The domain exeupp.com is registered by proxy through GODADDY.COM, LLC and was originally registered in May of 2015. Currently this domain has been known to host various forms of malware. The hosted servers are located in Toronto, Ontario within Canada which resides on the Softcom Technology Consulting Inc. network.
Registrant:
Domains By Proxy, LLC
Registrar:
GODADDY.COM, LLC
Server location:
Ontario, Canada (CA)
Create date:
Monday, May 18, 2015
Expires date:
Wednesday, May 18, 2016
Updated date:
Sunday, November 22, 2015
ASN:
AS14166 SOFTCOMCA - Softcom Technology Consulting Inc.,CA
Google Safe Browsing:
malware,unwanted
Scanner detections:
Malware distribution (95% detected)
Scan engine
Details
Detections
avast!
Win32:Malware-gen, MSIL:GenMalicious-BFD [Trj], Win32:Neurevt-J [Cryp], MSIL:Bladabindi-JK [Trj], MSIL:Agent-AOL [Trj], MSIL:GenMalicious-FBE [PUP]
66.67%
ESET NOD32
MSIL/Injector.MOF trojan, Win32/Neurevt.B trojan, MSIL/Bladabindi.BH trojan, MSIL/Bladabindi.AS trojan, MSIL/TrojanDownloader.Agent.BHJ trojan, Win32/Injector.Autoit.CHY trojan, Win32/Injector.Autoit.CIZ trojan
61.90%
Emsisoft Anti-Malware
Gen:Variant.Kazy.769116, Trojan.GenericKD.2681779, Gen:Variant.MSIL.Bladabindi, Gen:Variant.Razy.5877, Gen:Variant.Barys.12028, Gen:Variant.Barys.10229
52.38%
Microsoft Security Essentials
Trojan:Win32/Skeeyah.A!rfn, Backdoor:MSIL/Bladabindi, Threat.Undefined
52.38%
Dr.Web
BackDoor.Bladabindi.1056, Trojan.DownLoader17.52584, Trojan.Betabot.3, Trojan.DownLoader18.23009, DDoS.MP.5, Trojan.MulDrop6.39241
38.10%
McAfee
Artemis!DE55E6077C7C, RDN/Generic.dx, Trojan.BackDoor-NJRat!8D80B9BCC616, Trojan.BackDoor-NJRat!30B69885FD65, Trojan.BackDoor-NJRat!11C57FEF7962
33.33%
VIPRE Antivirus
Trojan.Win32.Generic, Threat.4799966, Threat.4779127
33.33%
Kaspersky
HEUR:Trojan.Win32.Generic, Trojan.MSIL.Disfa, Backdoor.Win32.Agent
33.33%
NANO AntiVirus
Trojan.Win32.Kryptik.dypprt, Trojan.Win32.Disfa.dvuado, Trojan.Win32.FrauDrop.dkmxxh, Trojan.Win32.Bladabindi.dzdhhs, Trojan.Win32.SwapMouse.edeygn
23.81%
Norman
Gen:Variant.Tdss.27, Gen:Variant.Barys.12028, Generic.Malware.SFdld.602C5444, AIT:Trojan.GenericTKA.371, Gen:Variant.Barys.10229
23.81%
K7 AntiVirus
Trojan
19.05%
ESET NOD32
MSIL/Kryptik.DYD (variant), MSIL/Kryptik.CXY (variant), MSIL/Kryptik.BNX (variant), MSIL/Kryptik.EKC (variant)
19.05%
Sophos
Mal/Generic-S, Virus 'Mal/Neurevt-A'
19.05%
IKARUS anti.virus
Trojan.MSIL.Crypt, Trojan.Win32.Pakes, Backdoor.MSIL.Bladabindi, Trojan.MSIL.Bladabindi
19.05%
Fortinet FortiGate
MSIL/Kryptik.DYD!tr, MSIL/Kryptik.CXY!tr, MSIL/Kryptik.AZG!tr, MSIL/Kryptik.EKC!tr
19.05%
The domain exeupp.com has been seen to resolve to the following IP address.
vps-1171693-24206.manage.myhosting.com
December 19, 2015
File downloads found at URLs served by exeupp.com.
Subdomains
Google Analytics:
UA-71094201
Title:
“Upload Files - Direct EXE UPLOAD”
Description:
“Upload, share, track, manage your files in one simple to use file host.”
SSL certificate subject:
CN=www.exeupp.com, OU=PositiveSSL, OU=Domain Control Validated
SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
Web server:
Apache/2.2.31 (Unix) mod_ssl/2.2.31 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 (PHP/5.3.29)
Facebook:
Likes: 2
Shares: 11
Comments: 20
Statistics above are for the previous month of October 2024.