home

maple.ellinia.net

Whois Privacy Corp.

Domain Information

The domain maple.ellinia.net registered by Whois Privacy Corp. was initially registered in July of 2014 through INTERNET.BS CORP.. Currently this domain has been known to host various forms of malware. The hosted servers are located in Chicago, Illinois within the United States which resides on the Nuclearfallout Enterprises, Inc. network.
Registrar:
INTERNET DOMAIN SERVICE BS CORP

Server location:
Illinois, United States (US)

Create date:
Sunday, July 27, 2014

Expires date:
Wednesday, July 27, 2016

Updated date:
Sunday, December 13, 2015

ASN:
AS14586 INTERNAP-BLK5 - Internap Network Services Corporation,US

Root domain:
ellinia.net

Whois:
2 ellinia.net records

Scanner detections:
Malware distribution  (78% detected)

Scan engine
Details
Detections

Bkav FE
HW32.Packed
100.00%

McAfee
Artemis!67F620A11A73, Artemis!F0AF020FF162, Artemis!51F638CE422C, Artemis!8E4B6CBE5443, Trojan.Artemis!59FFC209A277, Artemis!14D237DF6781
66.67%

Avira AntiVirus
TR/Crypt.XPACK.Gen, TR/Confuser.2647552.1, TR/Confuser.2647552.2, TR/Dropper.MSIL.209113
55.56%

Fortinet FortiGate
W32/Generic!tr, MSIL/Injector.LRE!tr
55.56%

Bitdefender
Trojan.Generic.12056861, Trojan.Generic.12223915, Trojan.Generic.12616848, Trojan.Generic.12768551
44.44%

G Data
Trojan.Generic.12056861, Win32.Trojan.Agent.KM93R8, Trojan.Generic.12616848, Trojan.Generic.12768551
44.44%

Trend Micro House Call
TROJ_GEN.R0C1H07KL14, TROJ_GEN.R0C1H07AM15, TROJ_GEN.R08OB01BE15, Suspicious_GEN.F47V0430
44.44%

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
44.44%

nProtect
Trojan.Generic.12056861, Trojan.Generic.12616848, Trojan.Generic.12768551
33.33%

Lavasoft Ad-Aware
Trojan.Generic.12056861, Trojan.Generic.12616848, Trojan.Generic.12768551
33.33%

F-Secure
Trojan.Generic.12056861, Trojan.Generic.12616848, Trojan.Generic.12768551
33.33%

Emsisoft Anti-Malware
Trojan.Generic.12056861, Trojan.Generic.12616848, Trojan.Generic.12768551
33.33%

IKARUS anti.virus
Trojan.Crypt, Trojan.Dropper
33.33%

MicroWorld eScan
Trojan.Generic.12223915, Trojan.Generic.12616848, Trojan.Generic.12768551
33.33%

Kaspersky
HEUR:Trojan.Win32.Generic
33.33%

The domain maple.ellinia.net has been seen to resolve to the following 3 IP addresses.

149.202.65.94
ns3013318.ip-149-202-65.eu
January 27, 2016

74.91.124.100
v-74-91-124-100.unman-vds.internap-chicago.nfoservers.com
May 5, 2015

46.244.10.181
181-10-244-46.a2b-internet.com
November 30, 2014

File downloads found at URLs served by maple.ellinia.net.

11 / 68    (Malware)
https://maple.ellinia.net/Ellinia.exe  (67f620a11a730966d8b9003797771468)

6 / 68      (Malware)
https://maple.ellinia.net/Ellinia.exe  (14d237df67812588ab47b31f82ad0ed9)

1 / 68
https://maple.ellinia.net/Ellinia.exe  (7da704ee3208d838485d8d116b666285)

7 / 68      (Malware)
https://maple.ellinia.net/Ellinia.exe  (59ffc209a277a92dbce7e68f9f3b66a4)

4 / 68      (Malware)
https://maple.ellinia.net/Ellinia.exe  (8917b24581a9a4b101f4e3b7c9f3bf48)

18 / 68    (Malware)
https://maple.ellinia.net/Ellinia.exe  (8e4b6cbe54436979bd72872ded7a5c84)

1 / 68
https://maple.ellinia.net/Ellinia.exe  (b24f6fc7bf3616a1b44067c242d11765)

20 / 68    (Malware)
https://maple.ellinia.net/Ellinia.exe  (51f638ce422cd8ed4812890071d7cf41)

10 / 68    (Malware)
https://maple.ellinia.net/Ellinia.exe  (f0af020ff1625712964f328bd8011b23)

URL:
http://maple.ellinia.net/

Title:
“Ellinia - MapleStory Private Server - GMS v1.62.4”

Description:
“A competitive Global MapleStory server. We offer exclusive in-game content, as well as a place to socialize with friends.”

SSL certificate subject:
CN=*.ellinia.net

SSL certificate issuer:
CN=RapidSSL SHA256 CA - G3, O=GeoTrust Inc., C=US

Web server:
LiteSpeed (PHP/5.6.10)

Facebook:
Likes:  28
Shares:  148
Comments:  357

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.