The domain m.icolor19495344.com registered by GXM was initially registered in January of 2015 through TODAYNIC.COM, INC.. Currently this domain has been known to host various forms of malware. The hosted servers are located in Saint Petersburg, Saint Petersburg City within Russia which resides on the RIPE Network Coordination Centre network.
Registrar:
TODAYNIC.COM, INC.
Server location:
Saint Petersburg City, Russia (RU)
Create date:
Monday, January 19, 2015
Expires date:
Thursday, January 19, 2017
Updated date:
Thursday, November 26, 2015
ASN:
AS44050 PIN-AS Petersburg Internet Network ltd.,RU
Scanner detections:
Malware distribution (100% detected)
Scan engine
Details
Detections
Bkav FE
HW64.Paked, HW64.packed, W64.HfsAutoA
100.00%
McAfee
Artemis!EEDB9D86AE8A, Artemis!37E2490D6C93, Artemis!9D8F08C4F840
100.00%
Agnitum Outpost
Trojan.CoinMiner
100.00%
Trend Micro House Call
TROJ_GEN.R0CBH05I314, TROJ_GEN.R047H05K114, TROJ_GEN.R08NC0RE615
100.00%
Comodo Security
UnclassifiedMalware
100.00%
ESET NOD32
Win64/CoinMiner.J trojan, Win64/CoinMiner.X trojan
100.00%
IKARUS anti.virus
Trojan.Win64.CoinMiner
100.00%
AVG
Skodna.BitCoinMiner, Atros
100.00%
Baidu Antivirus
Hacktool.Win32.Bitcoinminer, Trojan.Win64.CoinMiner, Hacktool.Win64.BitCoinMiner
100.00%
VIPRE Antivirus
Threat.4150696, Trojan.Win32.Generic
100.00%
F-Secure
Trojan:W32/BitCoinMiner.G, Trojan.GenericKD.3325592, Trojan.Generic.13166951
100.00%
Kaspersky
not-a-virus:RiskTool.Win64.BitCoinMiner, Trojan.Win64.BitMin
100.00%
Emsisoft Anti-Malware
Application.Bitcoinminer.HH, Application.BitCoinminer.GH, Trojan.Generic.13166951
100.00%
Dr.Web
hacktool program Tool.BtcMine.431, hacktool program Tool.BtcMine.476
66.67%
AhnLab V3 Security
Trojan/Win64.BitCoinMiner
66.67%
The domain m.icolor19495344.com has been seen to resolve to the following IP address.
File downloads found at URLs served by m.icolor19495344.com.
URL:
http://m.icolor19495344.com/
Web server:
nginx/1.2.1 (PHP/5.4.41-0+deb7u1)
Related Domains