evaporez.com

Gabrielle Ezerzer

Domain Information

The domain evaporez.com registered by Gabrielle Ezerzer was initially registered in March of 2014 through GODADDY.COM, LLC. Currently this domain has been known to host various forms of malware. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Friday, March 14, 2014

Expires date:
Tuesday, March 14, 2017

Updated date:
Saturday, March 26, 2016

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

Scanner detections:
Malware distribution  (94% detected)

Scan engine
Details
Detections

Kaspersky
Trojan-Dropper.Win32.Injector, UDS:DangerousObject.Multi.Generic, Trojan.Win32.Diple, Backdoor.Win32.Androm, Trojan.Win32.Yakes, Trojan.Win32.Agent.netdrm
100.00%

avast!
Win32:Malware-gen, Win32:Dropper-gen [Drp]
76.47%

Dr.Web
Win32.HLLW.Phorpiex.54, Trojan.PWS.Siggen1.41536, Trojan.Siggen6.23087, Trojan.Inject2.8376
76.47%

Qihoo 360 Security
Win32/Trojan.Dropper.b98, QVM19.1.Malware.Gen, QVM05.1.Malware.Gen, HEUR/QVM10.1.Malware.Gen, HEUR/QVM05.1.Malware.Gen, HEUR/QVM42.1.Malware.Gen
76.47%

McAfee
GenericR-EYH!C68EB71A17E6, GenericR-EYH!8E47BAFAE56F, Trojan.Artemis!D1F5874259BC, Artemis!E3F68F7A342B, Virus.Artemis!3B12F3E0F015, Artemis!17F71169DD15
70.59%

ESET NOD32
Win32/Injector.CLUQ (variant), Win32/Injector.CLWY (variant), Win32/Boaxxe.BR, Win32/Injector.CMAR (variant), Win32/Injector.CMHG (variant)
70.59%

Emsisoft Anti-Malware
Gen:Variant.Zusy.168537, Trojan.Win32.Injector, Gen:Variant.Mikey.27490, Trojan.GenericKD.2865766, Trojan.GenericKD.2867415
70.59%

Avira AntiVirus
DR/Delphi.A.9444, DR/Delphi.A.9430, TR/AD.Boaxxe.Y.347, TR/Crypt.Xpack.313468, TR/Crypt.Xpack.313859, TR/Injector.47616.17
70.59%

Baidu Antivirus
Trojan.Win32.Dropper, Backdoor.Win32.Androm, Trojan.Win32.Generik, Trojan.Win32.Injector
70.59%

K7 AntiVirus
Trojan
64.71%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.144508, Backdoor.IRCBot
64.71%

G Data
Gen:Variant.Zusy.168537, Win32.Trojan.Agent.3GYTB8, Gen:Variant.Mikey.27490, Trojan.GenericKD.2865766, Win32.Trojan.Agent.76INR3
64.71%

MicroWorld eScan
Gen:Variant.Zusy.168537, Gen:Variant.Mikey.27490, Trojan.GenericKD.2865766, Trojan.GenericKD.2867415, Trojan.GenericKD.2853521
58.82%

NANO AntiVirus
Trojan.Win32.Injector.dylvmi, Trojan.Win32.Androm.dymkky, Trojan.Win32.Agent.dyoyju
58.82%

Bitdefender
Gen:Variant.Zusy.168537, Gen:Variant.Mikey.27490, Trojan.GenericKD.2865766, Trojan.GenericKD.2867415, Trojan.GenericKD.2853521
58.82%

The domain evaporez.com has been seen to resolve to the following 8 IP addresses.

ec2-52-4-72-137.compute-1.amazonaws.com
July 1, 2016

ec2-107-23-198-240.compute-1.amazonaws.com
July 1, 2016

ec2-52-200-243-123.compute-1.amazonaws.com
June 28, 2016

ec2-54-152-144-243.compute-1.amazonaws.com
June 28, 2016

ec2-107-23-195-178.compute-1.amazonaws.com
June 5, 2016

ec2-52-20-195-18.compute-1.amazonaws.com
June 5, 2016

ip-50-63-202-52.ip.secureserver.net
April 14, 2016

50-87-150-231.unifiedlayer.com
February 23, 2016

File downloads found at URLs served by evaporez.com.

0 / 68
http://evaporez.com/wrk.exe  (14e784ad8988d2d7080fd16d42bfafe6)

5 / 68      (Malware)
http://evaporez.com/ppc.exe  (seqbklhbam.exe)

25 / 68    (Malware)
http://evaporez.com/t.exe  (device manager.exe)

6 / 68      (Malware)
http://evaporez.com/ppc.exe  (bzpfyosvbc.exe)

2 / 68      (Malware)

17 / 68    (Malware)
http://evaporez.com/work.exe  (ajmewmvvkl.exe)

17 / 68    (Malware)
http://evaporez.com/ppc.exe  (xwhmbpviwk.exe)

31 / 68    (PUP)

5 / 68      (Malware)
http://evaporez.com/wrk.exe  (upknafnvem.exe)

16 / 68    (Malware)

23 / 68    (Malware)
http://evaporez.com/w.exe  (diujtvgfht.exe)

18 / 68    (Malware)
http://evaporez.com/t.exe  (ffdcqhhtzi.exe)

10 / 68    (Malware)
http://evaporez.com/trk.exe  (lyrxoapgly.exe)

34 / 68    (PUP)
http://evaporez.com/x.exe  (bhhbzlbssd.exe)

31 / 68    (PUP)
http://evaporez.com/tupd.exe  (oeuewveria.exe)

33 / 68    (PUP)
http://evaporez.com/ww.exe  (avggrkabmd.exe)

27 / 68    (PUP)
http://evaporez.com/w.exe  (ogxaeeakys.exe)

17 / 68    (Malware)
http://evaporez.com/tn.exe  (qxngdfyszg.exe)

The following 103 files have been seen to comunicate with evaporez.com in live environments.

 
Latest 20 of 104 files

URL:
http://evaporez.com/

Title:
“Site Unavailable”

Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)

Facebook:
Likes:  5
Shares:  1

Statistics above are for the previous month of November 2024.