Domain > asfitness.com

More information on this domain is in AlienVault OTX

Files that talk to asfitness.com

MD5	A/V
b8a368bcd338cd0907a71dbe7d2ebcf9	[Artemis!B8A368BCD338] [Email.Trojan.FA] [Downloader] [Heuristic.LooksLike.Win32.SuspiciousPE.J!86] [Mal/EncPk-ZC] [Trojan-Spy.Zbot]
be2f1bb3f6095378c68626056473f003	[PWSZbot-FIT!BE2F1BB3F609] [Downloader] [Upatre.R] [Troj/DwnLdr-LDM] [Trojan.DownLoad3.30075] [Trojan-Spy.Zbot] [Trojan.Win32.Downloader.40]
9743319852d86cba07a3813304e94b4a	[Trojan.Email.FA]
f54ae715f4616a03b8dd1f12c4cfd13d	[PWSZbot-FLN!F54AE715F461] [Trojan.Email.FA] [TrojWare.Win32.Injector.KXE]
a4303e990f9afe25f0d3055266cff3b7	[Downloader] [Trojan.Win32.Badur.eisf] [Troj/Zbot-GUM] [Win32/Wigon.PH] [Trojan-PWS.Fareit] [W32/Small.ABS!tr]
6613dd4c9c1db4210b75f6d3c35efaf5	[Trojan-FDEJ!6613DD4C9C1D] [Email.Trojan.FA] [Downloader] [Trojan-Spy.Win32.Zbot.qnle] [Trojan.Downloader.JQDQ] [Troj/Zbot-GTI] [TR/Spy.ZBot.vxc.3] [Win32.Troj.Zbot.qn.(kcloud)] [Trojan/Win32.Zbot] [Win32/Wigon.PH] [Trojan-Spy.Zbot]
56598bf3cbf05965505220d1969cb522	[Backdoor.Bot] [Downloader] [Trojan.Packed.24872] [Heuristic.LooksLike.Win32.Suspicious.J!81] [Troj/Zbot-GTR] [Win32/Wigon.PH] [BackDoor-FBKD!56598BF3CBF0]
d281140c890b06d76692f6fed8ed5e7e	[Artemis!D281140C890B] [Trojan.Zbot] [Trojan.Win32.Badur.ehra] [Mal/EncPk-ZC] [Trojan.DownLoad3.28161] [Heuristic.LooksLike.Win32.Suspicious.J!81] [Trojan/Win32.Zbot] [Trojan-Spy.Zbot]
8a795ed2a5e009792e8bea9aa9ad0543	[RDN/Ransom!dt] [Backdoor.Bot] [Downloader] [UnclassifiedMalware] [TR/Spy.ZBot.adcsr.6] [Heuristic.LooksLike.Win32.SuspiciousPE.J!86] [Mal/Ransom-BY] [Trojan/Win32.Zbot] [Win32.Outbreak]
3c54d7b2fb95b5c530f5cbc6b5cc548a	[PWSZbot-FKZ!3C54D7B2FB95] [Trojan.Dropper] [Heuristic.LooksLike.Win32.Suspicious.J!81]
1012c37dee0c903d7e05825d4d033d69	[Downloader-FVO!1012C37DEE0C] [Trojan.Downloader] [Downloader] [TR/Yarwi.B.19] [Heuristic.LooksLike.Win32.Suspicious.J!81] [Mal/EncPk-ZC]
a1365d707fc476db924cccb983dfa983	[Trojan.Dropper] [W32/Trojan3.GLX] [Trojan.Zbot] [Trojan.Win32.Badur.ejie] [Mal/EncPk-ZC] [TR/Crypt.ZPACK.17892] [Heuristic.LooksLike.Win32.Suspicious.J!81] [W32/Trojan.MNVO-2370] [Trojan/Win32.Zbot] [Win32/Wigon.PH] [W32/Small.BS!tr.dldr] [Crypt_s.EQT]
d5255f33d4a23bac3961031a8c613e2f	[Backdoor.Bot] [Suspicious.Cloud.5] [TSPY_ZBOT.SMXJ] [Heuristic.LooksLike.Win32.SuspiciousPE.J!86]
df86900ec566e13b2a8b7fd9cfac5969	[Heuristic.LooksLike.Win32.Suspicious.J!81] [Mal/EncPk-ZC] [Luhe.Fiha.A]
f878381ef94ff82a5f5a153fdb7df603
473891937e7c7a423db8689316913054
e5c7bf86d369f4d04e2746d3a9558316
426bd0e759ed4daf643b3375952ce912
073966340d2a6fad82425f92cce85401	[W32/Trojan.RULM-9121] [TR/Rogue.AI.11221] [Win32/Upatre.AJ] [TrojanDownloader.Upatre.A5] [Trojan.DownLoad3.28161] [Win32/TrojanDownloader.Waski.A] [W32/Waski.A!tr] [W32/Trojan3.GPA] [Crypt2.BXXF] [Trojan-Spy.Win32.Zbot] [Trojan.PWS.Zbot] [PWSZbot-FMO!073966340D2A] [TrojanDownloader*Win32/Upatre.A] [Mal/DwnLdr-AK] [Downloader] [TROJ_UPATRE.NSD] [Suspicious.B830000000648.mg]
d8bccf382a2d70c701d57ca102ac54a2	[W32/Trojan.RULM-9121] [TR/Rogue.AI.11221] [Win32/Upatre.AJ] [TrojanDownloader.Upatre.A5] [Trojan.DownLoad3.28161] [Win32/TrojanDownloader.Waski.A] [W32/Zbot.HFQ!tr] [W32/Trojan3.GPA] [Crypt2.BXXF] [Trojan-Spy.Win32.Zbot] [Trojan.PWS.Zbot] [PWSZbot-FMO!D8BCCF382A2D] [TrojanDownloader*Win32/Upatre.A] [Mal/DwnLdr-AK] [Downloader] [TROJ_UPATRE.NSD] [Suspicious.B830000000648.mg]

