down.dxias.com
ZhangXiuLi
Domain Information
The domain down.dxias.com registered by ZhangXiuLi was initially registered in March of 2016 through ENAME TECHNOLOGY CO., LTD.. Currently this domain has been known to host various forms of malware. The hosted servers are located in Hangzhou, Zhejiang within China which resides on the Asia Pacific Network Information Centre network.
Registrar:
ENAME TECHNOLOGY CO., LTD.
Server location:
Zhejiang, China (CN)
Create date:
Monday, March 14, 2016
Expires date:
Tuesday, March 14, 2017
Updated date:
Friday, March 25, 2016
ASN:
AS37963 CNNIC-ALIBABA-CN-NET-AP Hangzhou Alibaba Advertising Co.,Ltd., CN
Google Safe Browsing:
unwanted
Scanner detections:
Malware distribution (100% detected)
Scan engine
Details
Detections
VIPRE Antivirus
Trojan.Win32.Generic, Threat.46249
100.00%
F-Prot
W32/Trojan.KV.gen, W32/Xiazai.A
100.00%
avast!
Win32:Adware-gen [Adw], Win32:Parite
100.00%
Dr.Web
Trojan.Winlock.12776
100.00%
Emsisoft Anti-Malware
Gen:Variant.Mikey.34324, Win32.Parite
100.00%
Microsoft Security Essentials
SoftwareBundler:Win32/Xiazai, Threat.Undefined
100.00%
AVG
Generic, Win32/Parite
100.00%
Bkav FE
W32.HfsAdware
50.00%
MicroWorld eScan
Gen:Variant.Mikey.34324
50.00%
Malwarebytes
PUP.Optional.ChinAd
50.00%
Bitdefender
Gen:Variant.Mikey.34324
50.00%
ESET NOD32
Win32/Packed.NSISmod.O suspicious (variant)
50.00%
Lavasoft Ad-Aware
Gen:Variant.Mikey.34324
50.00%
F-Secure
Gen:Variant.Mikey.34324
50.00%
The domain down.dxias.com has been seen to resolve to the following 3 IP addresses.
File downloads found at URLs served by down.dxias.com.
URL:
http://down.dxias.com/
Web server:
Microsoft-IIS/7.5 (PHP/5.3.28,ASP.NET)
Related Domains
