» www.aiv.org.cn
Overview
Analysis
IPs Addresses (1)
Downloads (1)

www.aiv.org.cn

Domain Information

Server location:

Beijing, China (CN)

ASN:

AS55990 HWCSNET Huawei Cloud Service data center, CN

Root domain:

org.cn

Scanner detections:

Malware distribution (100% detected)

Scan engine

Details

Detections

MicroWorld eScan

Gen:Variant.Symmi.57198

100.00%

McAfee

Artemis!8A2A05E53C6F

100.00%

Bitdefender

Gen:Variant.Symmi.57198

100.00%

ESET NOD32

Win32/ESVPN.A potentially unsafe (variant)

100.00%

avast!

Win32:WrongInf-A [Susp]

100.00%

Lavasoft Ad-Aware

Gen:Variant.Symmi.57198

100.00%

F-Secure

Gen:Variant.Symmi.57198

100.00%

Dr.Web

Trojan.Siggen6.49226

100.00%

Emsisoft Anti-Malware

Gen:Variant.Symmi.57198

100.00%

Arcabit

Trojan.Symmi.DDF6E

100.00%

G Data

Gen:Variant.Symmi.57198

100.00%

Baidu Antivirus

Hacktool.Win32.ESVPN

100.00%

The domain www.aiv.org.cn has been seen to resolve to the following IP address.

117.78.32.223

May 25, 2016

File downloads found at URLs served by www.aiv.org.cn.

12 / 68 (Malware)

http://www.aiv.org.cn/.../bailing-VPN.exe (8a2a05e53c6f80a62d7e0637ddf368c5)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.