home

www.keygen-0day.ws

Domain Information

Server location:
Kyyiv, Ukraine (UA)

ASN:
AS15772 WNET LLC _WNET UKRAINE_

Root domain:
keygen-0day.ws

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Kaspersky
Trojan.Win32.Yakes
100.00%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
100.00%

MicroWorld eScan
Trojan.Generic.12368261, Gen:Variant.Kazy.535197
100.00%

nProtect
Trojan.Generic.12368261, Zum.Gatak.1
100.00%

Malwarebytes
Trojan.Agent.MS, Trojan.Kryptik.PAK
100.00%

Norman
Kryptik.CEST, Kryptik.CEVK
100.00%

Trend Micro House Call
Suspicious_GEN.F47V1217, Suspicious_GEN.F47V0113
100.00%

avast!
Win32:Malware-gen
100.00%

Bitdefender
Trojan.Generic.12368261, Gen:Variant.Kazy.535197
100.00%

NANO AntiVirus
Trojan.Win32.Yakes.dkofmz, Trojan.Win32.Agent.dmkjws
100.00%

Lavasoft Ad-Aware
Trojan.Generic.12368261, Gen:Variant.Kazy.535197
100.00%

Sophos
Mal/Generic-S
100.00%

VIPRE Antivirus
Trojan.Win32.Generic
100.00%

Emsisoft Anti-Malware
Trojan.Generic.12368261, Gen:Variant.Kazy.535197
100.00%

Avira AntiVirus
TR/Agent.766446, TR/Agent.847492
100.00%

The domain www.keygen-0day.ws has been seen to resolve to the following 2 IP addresses.

64.70.19.202
mailrelay.202.website.ws
February 12, 2016

193.111.49.14
rainova-49-14.colo0.od.wnet.ua
January 8, 2015

File downloads found at URLs served by www.keygen-0day.ws.

26 / 68    (PUP)
http://www.keygen-0day.ws/download  (iorrt_3_5_keygen.exe)

27 / 68    (PUP)
http://www.keygen-0day.ws/download  (windowtabs_2013_5_23_keygen.exe)

The following file have been seen to comunicate with www.keygen-0day.ws in live environments.

TCP » 64.70.19.202:80
dllhost.exe (COM Surrogate by Microsoft)

arabeam.ws

download1click.ws

tradestore.ws

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.