home

yz.app.sogou.com

Sogou Information

Domain Information

The domain yz.app.sogou.com registered by Sogou Information was initially registered in December of 2001 through Network Solutions, LLC. The hosted servers are located in Beijing, Beijing within China which resides on the Asia Pacific Network Information Centre network.
Registrar:
Network Solutions, LLC

Server location:
Beijing, China (CN)

Create date:
Wednesday, December 19, 2001

Expires date:
Monday, December 19, 2016

Updated date:
Wednesday, November 26, 2014

ASN:
AS23724 CHINANET-IDC-BJ-AP IDC, China Telecommunications Corporation

Root domain:
sogou.com

Whois:
1 sogou.com record

Google Safe Browsing:
unwanted

Scan engine
Details
Detections

Dr.Web
DLOADER.Trojan, Trojan.Winlock.11875
66.67%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h, Worm.WhiteIce
66.67%

NANO AntiVirus
Trojan.Win32.IframeExec.cuycig
33.33%

K7 AntiVirus
Riskware
33.33%

Agnitum Outpost
Trojan.CL.Agent
33.33%

IKARUS anti.virus
Trojan-Dropper.Win32.Daws
33.33%

The domain yz.app.sogou.com has been seen to resolve to the following 22 IP addresses.

220.181.124.50
July 25, 2016

220.181.124.36
July 25, 2016

36.110.170.46
May 21, 2016

106.120.188.47
47.188.120.106.static.bjtelecom.net
March 4, 2016

106.120.188.46
46.188.120.106.static.bjtelecom.net
March 4, 2016

36.110.147.36
March 4, 2016

36.110.147.35
March 4, 2016

106.120.188.49
49.188.120.106.static.bjtelecom.net
March 4, 2016

106.120.188.48
48.188.120.106.static.bjtelecom.net
March 4, 2016

220.181.124.6
October 13, 2015

220.181.124.5
October 13, 2015

220.181.124.4
October 13, 2015

220.181.124.3
October 13, 2015

220.181.124.2
October 13, 2015

180.149.156.71
October 13, 2015

180.149.156.70
October 13, 2015

180.149.156.69
October 13, 2015

106.120.151.65
65.151.120.106.static.bjtelecom.net
October 13, 2015

106.120.151.64
64.151.120.106.static.bjtelecom.net
October 13, 2015

106.120.151.63
63.151.120.106.static.bjtelecom.net
October 13, 2015

106.120.151.62
62.151.120.106.static.bjtelecom.net
October 13, 2015

106.120.151.61
61.151.120.106.static.bjtelecom.net
October 13, 2015

File downloads found at URLs served by yz.app.sogou.com.

0 / 68
http://yz.app.sogou.com/download?url=http://xiazai.sogou.com/comm/redir?softdown=1&u=c7ZWqb6FU_kh-leezHfL3HtfcXfRGc9AKloIiQitiNcfpvuT_HDESeqYR7DqkIQzYzX9lOH7Sys.&pcid=-467870995381216100&filename=wannengbofq.zip&surl=&iconurl=http://7.pic.pc6.com/up/.../201543165329.jpg&name=?????&softsize=60.00MB&browser=360se  (wannengbofq.zip_sgdl.exe)

0 / 68
http://yz.app.sogou.com/download?url=http://wap.sogou.com/web/redir.jsp?appdown=1&u=0Gd8piB6092aYIH2hXS80YpS1Wc4Ved3mNnYkFWlUvbCJKZ1EhcIR3cPLPFmiBS9DM9NJKeZnyY4B_-LmAWuUWu2aGgexb9U&pcid=-3793819006512293285&w=1950&filename=QvodSetup5_lite-5.19.196.1.exe&surl=http://wap.sogou.com/web/redir.jsp?appdown=1&u=0Gd8piB6092aYIH2hXS80YpS1Wc4Ved3mNnYkFWlUvbCJKZ1EhcIR3cPLPFmiBS9DM9NJKeZnyY4B_-LmAWuUWu2aGgexb9U&pcid=-3793819006512293285&filename=QvodSetup5_lite-5.19.196.1.exe&w=1907&iconurl=http://pc3.gtimg.com/softmgr/logo/.../11259_48_1380255137.png&name=??&softsize=9.0 MB  (qvodsetup5_lite-5.19.196.1_sgdl.exe)

