home

driver.zol.com.cn

Domain Information

Server location:
Beijing, China (CN)

ASN:
AS38361 CNNIC-CNET-AP CNET Networks LTD.,CN

Root domain:
zol.com.cn

Scanner detections:
Detections  (71% detected)

Scan engine
Details
Detections

Dr.Web
Adware.Qjwmonkey.47, Adware.Qjwmonkey.49, Adware.Downware.10736, Adware.Qjwmonkey.79
57.14%

IKARUS anti.virus
PUA.Qjwmonkey, PUA.RiskWare.Ababsoftware
57.14%

Zillya! Antivirus
Adware.BrowseFox.Win32.162316, Adware.OutBrowse.Win32.65860, Adware.BrowseFox.Win32.191544
42.86%

Agnitum Outpost
PUA.Qjwmonkey, RiskWare.ABABSoftware
42.86%

ESET NOD32
Win32/Adware.Qjwmonkey (variant)
42.86%

G Data
Win32.Adware.Qjwmonkey, Gen:Variant.Application.Bundler.84
42.86%

Panda Antivirus
Trj/Genetic.gen
28.57%

McAfee
Artemis!8A16A78DE403, Artemis!96DD80012C33
28.57%

K7 AntiVirus
Adware
28.57%

avast!
Win32:Adware-gen [Adw]
28.57%

Clam AntiVirus
Win.Adware.Kazy-897, Win.Adware.Kazy-921
28.57%

NANO AntiVirus
Riskware.Win32.Qjwmonkey.dyvhuv, Riskware.Win32.Qjwmonkey.dyznft
28.57%

VIPRE Antivirus
Trojan.Win32.Generic
28.57%

Avira AntiVirus
APPL/Qjwmonkey.cfk
28.57%

AhnLab V3 Security
PUP/Win32.Agent, PUP/Win32.Generic
28.57%

The domain driver.zol.com.cn has been seen to resolve to the following 2 IP addresses.

123.103.57.124
123.103.57.124-BJ-CNC
December 19, 2015

118.67.120.124
c25-zol-xiazai-web-80.cnet.com.cn
December 2, 2014

File downloads found at URLs served by driver.zol.com.cn.

1 / 68      (Malware)
http://driver.zol.com.cn/down.php?softid=416932&subcatid=6&site=9  (edius下载@25_67035.exe)

13 / 68    (PUP)
http://driver.zol.com.cn/down.php?softid=445729&subcatid=121&site=9  (扑克牌特效展示@177_64996.exe)

20 / 68    (PUP)
http://driver.zol.com.cn/down.php?softid=447623&subcatid=90&site=9b  (小米miflash+2014.05.09+中文版@25_64623.exe)

20 / 68    (PUP)
http://driver.zol.com.cn/down.php?softid=437684&subcatid=3&site=9b  (8.exe)

5 / 68      (PUP)
http://driver.zol.com.cn/down.php?softid=397655&subcatid=6&site=9  (hp_laserjet_p2035_20080825@397655@.exe)

0 / 68
http://driver.zol.com.cn/down.php?softid=447913&subcatid=15&site=9  (logitech_setpoint615_x64@408725@.exe)

1 / 68
http://driver.zol.com.cn/down.php?softid=49026&subcatid=8&site=9  (netcore_nw336_win_drv@422501@.exe)

The following 2 files have been seen to comunicate with driver.zol.com.cn in live environments.

TCP » 123.103.57.124:80
UCBrowser.exe (by UCWeb)

TCP » 123.103.57.124:80
UCBrowser.exe (by UCWeb)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.