dc340.gulfup.com
FR Group
Domain Information
The domain dc340.gulfup.com registered by FR Group was initially registered in April of 2006 through GODADDY.COM, LLC. Currently this domain has been known to host various forms of malware. The hosted servers are located in Dronten, Flevoland within Netherlands which resides on the RIPE Network Coordination Centre network.
Registrar:
GODADDY.COM, LLC
Server location:
Flevoland, Netherlands (NL)
Create date:
Thursday, April 6, 2006
Expires date:
Monday, April 3, 2023
Updated date:
Wednesday, February 25, 2015
ASN:
AS50673 SERVERIUS-AS Serverius Holding B.V.,NL
Scanner detections:
Malware distribution (67% detected)
Scan engine
Details
Detections
Microsoft Security Essentials
Threat.Undefined, TrojanDropper:JS/Exjaysee.A
100.00%
avast!
MSIL:GenMalicious-WX [Trj], Win32:Malware-gen
100.00%
Kaspersky
HEUR:Trojan.Win32.Generic, Trojan-Dropper.JS.Agent
100.00%
G Data
Gen:Variant.Barys.8259, Script.Trojan-Dropper.Bladabindi.AD
100.00%
IKARUS anti.virus
Trojan.MSIL.Bladabindi, Trojan-Downloader.MSIL.Ranos
100.00%
F-Secure
Gen:Variant.Barys.8259
50.00%
Emsisoft Anti-Malware
Gen:Variant.Barys.8259
50.00%
Lavasoft Ad-Aware
Gen:Variant.Barys.8259
50.00%
F-Prot
W32/MSIL_Bladabindi.A2.gen
50.00%
ESET NOD32
MSIL/Bladabindi.BN trojan
50.00%
Norman
Gen:Variant.Barys.8259
50.00%
Sophos
Virus 'Troj/Bbindi-T'
50.00%
MicroWorld eScan
Gen:Variant.Barys.8259
50.00%
Zillya! Antivirus
Trojan.Bladabindi.Win32.19915
50.00%
K7 AntiVirus
Trojan
50.00%
The domain dc340.gulfup.com has been seen to resolve to the following IP address.
File downloads found at URLs served by dc340.gulfup.com.
URL:
http://dc340.gulfup.com/