tnse.zophar.net

i7.net Solutions Ltd Co

Domain Information

The domain tnse.zophar.net registered by i7.net Solutions Ltd Co was initially registered in September of 1998 through GODADDY.COM, LLC. Currently this domain has been known to host various forms of malware. The hosted servers are located in Phoenix, Arizona within the United States which resides on the Input Output Flood LLC network.
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Sunday, September 27, 1998

Expires date:
Tuesday, September 26, 2017

Updated date:
Tuesday, March 29, 2016

ASN:
AS53755 IOFLOOD - Input Output Flood LLC,US

Root domain:

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

McAfee
Artemis!4781F31D75FD
100.00%

Total Defense
Win32/Tnega.dIYSTC
100.00%

Rising Antivirus
PE:Trojan.Agent!6.96D
100.00%

Reason Heuristics
Threat.Win.Reputation.IMP
100.00%

Norman
Troj_Generic.HLRKP
100.00%

Avira AntiVirus
TR/Rogue.7285000.24
100.00%

SUPERAntiSpyware
Trojan.Agent/Gen-Downloader
100.00%

Bkav FE
W32.Clodd5c.Trojan
100.00%

AegisLab AV Signature
Troj.Downloader.W32.Agent
100.00%

K7 AntiVirus
Backdoor
100.00%

Agnitum Outpost
Trojan.DL.Agent
100.00%

Clam AntiVirus
Trojan.Agent-294391
100.00%

The domain tnse.zophar.net has been seen to resolve to the following IP address.

we.love.servers.at.ioflood.com
April 16, 2016

File downloads found at URLs served by tnse.zophar.net.

12 / 68    (Malware)
http://tnse.zophar.net/.../NESten061B1.exe  (4781f31d75fdf4742adf1c72b4f9cc95)

The following file have been seen to comunicate with tnse.zophar.net in live environments.

URL:
http://tnse.zophar.net/

Title:
“Yaddayadda”

Web server:
Apache/2.4.10 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.4.35