www.hensence.com

51sales@51.net

Domain Information

The domain www.hensence.com registered by 51sales@51.net was initially registered in January of 2007 through NAME2HOST, INC. DBA NAME2HOST.COM. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Beijing, Beijing within China which resides on the Asia Pacific Network Information Centre network.
Remove Malware from www.hensence.com - Powered by Reason Core Security
Registrar:
NAME2HOST, INC. DBA NAME2HOST.COM

Server location:
Beijing, China (CN)

Create date:
Tuesday, January 09, 2007

Expires date:
Friday, January 09, 2015

Updated date:
Thursday, January 03, 2013

ASN:
AS4847 DXTNET Beijing Dian-Xin-Tong Network Technologies Co., Ltd.,CN

Root domain:

Scanner detections:
Detections  (75% detected)

Scan engine
Details
Detections

Kaspersky
not-a-virus:NetTool.Win32.Sniffer
75.00%

Trend Micro House Call
TROJ_GEN.R0CCH07AO14, TROJ_GEN.R08JB01K714
50.00%

avast!
Win32:PUP-gen [PUP]
50.00%

Antiy Labs AVL
RiskWare[NetTool:not-a-virus]/Win32.Unknown, HackTool[NetTool:not-a-virus]/Win32.Sniffer
50.00%

IKARUS anti.virus
not-a-virus:NetTool.Win32.Sniffer
50.00%

Reason Heuristics
Unnamed.Threat.14
25.00%

Bkav FE
W32.Clodf8f.Trojan
25.00%

K7 Gateway Antivirus
Riskware
25.00%

K7 AntiVirus
Riskware
25.00%

Comodo Security
Worm.Win32.Agent.NGB
25.00%

Quick Heal
NetTool.Sniffer.g3 (Not a Virus)
25.00%

VIPRE Antivirus
Trojan.Win32.Generic
25.00%

NANO AntiVirus
Trojan.Win32.Siggen3.dcdvtr
25.00%

Norman
Suspicious_Gen2.PLRPV
25.00%

Agnitum Outpost
Trojan.Agent
25.00%

The domain www.hensence.com has been seen to resolve to the following IP address.

February 1, 2014

File downloads found at URLs served by www.hensence.com.

16 / 68    (PUP)
http://www.hensence.com/coojah/.../coojah6.zip.exe  (fa7042262079e5f129f0f37722829547)

0 / 68
http://www.hensence.com/blader/.../blader.zip.exe  (e0281dc1975759d457e530ae49097929)

9 / 68      (PUP)

2 / 68      (Malware)
http://www.hensence.com/coojah/.../coojah6.exe  (a3246803c279331e0b785ceb7ddb2440)

URL:
http://www.hensence.com/

Title:
“Coojah 6, URLCapturer, EasyUpgrade - Hensence.com”

Web server:
nginx/0.7.62

Remove Malware from www.hensence.com - Powered by Reason Core Security