home

bmp.ali213.net

hangzhou fengxia technology co.,ltd

Domain Information

The domain bmp.ali213.net registered by hangzhou fengxia technology co.,ltd was initially registered in June of 2001 through 35 TECHNOLOGY CO., LTD. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Hangzhou, Zhejiang within China which resides on the Asia Pacific Network Information Centre network.
Registrar:
35 TECHNOLOGY CO., LTD

Server location:
Zhejiang, China (CN)

Create date:
Saturday, June 23, 2001

Expires date:
Thursday, June 23, 2022

Updated date:
Tuesday, June 24, 2014

ASN:
AS4837 CHINA169-BACKBONE CNCGROUP China169 Backbone,CN

Root domain:
ali213.net

Whois:
1 ali213.net record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.Downloader (M)
100.00%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
33.33%

McAfee
Trojan.Artemis!1D2464B9FD32
33.33%

Trend Micro House Call
Suspicious_GEN.F47V0826
33.33%

Dr.Web
Trojan.KillFiles.28526
33.33%

ESET NOD32
Win32/Packed.NSISmod.A suspicious application
33.33%

Clam AntiVirus
Win.Trojan.15173305
33.33%

Avira AntiVirus
W32/Infector.Gen4
33.33%

The domain bmp.ali213.net has been seen to resolve to the following IP address.

121.52.231.84
November 3, 2014

File downloads found at URLs served by bmp.ali213.net.

7 / 68      (PUP)
http://bmp.ali213.net/ALiClick-258.html  (setup_ali2131.net.exe)

1 / 68      (PUP)
http://bmp.ali213.net/ALiClick-374.html  (setup_3dm.com.exe)

2 / 68      (PUP)
http://bmp.ali213.net/ALiClick-373.html  (setup_qindou.net.exe)

URL:
http://bmp.ali213.net/

Web server:
Microsoft-IIS/6.0

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.