home

down.baidu2016.com

niu niu

Domain Information

The domain down.baidu2016.com registered by niu niu was initially registered in September of 2015 through XIAMEN CHINASOURCE INTERNET SERVICE CO., LTD.. The hosted servers are located in Frankfurt Am Main, Hessen within Germany which resides on the RIPE Network Coordination Centre network.
Registrar:
XIAMEN CHINASOURCE INTERNET SERVICE CO., LTD.

Server location:
Hessen, Germany (DE)

Create date:
Wednesday, September 9, 2015

Expires date:
Friday, September 9, 2016

Updated date:
Wednesday, September 9, 2015

ASN:
AS60068 CDN77 Datacamp Limited, GB

Root domain:
baidu2016.com

Whois:
1 baidu2016.com record

Google Safe Browsing:
unwanted

Scan engine
Details
Detections

Dr.Web
Adware.Searcher.1222
100.00%

Qihoo 360 Security
Trojan.Generic
100.00%

Zillya! Antivirus
Trojan.Kryptik.Win32.808953
100.00%

Reason Heuristics
Adware.Downloader
100.00%

The domain down.baidu2016.com has been seen to resolve to the following IP address.

185.59.220.83
unn-185-59-220-83.cdn77.com
April 13, 2016

File downloads found at URLs served by down.baidu2016.com.

4 / 68      (PUP)
http://down.baidu2016.com/.../setup_015.exe  (881786f1accf91f2a66f3bff7dc1f0f9)

0 / 68
http://down.baidu2016.com/.../SoHuVA_4.2.0.16-c20762-ng-nti-s-tp-x.exe  (sohuva_y-c206525652-s-nsi-tp-x.exe)

0 / 68
http://down.baidu2016.com/.../qqpcmgr_v10.7.16066.216_71808_Silence.exe  (e73f2b740d29074b7bcc33df88d40ce4)

eoihij4oi.ru

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.