home

download.wuji.com

Xiamen Privacy Protection Service Co. Ltd.

Domain Information

The domain download.wuji.com registered by Xiamen Privacy Protection Service Co. Ltd. was initially registered in August of 1998 through ENAME TECHNOLOGY CO., LTD.. Currently this domain has been known to host various forms of malware. The hosted servers are located in Beijing, Beijing within China which resides on the Asia Pacific Network Information Centre network.
Registrar:
ENAME TECHNOLOGY CO., LTD.

Server location:
Beijing, China (CN)

Create date:
Monday, August 24, 1998

Expires date:
Thursday, August 23, 2018

Updated date:
Friday, August 14, 2015

ASN:
AS4808 CHINATELECOM-HE-AS-AP asn for Hebei Provincial Net of CT,CN

Root domain:
wuji.com

Whois:
5 wuji.com records

Google Safe Browsing:
unwanted

Scanner detections:
Malware distribution  (85% detected)

Scan engine
Details
Detections

Malwarebytes
Trojan.Downloader.Small, Trojan.Agent, Adware.Chad, PUP.Optional.Downloaderch, PUP.Optional.ChinAd.A
57.69%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
57.69%

McAfee
Artemis!87A55CA5C9A1, Artemis!51100B599664, Artemis!899773532AC5, Artemis!409EDD09FB5B, Artemis!F477A93DCAD1, Artemis!1B6BCD8A3C88, Artemis!9382D292C347, Artemis!87DB0D5F5312, Artemis!F797FF6DD2C8, Artemis!8F8388FF0F95, PUP-FNT
53.85%

Trend Micro House Call
ADW_SETAPP, TROJ_GEN.F47V0119, TROJ_GEN.F47V0425, TROJ_GEN.F47V0317, TROJ_GEN.F47V0120, TROJ_GEN.F47V0528, Suspicious_GEN.F47V0704
50.00%

IKARUS anti.virus
Trojan.SuspectCRC, Win32.SuspectCrc, Graftor, PUA.WuJi
38.46%

Reason Heuristics
Unnamed.Threat.14, Threat.Win.Reputation.IMP
34.62%

G Data
Trojan.Generic.9612330, Gen:Variant.Graftor.140471, Gen:Variant.Graftor.141172, Win32.Application.WuJi
30.77%

MicroWorld eScan
Trojan.Generic.9612330, Gen:Variant.Graftor.140471, Gen:Variant.Graftor.141172
26.92%

Bitdefender
Trojan.Generic.9612330, Gen:Variant.Graftor.140471, Gen:Variant.Graftor.141172
26.92%

Emsisoft Anti-Malware
Trojan.Generic.9612330, Gen:Variant.Graftor.140471, Gen:Variant.Graftor.141172
26.92%

Lavasoft Ad-Aware
Trojan.Generic.9612330, Gen:Variant.Graftor.140471, Gen:Variant.Graftor.141172
26.92%

Norman
Malware
26.92%

F-Prot
W32/Zbot.PM.gen, W32/Downloader-Web-based!Maximu (not disinfectable)
26.92%

F-Secure
Trojan.Generic.9612330, Gen:Variant.Graftor.140471, Gen:Variant.Graftor.141172
23.08%

Dr.Web
Trojan.PWS.Banker1.9119, infected with Trojan.DownLoader11.4341, DLOADER.Trojan
23.08%

The domain download.wuji.com has been seen to resolve to the following 5 IP addresses.

219.232.241.197
May 31, 2014

219.232.241.196
May 29, 2014

222.186.60.28
May 21, 2014

222.186.60.26
March 14, 2014

222.186.60.1
February 7, 2014

File downloads found at URLs served by download.wuji.com.

1 / 68      (inconclusive)
http://download.wuji.com:6677/wuji/.../???_4797.exe  (高清版_4797.exe)

9 / 68      (PUP)
http://download.wuji.com:6677/wuji/.../setup_4754.exe  (4cbcfdf7cfeb1900dd57aafd186dfe59)

9 / 68      (Malware)
http://download.wuji.com:6677/wuji/.../setup_4761.exe  (setup_4534-46395.exe)

1 / 68      (Malware)
http://download.wuji.com/wuji/.../Qvod_4945.exe  (655d7fdeaca9801f496af4e9c0bc56e2)

5 / 68      (Malware)
http://download.wuji.com/wuji/.../setup_2922.exe  (高清观看_4012.exe)

5 / 68      (Malware)
http://download.wuji.com:6677/wuji/.../setup_3157.exe  (setup_4761.exe)

1 / 68      (Malware)
http://download.wuji.com:6677/wuji/.../???_5016.exe  (高清版_5016.exe)

1 / 68      (Malware)
http://download.wuji.com:6677/wuji/.../??HD_5115.exe  (高清hd_5115.exe)

4 / 68      (inconclusive)
http://download.wuji.com/wuji/.../高清HD_4646.exe  (setup_4652.exe)

4 / 68      (Malware)
http://download.wuji.com/wuji/.../setup_open_3186.exe  (l5j9btjz.exe)

13 / 68    (Malware)
http://download.wuji.com:6677/wuji/.../setup_4721.exe  (setup_3157.exe)

13 / 68    (Malware)
http://download.wuji.com/wuji/.../setup_4611-19.exe  (setup_3157.exe)

13 / 68    (Malware)
http://download.wuji.com/wuji/.../Qvod_4941.exe  (setup_304.exe)

14 / 68    (PUP)
http://download.wuji.com:6677/wuji/.../setup_622.exe  (420004ea9d80ee371002b127529dbcbd)

5 / 68      (Malware)
http://download.wuji.com/wuji/.../??HD_4487.exe  (setup_4323.exe)

7 / 68      (PUP)
http://download.wuji.com:6677/wuji/.../??HD_5037.exe  (高清hd_5037.exe)

15 / 68    (Malware)
http://download.wuji.com/wuji/.../setup_3157.exe  (setup_3410.exe)

8 / 68      (Malware)
http://download.wuji.com/wuji/.../setup_4747.exe  (setup_3157.exe)

5 / 68      (Malware)
http://download.wuji.com/wuji/.../??HD_4630.exe  (setup_4323.exe)

3 / 68      (Malware)
http://download.wuji.com/wuji/.../setup_open_3157.exe  (0e1a7d4fbb16aae890e41b6af549f753)

2 / 68
http://download.wuji.com/wuji/.../setup_open_346.exe  (setup_open_3157.exe)

13 / 68    (PUP)
http://download.wuji.com/wuji/.../setup_open_3078.exe  (setup_open_267.exe)

Facebook:
Shares:  1

Statistics are for the previous month.

9415jia.com

kan83.com

yinyue.fm

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.