s15.workupload.com
Julian Liebig
Domain Information
The domain s15.workupload.com registered by Julian Liebig was initially registered in August of 2011 through GANDI SAS. Currently this domain has been known to host various forms of malware. The hosted servers are located in Berlin, Berlin within Germany which resides on the RIPE Network Coordination Centre network.
Server location:
Berlin, Germany (DE)
Create date:
Friday, August 5, 2011
Expires date:
Saturday, August 5, 2017
Updated date:
Friday, July 1, 2016
ASN:
AS24940 HETZNER-AS , DE
Scanner detections:
Malware distribution (75% detected)
Scan engine
Details
Detections
MicroWorld eScan
Gen:Variant.Kazy.65374, Gen:Variant.MSIL.8
66.67%
McAfee
Artemis!C106A0B823E8, PWSZbot-FACM!CE93D795A824
66.67%
Bitdefender
Gen:Variant.Kazy.65374, Gen:Variant.MSIL.8
66.67%
Baidu Antivirus
MSIL.Trojan.Injector
66.67%
ESET NOD32
MSIL/Injector.YN (variant), MSIL/Injector.DKR (variant)
66.67%
avast!
MSIL:GenMalicious-AHQ [Trj], MSIL:GenMalicious-IX [Trj]
66.67%
Kaspersky
HEUR:Trojan.Win32.Generic
66.67%
Lavasoft Ad-Aware
Gen:Variant.Kazy.65374, Gen:Variant.MSIL.8
66.67%
F-Secure
Gen:Variant.Kazy.65374, Gen:Variant.MSIL.8
66.67%
Emsisoft Anti-Malware
Gen:Variant.Kazy.65374, Gen:Variant.MSIL
66.67%
Avira AntiVirus
TR/Dropper.Gen
66.67%
Fortinet FortiGate
W32/Generic.ECK!tr, MSIL/Injector.PE!tr
66.67%
Arcabit
Trojan.Kazy.DFF5E, Trojan.MSIL.8
66.67%
AhnLab V3 Security
Trojan/Win32.Generic.N2071377710, Trojan/Win32.Agent.C208803
66.67%
IKARUS anti.virus
Trojan.Agent
66.67%
The domain s15.workupload.com has been seen to resolve to the following IP address.
static.17.39.243.136.clients.your-server.de
September 3, 2016
File downloads found at URLs served by s15.workupload.com.
URL:
http://s15.workupload.com/
SSL certificate subject:
CN=*.workupload.com
SSL certificate issuer:
CN=RapidSSL SHA256 CA, O=GeoTrust Inc., C=US
Web server:
Apache/2.4.10 (Debian)
