» down.cdyb.net
Overview
Analysis
IPs Addresses (1)
Downloads (7)
Related Domains (2)

down.cdyb.net

Domain Information

Server location:

Jiangsu, China (CN)

ASN:

AS4134 CHINANET-BACKBONE No.31,Jin-rong Street, CN

Root domain:

cdyb.net

Scanner detections:

Detections (57% detected)

Scan engine

Details

Detections

Trend Micro House Call

TROJ_GEN.R047H07BM15, TROJ_GEN.R047H05E115, Suspicious_GEN.F47V0406

60.00%

Kaspersky

not-a-virus:Downloader.NSIS.BindEx, Trojan.NSIS.InstallALL

40.00%

avast!

Win32:Malware-gen

40.00%

Dr.Web

Trojan.Click3.11369

40.00%

Qihoo 360 Security

Win32/Trojan.Adware.37e, Trojan.Generic

40.00%

McAfee

Trojan.Artemis!BD910D3FC1E0, Artemis!85CCE5CED8D3

40.00%

Agnitum Outpost

Riskware.Agent

20.00%

Vba32 AntiVirus

Downloader.BindEx

20.00%

Baidu Antivirus

Hacktool.NSIS.BindEx

20.00%

Panda Antivirus

Generic Suspicious

20.00%

Reason Heuristics

Adware.Downloader.Installer.Meta (M)

20.00%

VIPRE Antivirus

Threat.4150696

20.00%

Emsisoft Anti-Malware

Trojan.GenericKD.2773402

20.00%

ESET NOD32

Win32/StartPage.OVJ trojan

20.00%

Norman

Trojan.GenericKD.2773402

20.00%

The domain down.cdyb.net has been seen to resolve to the following IP address.

58.215.177.195

May 21, 2016

File downloads found at URLs served by down.cdyb.net.

0 / 68

http://down.cdyb.net/.../xfplay.exe (3f3f974018c8e36a4cfcfa6be13f053f)

4 / 68 (inconclusive)

http://down.cdyb.net/.../qvod.exe (85cce5ced8d39b15c0edb35e75f144e4)

4 / 68 (PUP)

http://down.cdyb.net/.../xfplay.exe (bdupdate.exe)

7 / 68 (Malware)

http://down.cdyb.net/.../qvod.exe (bd910d3fc1e06effd2ba954c27826282)

0 / 68

http://down.cdyb.net/.../xfplay.exe (b41a3e1ba37f8c9e4f3dedea0ccb42e3)

1 / 68 (PUP)

http://down.cdyb.net/.../xigua.exe (f71bae027b1ff8327b7a10e6ac0fed4c)

6 / 68 (PUP)

http://down.cdyb.net/.../qvod.exe (013ac71cf5250f4d863f3fc39f264003)

Related Domains

aq8.cc

meiheitou.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.