Currently this domain has been known to host various forms of malware. The hosted servers are located in Sao Paulo, Sao Paulo within Brazil which resides on the Latin American and Caribbean IP address Regional Registry network.
Registrant:
Carlos J. R. Coletti
Server location:
Sao Paulo, Brazil (BR)
ASN:
AS53166 UNIVERSIDADE ESTADUAL PAULISTA,BR
Scanner detections:
Malware distribution (67% detected)
Scan engine
Details
Detections
avast!
Win32:Malware-gen
80.00%
Avira AntiVirus
TR/Downloader.A.26228, TR/Dldr.Agent.75776.23, TR/Downloader.A.27337, TR/Downloader.A.25458
80.00%
MicroWorld eScan
Gen:Variant.Kazy.713047, Trojan.GenericKD.2694028, Trojan.GenericKD.2629645
60.00%
ESET NOD32
MSIL/TrojanDownloader.Banload.EN
60.00%
Kaspersky
UDS:DangerousObject.Multi.Generic
60.00%
Bitdefender
Gen:Variant.Kazy.713047, Trojan.GenericKD.2694028, Trojan.GenericKD.2629645
60.00%
Lavasoft Ad-Aware
Gen:Variant.Kazy.713047, Trojan.GenericKD.2694028, Trojan.GenericKD.2629645
60.00%
Emsisoft Anti-Malware
Gen:Variant.Kazy.713047, Trojan.GenericKD.2694028, Trojan.GenericKD.2629645
60.00%
F-Secure
Gen:Variant.Kazy.713047, Trojan.GenericKD.2694028, Trojan.GenericKD.2629645
60.00%
VIPRE Antivirus
Trojan.Win32.Generic, Win32.Malware!Drop
60.00%
Arcabit
Trojan.Kazy.DAE157, Trojan.Generic.D291B8C, Trojan.Generic.D28200D
60.00%
G Data
Gen:Variant.Kazy.713047, Trojan.GenericKD.2694028, Trojan.GenericKD.2629645
60.00%
IKARUS anti.virus
Trojan.MSIL.Crypt, Trojan-Downloader
60.00%
Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
60.00%
Sophos
Mal/Generic-S
60.00%
The domain rp.unesp.br has been seen to resolve to the following IP address.
yoda.unesp.br
February 10, 2016
File downloads found at URLs served by rp.unesp.br.
Google Analytics:
UA-7191221
Title:
“UNESP: Reitoria - Portal da Universidade”
Web server:
Apache (PHP/5.3.3-7+squeeze19)
Statistics are for the previous month.