home

click.ali213.net

hangzhou fengxia technology co.,ltd

Domain Information

The domain click.ali213.net registered by hangzhou fengxia technology co.,ltd was initially registered in June of 2001 through 35 TECHNOLOGY CO., LTD. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Huzhou, Zhejiang within China which resides on the Asia Pacific Network Information Centre network.
Registrar:
35 TECHNOLOGY CO., LTD

Server location:
Zhejiang, China (CN)

Create date:
Saturday, June 23, 2001

Expires date:
Thursday, June 23, 2022

Updated date:
Tuesday, June 24, 2014

ASN:
AS4134 CHINANET-BACKBONE No.31,Jin-rong Street,CN

Root domain:
ali213.net

Whois:
1 ali213.net record

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.JINHUA9158NETWORKSCIENCEANDTECHNOLOGYCOLTD.Installer (M), PUP.SHANGHAIFENGHANNETWORKINFORMATIONTECHNOLOGYSTUDIO.Installer (M), PUP.SHANGHAI.Installer (M), PUP.JINHUA91.Installer (M), Adware.Downloader.Shanghai.Installer.Meta (M), PUP.Bundler (L), Adware.Downloader (M)
82.76%

NANO AntiVirus
Riskware.Win32.ShouQu.dmnfjx, Trojan.Win32.Winlock.dqvnat
17.24%

ESET NOD32
Win32/Packed.NSISmod.A suspicious (variant), Win32/Softcnapp.C.gen potentially unwanted (variant)
17.24%

Clam AntiVirus
Win.Trojan.691128, Win.Trojan.Win32-3
17.24%

Kaspersky
HEUR:Trojan.Win32.Invader, not-a-virus:Downloader.Win32.Agent
17.24%

Fortinet FortiGate
W32/Generic.AC.18053, W32/Generic.AC.2003
17.24%

Vba32 AntiVirus
Malware-Cryptor.Inject.gen, Downloader.Agent
17.24%

IKARUS anti.virus
PUA.NSISmod, Trojan.Win32.Skeeyah
17.24%

Dr.Web
Trojan.KillFiles.28526, Trojan.Siggen6.36073
13.79%

VIPRE Antivirus
Trojan-Downloader.Win32.Agent, Trojan.Win32.Generic
13.79%

K7 AntiVirus
Unwanted-Program
13.79%

Zillya! Antivirus
Downloader.Agent.Win32.281252, Adware.BrowseFox.Win32.213942
13.79%

AhnLab V3 Security
PUP/Win32.Softcnapp, PUP/Win32.Downloader
13.79%

avast!
Win32:Malware-gen
13.79%

McAfee
Artemis!4571940E816A, Artemis!EC9E94FD83F6, Artemis!1B06CA9D99AD
10.34%

The domain click.ali213.net has been seen to resolve to the following IP address.

60.190.167.132
July 23, 2015

File downloads found at URLs served by click.ali213.net.

1 / 68      (PUP)
http://click.ali213.net/ALiClick-258.html  (game_ali123-1490_7ry.exe)

18 / 68    (PUP)
http://click.ali213.net/ALiClick-374.html  (setup_newasp.net.exe)

2 / 68      (PUP)
http://click.ali213.net/ALiClick-258.html  (setup_7down-1480_0md.exe)

7 / 68      (PUP)
http://click.ali213.net/ALiClick-374.html  (setup_down.com.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-374.html  (game_ali123-1491_zph.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-374.html  (setup_20004.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-258.html  (setup_7down-1480_r4i.exe)

17 / 68    (PUP)
http://click.ali213.net/ALiClick-366.html  (setup_qvod2.exe)

0 / 68
http://click.ali213.net/ALiClick-373.html  (setup_haote_9tq.exe)

5 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (setup_sd173_04r.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (setup_2055vgf6.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (setup_2055.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-258.html  (setup_2054nxqu.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-258.html  (setup_2054w2p6.exe)

3 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (补丁_ali123-1482_6bj.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (setup_2055vik5.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-258.html  (setup_2054slih.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-258.html  (setup_2054midb.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-242.html  (setup_ali213.net.exe)

19 / 68    (PUP)
http://click.ali213.net/ALiClick-366.html  (setup_77vcd.com.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (setup_2055lblx.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (setup_2055h09s.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (setup_2055dccy.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (setup_123.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (setup_2055wum7.exe)

2 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (cncrk_175.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (setup_2055s5vn.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-258.html  (setup_2054sids.exe)

16 / 68    (PUP)
http://click.ali213.net/ALiClick-373.html  (setup_2055mrkt.exe)

1 / 68      (PUP)
http://click.ali213.net/ALiClick-373.html  (happy88_b001_123.exe)

 
Latest 30 of 30 download URLs

URL:
http://click.ali213.net/

Web server:
nginx

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.