home

inforeceita.com

Repossessed by Go Daddy

Domain Information

The domain inforeceita.com registered by Repossessed by Go Daddy was initially registered in August of 2015 through GODADDY.COM, LLC. Currently this domain has been known to host various forms of malware. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Tuesday, August 11, 2015

Expires date:
Thursday, August 11, 2016

Updated date:
Saturday, October 3, 2015

Whois:
1 inforeceita.com record

Scanner detections:
Malware distribution  (80% detected)

Scan engine
Details
Detections

Kaspersky
Backdoor.Java.Agent, Trojan.MSIL.Agent, Trojan-Ransom.Win32.Blocker
100.00%

McAfee
RDN/Generic BackDoor, Artemis!9D16FD1C3801, Trojan.Artemis!4EBCD57AA485, Artemis!7F12390325CF
80.00%

Trend Micro
TROJ_GEN.R08NC0OHK15, TROJ_GEN.F0CBC0UIF15, TROJ_GEN.R047C0DII15
60.00%

Panda Antivirus
Generic Suspicious, Trj/CI.A
60.00%

avast!
Win32:Malware-gen, Win32:Dropper-gen [Drp]
60.00%

Emsisoft Anti-Malware
Gen:Variant.Strictor.94879, Gen:Variant.Strictor.95148, Trojan.GenericKD.2669672
60.00%

Microsoft Security Essentials
VirTool:Win32/AutInject.BQ, Threat.Undefined, TrojanDownloader:MSIL/Banload
60.00%

VIPRE Antivirus
Trojan.Win32.Generic
40.00%

Baidu Antivirus
Backdoor.Java.Agent, Trojan.Win32.Injector
40.00%

Fortinet FortiGate
Java/Agent.G!tr.bdr, W32/Autoit.BQZ!tr
40.00%

Qihoo 360 Security
HEUR/QVM41.2.Malware.Gen, HEUR/QVM10.1.Malware.Gen
40.00%

MicroWorld eScan
Gen:Variant.Strictor.94879, Trojan.GenericKD.2669672
40.00%

Arcabit
Trojan.Strictor.D1729F, Trojan.Generic.D28BC68
40.00%

ESET NOD32
Win32/Injector.Autoit.BSO, MSIL/TrojanDownloader.Banload.EQ (variant)
40.00%

Bitdefender
Gen:Variant.Strictor.94879, Trojan.GenericKD.2669672
40.00%

The domain inforeceita.com has been seen to resolve to the following IP address.

50.63.202.43
ip-50-63-202-43.ip.secureserver.net
January 31, 2016

File downloads found at URLs served by inforeceita.com.

9 / 68      (Malware)
http://inforeceita.com/  (receita_0.0.3.exe)

17 / 68    (Malware)
http://inforeceita.com/  (receita_0.0.1.exe)

1 / 68      (inconclusive)
http://inforeceita.com/  (receitanet-10.15.exe)

9 / 68      (Malware)
http://inforeceita.com/  (receitanet-10.16.exe)

31 / 68    (Malware)
http://inforeceita.com/  (receitanet_0.2.exe)

The following 5 files have been seen to comunicate with inforeceita.com in live environments.

TCP » 50.63.202.43:80
online-guardian-v2.0.9.exe

TCP » 50.63.202.43:80
ContentFinder.exe (ContentFinder by DigitalSoftware Group)

TCP » 50.63.202.43:80
ContentFinder.exe (ContentFinder by ContentFinder Software)

TCP » 50.63.202.43:80
ContentFinder.exe (ContentFinder by ContentFinder Company)

TCP » 50.63.202.43:80
produpd.exe (produpd.exe by Vested Development, Inc)

URL:
http://inforeceita.com/

Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)

0112online.info

0125b.info

2secondsfiles.net

beginvac.info

chipcontact.info

circuitspeech.info

decidemanager.com

defianceportal.info

devbitrack.com

discdispatch.info

dominionplatform.info

down0101tech.info

downloadeigiesoquahv.com

electronicswiki.info

ez-download.com

fdg345.org

fenserka.com

forkmanager.com

get1993desk.com

hindivideosongsdownloadfree.com

kabah.info

malhafinaassistencia.com

mango-download.com

media1987static.com

mediaconvertdownload.com

mintbasic.info

newelume.com

newharyanvisongs.in

newplaystore.com

nmsgv.us

30 of 38 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.