» r1.by
Overview
Analysis
IPs Addresses (1)
Downloads (1)

r1.by

Domain Information

Server location:

Ile-De-France, France (FR)

ASN:

AS12876 AS12876 ONLINE S.A.S., FR

Scanner detections:

Malware distribution (100% detected)

Scan engine

Details

Detections

MicroWorld eScan

Trojan.GenericKD.2292328

100.00%

nProtect

Trojan.GenericKD.2292328

100.00%

Quick Heal

Trojan.MSI.r3

100.00%

McAfee

RDN/Generic.grp!ih

100.00%

Malwarebytes

Trojan.Steam.DHA

100.00%

Zillya! Antivirus

Trojan.Steamilik.Win32.685

100.00%

K7 AntiVirus

Trojan

100.00%

Arcabit

Trojan.Generic.D22FA68

100.00%

Agnitum Outpost

Trojan.Steamilik

100.00%

ESET NOD32

MSIL/Stimilik.DT

100.00%

avast!

Win32:Broban-AR [Trj]

100.00%

Kaspersky

Trojan.MSIL.Steamilik

100.00%

Bitdefender

Trojan.GenericKD.2292328

100.00%

NANO AntiVirus

Trojan.Win32.Steamilik.dqmfmk

100.00%

Lavasoft Ad-Aware

Trojan.GenericKD.2292328

100.00%

The domain r1.by has been seen to resolve to the following IP address.

62.210.251.119

62-210-251-119.rev.poneytelecom.eu

May 17, 2016

File downloads found at URLs served by r1.by.

31 / 68 (Malware)

http://r1.by/5d0ZM ({blocked}.exe)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.