0 / 68
http://yz.app.sogou.com/download?url=http://xiazai.sogou.com/comm/redir?softdown=1&u=V14ejE_E-5O60SlXogWq4rLys65um1fjaHK-c9X8vRrn_RHjkBH3UsK5dc16OdXHEJ6gOMTfH4e9H_Z5z0QAD1FyUYmYxo7oLl-cl3qhF3E.&pcid=-3481668712162203124&filename=ttpod_1.0.6.7957_XiaZaiBa.exe&surl=&iconurl=http://dl.app.sogou.com/.../-3481668712162203124.png&name=???????&softsize=5.03MB&browser=chrome  (ttpod_installer_v1.0.6.7957.exe)

3 / 68
http://yz.app.sogou.com/download?url=http://wap.sogou.com/web/redir.jsp?appdown=1&u=-9C432O39iSuy4v1X8mdGjRXb1ARchpxyTVF7GApCN1tS4L5kaabGHHpARrtteyV7G7pRp55CHWLXgSaoHCHSdwIYwtyF3aGY2Mi3CIVmEEqQp9YsfZk-beyDCxlamJ46VkY8C-UVdZrzckSuH1nr80qhhskdxJN&pcid=197965616918557962&w=1950&filename=weixin_PC_2.0.3.1.exe&extra=1_pconline&downloadtype=software&surl=http://wap.sogou.com/web/redir.jsp?appdown=1&u=-9C432O39iSuy4v1X8mdGjRXb1ARchpxyTVF7GApCN1tS4L5kaabGHHpARrtteyV7G7pRp55CHWLXgSaoHCHSdwIYwtyF3aGY2Mi3CIVmEEqQp9YsfZk-beyDCxlamJ46VkY8C-UVdZrzckSuH1nr80qhhskdxJN&pcid=197965616918557962&filename=weixin_PC_2.0.3.1.exe&w=1907&iconurl=http://imgstore.cdn.sogou.com/net/a/100520148/link?appid=100520148&url=http://img.pconline.com.cn/images/upload/upc/tx/pcdlc/1403/25/.../32429402_32429402_1395713010104.jpg&name=??&softsize=18.9 MB  (ba0febbc3b6b5b768801636855cc8292)

0 / 68
http://yz.app.sogou.com/download?url=http://wap.sogou.com/web/redir.jsp?appdown=1&u=YRyEVuHeM45mBjjEUSPVUEJm8GF_McJfVdEjKPrgnocp6RPTnPFSKls2-N19zn1VNw3OrMywhBM6eM9LQQ6kulgXJ8-dW6ZyJd2HMCZpOTvLIGNafI07QZpggfaFdLzRilLVZzhV53fF-ago-P3fEMTDZvlyo5kKwOx5quS1zKtyzQED1lrPJjylMqPneIKBm7e-gjCYdSOXWHnXXzHlFg..&pcid=4669602030091557924&w=1950&filename=WeChat1.0_Beta_build7_C1001.exe&extra=1_tencent&downloadtype=software&surl=http://wap.sogou.com/web/redir.jsp?appdown=1&u=YRyEVuHeM45mBjjEUSPVUEJm8GF_McJfVdEjKPrgnocp6RPTnPFSKls2-N19zn1VNw3OrMywhBM6eM9LQQ6kulgXJ8-dW6ZyJd2HMCZpOTvLIGNafI07QZpggfaFdLzRilLVZzhV53fF-ago-P3fEMTDZvlyo5kKwOx5quS1zKtyzQED1lrPJjylMqPneIKBm7e-gjCYdSOXWHnXXzHlFg..&pcid=4669602030091557924&filename=WeChat1.0_Beta_build7_C1001.exe&w=1907&iconurl=http://imgstore.cdn.sogou.com/v2/thumb/retype/ext/auto/cls/imagick?appid=200504&url=http://dl.app.sogou.com/.../4669602030091557924.png&name=??&softsize=8.7 MB&browser=chrome  (863c8ca78b85f34f30b92e0ad481a059)

