» down10.abab.com
Overview
Analysis
IPs Addresses (1)
Downloads (1)
Network (1)
Website Detail
Related Domains (1)

down10.abab.com

王岚

Domain Information

The domain down10.abab.com was initially registered in May of 2000 and originally registered through ENAME TECHNOLOGY CO., LTD.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Changchun, Jilin within China which resides on the Asia Pacific Network Information Centre network.

Registrant:

王岚

Registrar:

ENAME TECHNOLOGY CO., LTD.

Server location:

Jilin, China (CN)

Create date:

Tuesday, May 2, 2000

Expires date:

Wednesday, May 2, 2018

Updated date:

Friday, July 15, 2016

ASN:

AS4837 CHINA169-BACKBONE CNCGROUP China169 Backbone,CN

Root domain:

abab.com

Whois:

1 abab.com record

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

ESET NOD32

Win32/RiskWare.ABABSoftware

100.00%

ViRobot

Worm.Win32.A.P2P-Sytro.2676728[h]

100.00%

Dr.Web

Adware.Downware.12738

100.00%

Vba32 AntiVirus

suspected of Trojan.Downloader.gen.h

100.00%

The domain down10.abab.com has been seen to resolve to the following IP address.

222.163.80.69

69.80.163.222.adsl-pool.jlccptt.net.cn

July 16, 2016

File downloads found at URLs served by down10.abab.com.

4 / 68 (PUP)

http://down10.abab.com/ababdownFile/.../ababgamebox2.1.1(abab).exe (20fb4fd0384e04d68b5e5887563b5a8f)

The following file have been seen to comunicate with down10.abab.com in live environments.

TCP » 222.163.80.69:80

acdsee+18注册机(序列号)@316_46181.exe (downloader)

URL:

http://down10.abab.com/

Web server:

nginx/1.2.6

Related Domains

zol.com.cn

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.