Whois

Property	Value
Email	asfitness@rocketmail.com
NameServer	NS112.SGCLOUDHOSTING.COM
Created	2004-09-06 00:00:00
Changed	2014-11-23 00:00:00
Expires	2015-09-06 00:00:00
Registrar	PDR LTD. D/B/A PUBLI

DNS Resolutions

Date	IP Address
2013-10-30	103.6.196.152 (ClassC)
2015-05-15	-
2015-12-19	50.63.202.104 (ClassC)
2017-03-03	141.8.225.124 (ClassC)
2017-09-25	209.99.64.43 (ClassC)
2017-09-29	209.99.64.44 (ClassC)
2020-05-08	69.172.201.153 (ClassC)
2020-11-20	69.172.201.208 (ClassC)
2020-12-30	52.128.23.153 (ClassC)
2024-03-23	45.79.47.151 (ClassC)
2024-06-13	198.58.118.167 (ClassC)
2024-07-21	45.33.18.44 (ClassC)
2024-08-07	45.79.19.196 (ClassC)
2024-09-30	96.126.123.244 (ClassC)
2024-11-11	45.33.23.183 (ClassC)
2024-11-14	45.56.79.23 (ClassC)
2025-01-07	173.255.194.134 (ClassC)
2025-03-16	45.33.30.197 (ClassC)
2025-03-26	45.33.20.235 (ClassC)
2025-04-02	72.14.185.43 (ClassC)
2025-04-05	45.33.2.79 (ClassC)

HTTP/1.1 463 Server: nginxDate: Tue, 04 Jun 2019 17:13:16 GMTContent-Type: text/htmlContent-Length: 8849Connection: keep-aliveKeep-Alive: timeout20ETag: 5b0f2dc0-2291X-DIS-Request-ID: 70c8c7396c2ea9ed

!DOCTYPE html PUBLIC -//W3C//DTD XHTML 1.0 Transitional//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd>html xmlnshttp://www.w3.org/1999/xhtml>head>meta http-equivContent-Type contenttext/html; charsetutf-8 />title>463 Restricted Client - DOSarrest Internet Security/title>link href/DOAError/assets/css/core.css relstylesheet typetext/css />link relshortcut icon href/DOAError/assets/images/favicon.ico />link relapple-touch-icon href/DOAError/assets/images/icon-protection.png />script>function id_process(n){for(var tn+,rdocument.cookie.split(;),e0;er.length;e++){for(var gre; g.charAt(0);)gg.substring(1,g.length);if(0g.indexOf(t))return g.substring(t.length,g.length)}return null};/script>/head>body onloadmyFunction(), myFunction2(), myFunction3()>div idapDiv1>  table width100% border0 cellspacing0 cellpadding0 bgcolor#444444>    tr>      td colspan3 bg background/DOAError/assets/images/bottom_separator.png>img src/DOAError/assets/images/bottom_separator.png width5 height9 />/td>    /tr>    tr>      td width18>img src/DOAError/assets/images/bottom_trans_spacer.png alt width18 height18 />/td>      td>img src/DOAError/assets/images/bottom_trans_spacer.png alt width18 height18 />/td>      td width18>img src/DOAError/assets/images/bottom_trans_spacer.png alt width18 height18 />/td>    /tr>    tr>      td width18>img src/DOAError/assets/images/bottom_trans_spacer.png width18 height55 />/td>      td width148 alignleft valigntop>table width960 border0 aligncenter cellpadding0 cellspacing0>        tr>          td alignleft valigntop classbottomtext>DOSarrest Internet Security is a cloud based fully managed DDoS protection service.  This request has been blocked by DOSarrest due to the above violation.  If you believe you are getting blocked in error please contact the administrator of span idhost>/span>script>function myFunction() {    var x  location.host;    document.getElementById(host).innerHTML  x;}/script>            /span> to resolve this issue./td>          td width18>img src/DOAError/assets/images/bottom_

Subdomains

Date	Domain	IP
www.asfitness.com	2013-10-30	103.6.196.152

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > asfitness.com

Is this malicious?

Files that talk to asfitness.com

Whois

DNS Resolutions

Port 80

Subdomains