home

fusionsalongr.com

Maria Benit

Domain Information

The domain fusionsalongr.com registered by Maria Benit was initially registered in November of 2008 through GODADDY.COM, LLC. Currently this domain has been known to host various forms of malware. The hosted servers are located in Mountain View, California within the United States which resides on the Google Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
California, United States (US)

Create date:
Monday, November 17, 2008

Expires date:
Thursday, November 17, 2016

Updated date:
Wednesday, July 1, 2015

ASN:
AS15169 GOOGLE - Google Inc.,US

Whois:
1 fusionsalongr.com record

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP
100.00%

MicroWorld eScan
Trojan.PWS.Fareit.AS
66.67%

VIPRE Antivirus
Backdoor.IRCBot
66.67%

Trend Micro House Call
TROJ_GEN.R047H07DU15, TROJ_MOSERAN.BMC
66.67%

avast!
Win32:Malware-gen
66.67%

Kaspersky
Trojan.Win32.IRCbot
66.67%

Bitdefender
Trojan.PWS.Fareit.AS
66.67%

Lavasoft Ad-Aware
Trojan.PWS.Fareit.AS
66.67%

Sophos
Mal/Generic-S
66.67%

F-Secure
Trojan.PWS.Fareit.AS
66.67%

Dr.Web
Win32.HLLW.Phorpiex.54
66.67%

Emsisoft Anti-Malware
Trojan.PWS.Fareit.AS
66.67%

Microsoft Security Essentials
VirTool:Win32/DelfInject
66.67%

G Data
Trojan.PWS.Fareit.AS
66.67%

McAfee
RDN/Spybot.worm!t, Artemis!1AF88A496B68
66.67%

The domain fusionsalongr.com has been seen to resolve to the following IP address.

23.236.62.147
147.62.236.23.bc.googleusercontent.com
February 29, 2016

File downloads found at URLs served by fusionsalongr.com.

31 / 68    (Malware)
http://fusionsalongr.com/doc.exe  (winsvc.exe)

1 / 68      (Malware)
http://fusionsalongr.com/wu.exe  (winsvc.exe)

21 / 68    (Malware)
http://fusionsalongr.com/p.exe  (qbtyghlmhq.exe)

The following 45 files have been seen to comunicate with fusionsalongr.com in live environments.

TCP » 23.236.62.147:80
ContentFinder.exe (ContentFinder by ContentFinder Software)

TCP » 23.236.62.147:80
ContentFinder.exe (ContentFinder by DigitalSoftware Group)

TCP » 23.236.62.147:80
ContentFinder.exe (ContentFinder by ContentFinder Company)

TCP » 23.236.62.147:80
42fe.tmp.exe

TCP » 23.236.62.147:80
UpdatePlatform.exe (Update Platform Application)

TCP » 23.236.62.147:80
updates.exe

TCP » 23.236.62.147:80
8hmedint.exe (Mindspark Toolbar Platform for Internet Explorer by Mindspark)

TCP » 23.236.62.147:80
DrvUpdater.exe (DRP Su Updater)

TCP » 23.236.62.147:80
fvx.exe

TCP » 23.236.62.147:80
ContentSinder.exe (ContentSinder by ContentSinder Company)

TCP » 23.236.62.147:80
monhost.exe (monhost.exe by Vested Development, Inc)

TCP » 23.236.62.147:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 23.236.62.147:80
regsvr.exe

TCP » 23.236.62.147:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 23.236.62.147:80
UCBrowser.exe (by UCWeb)

TCP » 23.236.62.147:80
regsvr.exe

TCP » 23.236.62.147:80
cuddiwegtocu.exe

TCP » 23.236.62.147:25
init.exe

TCP » 23.236.62.147:25
wrk.exe

TCP » 23.236.62.147:80
UCBrowser.exe (UC Browser by UCWeb)

 
Latest 20 of 46 files

URL:
http://fusionsalongr.com/

Google Analytics:
UA-2117194

Title:
“Fusion Salon”

Description:
“Fusion Salon is the premiere salon in Grand Rapids, MI. We have some great 2015 styles. Call to book your appoitment.”

Web server:
Pepyaka/1.9.9

Facebook:
Likes:  5
Shares:  17
Comments:  3

Statistics above are for the previous month of October 2024.

adscoops.com

alacer.com.br

alzalanzzoni.com.br

ap-it.co.uk

ariela-art.com

bcconnect.net

bhsoftsistemas.com.br

blueskytechnologies.com

bminformatica.com.br

cajumartransportes.com.br

coinfru.com

crimefreesoftware.com

cstonedental.net

discobus.com.br

divergence-online.com

dmefree.com

dotemu.com

dr-cheats.com

engineered-solutions.com

equipefaccoeswar.com.br

fantastical.info

fulanitos.com

genesysinf.com.br

go12win.com

i-tml.com

iamsparks.com

invictos.com.br

izabelcoin.com

jamesmaciel.com.br

latino-americana.com

30 of 56 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.