home

fisbio.fcfrp.usp.br

Contato Administrativo [DOMAIN] - USP

Domain Information

Currently this domain has been known to host various forms of malware. The hosted servers are located in Sao Paulo, Sao Paulo within Brazil which resides on the Latin American and Caribbean IP address Regional Registry network.
Server location:
Sao Paulo, Brazil (BR)

ASN:
AS28571 UNIVERSIDADE DE SAO PAULO,BR

Root domain:
usp.br

Whois:
1 usp.br record

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Total Defense
Heur/TrojanHorse.ZCKH!suspicious
100.00%

MicroWorld eScan
Trojan.GenericKD.2529368
100.00%

nProtect
Trojan.GenericKD.2529368
100.00%

Quick Heal
TrojanDownloader.MSIL.rw4
100.00%

McAfee
Generic.wv
100.00%

K7 AntiVirus
Riskware
100.00%

Arcabit
Trojan.Generic.D269858
100.00%

NANO AntiVirus
Trojan.Win32.Agent.duqbvh
100.00%

F-Prot
W32/Trojan2.OVFR
100.00%

ESET NOD32
MSIL/TrojanDownloader.Banload.EE
100.00%

avast!
Win32:Malware-gen
100.00%

Kaspersky
Trojan-Downloader.MSIL.Agent
100.00%

Bitdefender
Trojan.GenericKD.2529368
100.00%

Agnitum Outpost
Trojan.DL.Agent
100.00%

Lavasoft Ad-Aware
Trojan.GenericKD.2529368
100.00%

The domain fisbio.fcfrp.usp.br has been seen to resolve to the following IP address.

143.107.203.166
February 9, 2016

File downloads found at URLs served by fisbio.fcfrp.usp.br.

30 / 68    (Malware)
http://fisbio.fcfrp.usp.br/.../flash_install.exe  (f61d89af510c6489eb5a19223d57edb5)

URL:
http://fisbio.fcfrp.usp.br/

Title:
“Laboratory of Biological Physics - USP-FCFRP - Home”

Web server:
Apache/2.2.22 (Ubuntu) (PHP/5.3.10-1ubuntu3.9)

Facebook:
Likes:  1
Shares:  4

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.