home

m.ulozto.cz

Domain Information

Server location:
Hlavni Mesto Praha, Czech Republic (CZ)

ASN:
AS6830 LGI-UPC Liberty Global Operations B.V.

Root domain:
ulozto.cz

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

ESET NOD32
MSIL/Bladabindi.BC trojan
50.00%

Reason Heuristics
Trojan.Bladabindi (M)
50.00%

MicroWorld eScan
Gen:Variant.Strictor.87917
50.00%

K7 AntiVirus
Trojan
50.00%

Arcabit
Trojan.Strictor.D1576D
50.00%

ESET NOD32
MSIL/Kryptik.CHS (variant)
50.00%

Trend Micro House Call
TROJ_GEN.R00JB01FF15
50.00%

avast!
MSIL:GenMalicious-HA [Trj]
50.00%

Kaspersky
Trojan.MSIL.Disfa
50.00%

Bitdefender
Gen:Variant.Strictor.87917
50.00%

NANO AntiVirus
Trojan.Win32.Disfa.dstcii
50.00%

Lavasoft Ad-Aware
Gen:Variant.Strictor.87917
50.00%

Sophos
Mal/Generic-S
50.00%

F-Secure
Gen:Variant.Strictor.87917
50.00%

VIPRE Antivirus
Trojan.Win32.Generic
50.00%

The domain m.ulozto.cz has been seen to resolve to the following IP address.

93.99.92.193
August 11, 2016

File downloads found at URLs served by m.ulozto.cz.

21 / 68    (Malware)
http://m.ulozto.cz/.../minecraft-launcher-1-8-exe  (minecraft-launcher-1.8.exe)

2 / 68      (Malware)
http://m.ulozto.cz/.../gta-san-andreas-crack-exe  (gta-san-andreas---crack.exe)

The following 4 files have been seen to comunicate with m.ulozto.cz in live environments.

TCP » 93.99.92.193:443
online-guardian-v2.0.9.exe

TCP » 93.99.92.193:443
seznam.cz.exe

TCP » 93.99.92.193:443
onlineguardian-v2.exe

TCP » 93.99.92.193:443
online-guardian-v2.exe

pornfile.cz

uloz.to

ulozto.net

ulozto.sk

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.