The domain seguro2.sitebr.net is registered by proxy through ENOM, INC. and was originally registered in August of 2007. Currently this domain has been known to host various forms of malware. The hosted servers are located in Rio De Janeiro, Rio De Janeiro within Brazil which resides on the Latin American and Caribbean IP address Regional Registry network.
Registrant:
WHOIS PRIVACY PROTECTION SERVICE, INC.
Server location:
Rio De Janeiro, Brazil (BR)
Create date:
Friday, August 10, 2007
Expires date:
Wednesday, August 10, 2016
Updated date:
Wednesday, December 9, 2015
ASN:
AS28271 DataCorpore Serviços e Representações,BR
Scanner detections:
Malware distribution (100% detected)
Scan engine
Details
Detections
Norman
Troj_Generic_2.FERM, Limitail.PDB, Trojan.Agent.BJNY
100.00%
Emsisoft Anti-Malware
Gen:Variant.Zusy.139133, Trojan.Agent.BJNY, Trojan.GenericKD.2307963
100.00%
MicroWorld eScan
Gen:Variant.Zusy.139133, Trojan.Agent.BJNY, Trojan.GenericKD.2307963
75.00%
K7 AntiVirus
Trojan-Downloader
75.00%
Trend Micro House Call
TROJ_GEN.R0E9C0DDT15, TROJ_GEN.R0CCC0RDO15, TROJ_GEN.R02KC0EDQ15
75.00%
avast!
Win32:GenMaliciousA-SEY [Trj], MSIL:Banker-AD [Trj]
75.00%
Kaspersky
Trojan-Downloader.MSIL.Banload, HEUR:Trojan.Win32.Generic, UDS:DangerousObject.Multi.Generic
75.00%
Bitdefender
Gen:Variant.Zusy.139133, Trojan.Agent.BJNY, Trojan.GenericKD.2307963
75.00%
Lavasoft Ad-Aware
Gen:Variant.Zusy.139133, Trojan.Agent.BJNY, Trojan.GenericKD.2307963
75.00%
Comodo Security
UnclassifiedMalware
75.00%
F-Secure
Gen:Variant.Zusy.139133, Trojan.Agent.BJNY, Trojan.GenericKD.2307963
75.00%
VIPRE Antivirus
Trojan.Win32.Generic
75.00%
Trend Micro
TROJ_GEN.R0E9C0DDT15, TROJ_GEN.R0CCC0RDO15, TROJ_GEN.R02KC0EDQ15
75.00%
Sophos
Mal/MSIL-OF, Troj/MSIL-COV
75.00%
Microsoft Security Essentials
TrojanDownloader:MSIL/Banload
75.00%
The domain seguro2.sitebr.net has been seen to resolve to the following IP address.
rede17-server124.t5.com.br
May 6, 2015
File downloads found at URLs served by seguro2.sitebr.net.
URL:
http://seguro2.sitebr.net/