home

down.coolxia.com

yang zhongxi

Domain Information

The domain down.coolxia.com registered by yang zhongxi was initially registered in November of 2015 through HICHINA ZHICHENG TECHNOLOGY LTD.. Currently this domain has been known to host various forms of malware. The hosted servers are located in Quzhou, Zhejiang within China which resides on the Asia Pacific Network Information Centre network.
Registrar:
HICHINA ZHICHENG TECHNOLOGY LTD.

Server location:
Zhejiang, China (CN)

Create date:
Friday, November 13, 2015

Expires date:
Sunday, November 13, 2016

Updated date:
Friday, November 13, 2015

ASN:
AS4134 CHINANET-BACKBONE No.31,Jin-rong Street,CN

Root domain:
coolxia.com

Whois:
1 coolxia.com record

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

MicroWorld eScan
Trojan.GenericKD.2970179
100.00%

nProtect
Trojan.GenericKD.2970179
100.00%

AegisLab AV Signature
Troj.Generickd!c
100.00%

Bitdefender
Trojan.GenericKD.2970179
100.00%

Lavasoft Ad-Aware
Trojan.GenericKD.2970179
100.00%

F-Secure
Trojan.GenericKD.2970179
100.00%

Emsisoft Anti-Malware
Trojan.GenericKD.2970179
100.00%

G Data
Trojan.GenericKD.2970179
100.00%

Rising Antivirus
PE:Malware.Generic/QRS!1.9E2D [F]
100.00%

The domain down.coolxia.com has been seen to resolve to the following IP address.

61.153.56.234
June 7, 2016

File downloads found at URLs served by down.coolxia.com.

9 / 68      (Malware)
http://down.coolxia.com/.../arkvpn.exe  (cf326d5f7b3fbfa6e3fbf9ae99aebd2d)

URL:
http://down.coolxia.com/

Web server:
nginx

by698.com

clouddn.com

jisupdftoword.com

ksdang.com

lovequanquan.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.