bonzuna.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain bonzuna.com is registered by proxy through GODADDY.COM, LLC and was originally registered in October of 2011. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Hollywood, Florida within the United States which resides on the Prolexic Technologies, Inc. network.
Remove Malware from bonzuna.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Florida, United States (US)

Create date:
Monday, October 31, 2011

Expires date:
Wednesday, April 26, 2017

Updated date:
Monday, April 27, 2015

ASN:
AS32787 PROLEXIC-TECHNOLOGIES-DDOS-MITIGATION-NETWORK - Prolexic Technologies, Inc.

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

VIPRE Antivirus
Conduit, InstallIQ Installer, Trojan.Win32.Generic, Threat.4783689
85.71%

Malwarebytes
PUP.Optional.Conduit.A, PUP.Optional.InstallIQ, PUP.Optional.SafeInstall.A
71.43%

Dr.Web
Adware.Conduit.2, Adware.Downware.1724, Threat.Undefined, Adware.Conduit.3, Adware.Downware.2968
71.43%

G Data
Win32.Application.ConduitBrothersoftTB, Application.Generic.407910, Application.Bundler.InstallIQ, Win32.Adware.Conduit
71.43%

Reason Heuristics
PUP.Installer.searchcoresystems.R, PUP.Installer.InstallX.P, PUP.Installer.searchcoresystems.U, PUP.Installer.InstallX.K, PUP.InstallX.SecureInstall.Installer (M)
71.43%

McAfee Web Gateway
Artemis!89376D464954, Heuristic.BehavesLike.Win32.Suspicious-BAY.K, BehavesLike.Win32.Trojan.fc, Artemis!7D736107CBF2
57.14%

ESET NOD32
Win32/OpenCandy, Win32/InstallIQ (variant), Win32/Adware.Bonzuna (variant), Win32/Toolbar.Conduit.AE (variant)
57.14%

Rising Antivirus
PE:PUF.OpenCandy!1.9DE5, PE:PUF.InstallIQ!1.9E4F
57.14%

Sophos
InstallQ, DomainIQ pay-per install, Generic PUA EJ, PUA 'DomainIQ pay-per install'
57.14%

Comodo Security
Application.Win32.InstallIQ.B, UnclassifiedMalware, Application.Win32.InstallIQ.~A
57.14%

IKARUS anti.virus
APPL, Win32.SuspectCrc, PUA.InstallIQ, Win32.Heur
57.14%

AVG
MalSign.InstallX, Adware Generic_r.NT, OpenCandy, MultiBundle
57.14%

McAfee
Artemis!89376D464954, Artemis!DF6ED1439222, Artemis!7D736107CBF2
42.86%

Baidu Antivirus
Trojan.Win32.Agent, Trojan.Adware.Win32.Bonzuna, Adware.Win32.Conduit
42.86%

Avira AntiVirus
APPL/InstallIQ.1572864.1, SPR/Tool.4495695, APPL/InstallIQ.Gen4
42.86%

The domain bonzuna.com has been seen to resolve to the following 4 IP addresses.

192.230.74.146.ip.incapdns.net
November 18, 2015

199.83.132.54.ip.incapdns.net
November 18, 2015

September 1, 2014

unknown.prolexic.com
February 7, 2014

File downloads found at URLs served by bonzuna.com.

37 / 68    (Adware)
http://bonzuna.com/.../  (applianflv.exe)

13 / 68    (Adware)
http://bonzuna.com/.../  (applianflv_4644.exe)

13 / 68    (PUP)
http://bonzuna.com/.../  (bonzuna.exe)

19 / 68    (Adware)
http://bonzuna.com/.../BonzunaInstaller(CH).exe  (a83269adf5daccfbc018519b018262d4)

1 / 68      (Adware)
http://bonzuna.com/.../  (bonzunainstaller2.exe)

19 / 68    (Adware)
http://bonzuna.com/.../  (applianflv.exe)

12 / 68    (PUP)
http://bonzuna.com/.../  (Bonzuna.exe)

November 18, 2015

URL:
http://bonzuna.com/

Title:
“Website”

Facebook:
Shares:  5
Comments:  1

Statistics above are for the previous month of November 2016.

Remove Malware from bonzuna.com - Powered by Reason Core Security