winatom.net
Repossessed by Go Daddy
Domain Information
The domain winatom.net registered by Repossessed by Go Daddy was initially registered in December of 2015 through GODADDY.COM, LLC. Currently this domain has been known to host various forms of malware. The hosted servers are located in New York City, New York within the United States which resides on the Bodis, LLC network.
Registrant:
Repossessed by Go Daddy
Registrar:
GODADDY.COM, LLC
Server location:
New York, United States (US)
Create date:
Thursday, December 17, 2015
Expires date:
Saturday, December 17, 2016
Updated date:
Saturday, April 9, 2016
ASN:
AS53665 BODIS-1 - Bodis, LLC,US
Scanner detections:
Malware distribution (100% detected)
Scan engine
Details
Detections
McAfee
RDN/Generic.dx!dg3, Artemis!D482793FFD35
100.00%
Malwarebytes
Trojan.Agent.KY
100.00%
NANO AntiVirus
Trojan.Win32.DownLoader11.derpda, Trojan.Win32.Sysn.dfcbdq
100.00%
avast!
Win32:Dropper-gen [Drp]
100.00%
Bitdefender
Trojan.Generic.11720877, Trojan.Downloader.JRAM
100.00%
Emsisoft Anti-Malware
Trojan.Generic.11720877, Trojan.Downloader.JRAM
100.00%
F-Secure
Trojan.Generic.11720877, Trojan.Downloader.JRAM
100.00%
VIPRE Antivirus
Trojan.Win32.Generic
100.00%
Avira AntiVirus
TR/Rogue.11720877, TR/Dldr.JRAM
100.00%
G Data
Trojan.Generic.11720877, Trojan.Downloader.JRAM
100.00%
AhnLab V3 Security
Trojan/Win32.Agent, Trojan/Win32.Agent.N1258753764
100.00%
ESET NOD32
MSIL/ExtenBro (variant)
100.00%
IKARUS anti.virus
Trojan.MSIL.ExtenBro
100.00%
Fortinet FortiGate
MSIL/ExtenBro.J!tr, W32/Sysn.ALMO!tr
100.00%
Panda Antivirus
Trj/CI.A, Trj/Chgt.E
100.00%
The domain winatom.net has been seen to resolve to the following IP address.
File downloads found at URLs served by winatom.net.
The following file have been seen to comunicate with winatom.net in live environments.
Web server:
Microsoft-IIS/7.5 (ASP.NET)
