine-a-craft.com record

Scanner detections:

Malware distribution (100% detected)

Scan engine

Details

Detections

ESET NOD32

Detection.Undefined

100.00%

SUPERAntiSpyware

Trojan.Agent/Gen-ScriptKD

100.00%

NANO AntiVirus

Trojan.Rar.Arch-Bomb.yngkq

100.00%

Trend Micro House Call

Suspicious_GEN.F47V0425

100.00%

Qihoo 360 Security

HEUR/QVM41.1.Malware.Gen

100.00%

The domain direct.mine-a-craft.com has been seen to resolve to the following IP address.

104.52.64.117

104-52-64-117.lightspeed.chrlnc.sbcglobal.net

May 6, 2015

File downloads found at URLs served by direct.mine-a-craft.com.

5 / 68 (Malware)

http://direct.mine-a-craft.com/65.exe (973008a01521c9c60ca5f0a75457dcd7)

URL:

http://direct.mine-a-craft.com/

Title:

“Home | Mine-A-Craft Servers”

Description:

“Mine-A-Craft Servers”

Web server:

Apache/2.4.12 (Ubuntu)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.