xzone-reactor.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain xzone-reactor.com is registered by proxy through GODADDY.COM, LLC and was originally registered in December of 2009. Currently this domain has been known to host various forms of malware. The hosted servers are located in New York City, New York within the United States which resides on the RIPE Network Coordination Centre network.
Remove Malware from xzone-reactor.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
New York, United States (US)

Create date:
Sunday, December 27, 2009

Expires date:
Sunday, December 27, 2015

Updated date:
Saturday, October 05, 2013

ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US

Google Safe Browsing:
unwanted

Scanner detections:
Malware distribution  (67% detected)

Scan engine
Details
Detections

Bkav FE
W32.HfsAutoA, W32.Clodd1f.Trojan, HW32.CDB, HW32.Packed
100.00%

McAfee
Artemis!00EF29AFB364, Artemis!6B4EE4F386EC, Artemis!4B031D31F321, Artemis!6F1035148301, Artemis!FAA39492BBCE, Artemis!ED6339557335
100.00%

McAfee Web Gateway
Heuristic.LooksLike.Win32.SuspiciousPE.R, Heuristic.LooksLike.Win32.SuspiciousPE.N!87, Artemis!4B031D31F321, Artemis!PUP
100.00%

Trend Micro House Call
TROJ_GEN.R0CBC0OLV13, TROJ_GEN.F47V0301, TROJ_GEN.F47V0425, TROJ_GEN.R047C0OK214, TROJ_GEN.R08OC0EEE15
83.33%

AhnLab V3 Security
Trojan/Win32.Agent
83.33%

IKARUS anti.virus
Win32.SuspectCrc, Trojan.Win32.Menti, Trojan.SuspectCRC, Virus.Win32.DelfInject
66.67%

MicroWorld eScan
Gen:Variant.Kazy.263991, Trojan.Generic.11968977, Gen:Variant.Kazy.491401
50.00%

Norman
Suspicious_Gen5.AKDKK, Suspicious_Gen4.CVPSL, Suspicious_Gen2.VZBZD
50.00%

Bitdefender
Gen:Variant.Kazy.68497, Trojan.Generic.11968977, Gen:Variant.Kazy.491401
50.00%

Lavasoft Ad-Aware
Gen:Variant.Kazy.68497, Trojan.Generic.11968977, Gen:Variant.Kazy.491401
50.00%

Emsisoft Anti-Malware
Gen:Variant.Kazy.68497, Trojan.Generic.11968977, Gen:Variant.Kazy.491401
50.00%

F-Secure
Gen:Variant.Kazy.263991, Trojan.Generic.11968977, Gen:Variant.Kazy.491401
50.00%

G Data
Gen:Variant.Kazy.68497, Trojan.Generic.11968977, Gen:Variant.Kazy.491401
50.00%

VIPRE Antivirus
Trojan.Win32.Generic
50.00%

AVG
Dropper.Generic9, Luhe.Fiha.B, Skodna.GameHack
50.00%

The domain xzone-reactor.com has been seen to resolve to the following 9 IP addresses.

July 1, 2015

July 1, 2015

May 23, 2014

May 23, 2014

May 23, 2014

May 23, 2014

May 23, 2014

March 15, 2014

March 15, 2014

File downloads found at URLs served by xzone-reactor.com.

28 / 68    (PUP)

14 / 68    (Malware)
http://xzone-reactor.com/.../rename_me.exe  (faa39492bbce1470d6c5472613bfddc1)

5 / 68      (inconclusive)

15 / 68    (Malware)

6 / 68      (inconclusive)

22 / 68    (Malware)

URL:
http://xzone-reactor.com/

SSL certificate subject:
CN=ssl3956.cloudflare.com, O="CloudFlare, Inc.", L=San Francisco, S=CA, C=US

SSL certificate issuer:
CN=GlobalSign Organization Validation CA - G2, O=GlobalSign nv-sa, C=BE

Web server:
cloudflare-nginx

Facebook:
Likes:  474
Shares:  2,195
Comments:  517

Twitter:
Shares:  5

Compete.com:
US visitors:  786

Statistics above are for the previous month of November 2016.

Remove Malware from xzone-reactor.com - Powered by Reason Core Security