0 / 68
http://yz.app.sogou.com/download?url=http://wap.sogou.com/web/redir.jsp?appdown=1&u=YRyEVuHeM45mBjjEUSPVUEJm8GF_McJfVdEjKPrgnocp6RPTnPFSKls2-N19zn1VrW5ZWaDIR2xWanZBDeWjgVgXJ8-dW6ZyJd2HMCZpOTvLIGNafI07QZpggfaFdLzRilLVZzhV53fF-ago-P3fELSHiij_LnpZ_zOSnfZnde9PS-KQ9snV_DPnH3LvAEG9e-LHEZy_-Rn5LcCgxxuPrpeiFHHvEHy7Ll-cl3qhF3E.&pcid=-1433550905860313072&w=1950&filename=BaiduYunGuanjia_tengxunshichang_5.2.0.exe&extra=9_tencent&downloadtype=software&surl=http://wap.sogou.com/web/redir.jsp?appdown=1&u=YRyEVuHeM45mBjjEUSPVUEJm8GF_McJfVdEjKPrgnocp6RPTnPFSKls2-N19zn1VrW5ZWaDIR2xWanZBDeWjgVgXJ8-dW6ZyJd2HMCZpOTvLIGNafI07QZpggfaFdLzRilLVZzhV53fF-ago-P3fELSHiij_LnpZ_zOSnfZnde9PS-KQ9snV_DPnH3LvAEG9e-LHEZy_-Rn5LcCgxxuPrpeiFHHvEHy7Ll-cl3qhF3E.&pcid=-1433550905860313072&filename=BaiduYunGuanjia_tengxunshichang_5.2.0.exe&w=1907&iconurl=http://imgstore.cdn.sogou.com/v2/thumb/retype/ext/auto/cls/imagick?appid=200504&url=http://dl.app.sogou.com/.../-1433550905860313072.png&name=???&softsize=10.9 MB&browser=c  (98ae619b9021443666b602281fc0526c)

2 / 68      (inconclusive)
http://yz.app.sogou.com/download?url=http://wap.sogou.com/web/redir.jsp?appdown=1&u=YRyEVuHeM45mBjjEUSPVUEJm8GF_McJfVdEjKPrgnocp6RPTnPFSKls2-N19zn1Vkn7odhWiVY2XtB1GttVabv1-ADEcrdTQ-iKClemVEPK9FuMk2EG9wQHO0yp58EuenJv5m-RKEQ3Xwwmj7CCD5UJoCSSR9nvh2mUBA-BIJfp83IYVQwh41-kWXVs3FdZ4&pcid=-3080605666447722537&w=1950&filename=QQ7.1-7.1.14522.0.exe&extra=1_tencent&downloadtype=software&surl=http://wap.sogou.com/web/redir.jsp?appdown=1&u=YRyEVuHeM45mBjjEUSPVUEJm8GF_McJfVdEjKPrgnocp6RPTnPFSKls2-N19zn1Vkn7odhWiVY2XtB1GttVabv1-ADEcrdTQ-iKClemVEPK9FuMk2EG9wQHO0yp58EuenJv5m-RKEQ3Xwwmj7CCD5UJoCSSR9nvh2mUBA-BIJfp83IYVQwh41-kWXVs3FdZ4&pcid=-3080605666447722537&filename=QQ7.1-7.1.14522.0.exe&w=1907&iconurl=http://imgstore.cdn.sogou.com/v2/thumb/retype/ext/auto/cls/imagick?appid=200504&url=http://dl.app.sogou.com/.../-3080605666447722537.png&name=QQ&softsize=54.0 MB&browser=chrome  (qq7.1.14522.0.1430099946.exe)

3 / 68      (inconclusive)
http://yz.app.sogou.com/download?url=http://wap.sogou.com/web/redir.jsp?appdown=1&u=G30HdQ8G4nick4xtdkhRB3gSi8fSDCLueKEvVQ_cdYBcdrTu89_0c19xRKFcEUFWCtNLbk5EeoGJvyokYQLv6N838s-SWgIA6tXggiIDkl2lJRe3swB6nIpd5LKqHY6MDW-XNgy9u16_IhNtWMXWFw..&pcid=6262355089742005676&w=1950&filename=Chrome_42.0.2311.135_XiaZaiBa.exe&extra=8_xiazai8&downloadtype=software&surl=http://wap.sogou.com/web/redir.jsp?appdown=1&u=G30HdQ8G4nick4xtdkhRB3gSi8fSDCLueKEvVQ_cdYBcdrTu89_0c19xRKFcEUFWCtNLbk5EeoGJvyokYQLv6N838s-SWgIA6tXggiIDkl2lJRe3swB6nIpd5LKqHY6MDW-XNgy9u16_IhNtWMXWFw..&pcid=6262355089742005676&filename=Chrome_42.0.2311.135_XiaZaiBa.exe&w=1907&iconurl=http://imgstore.cdn.sogou.com/v2/thumb/retype/ext/auto/cls/imagick?appid=200504&url=http://dl.app.sogou.com/.../6262355089742005676.png&name=?????&softsize=43.5 MB&browser=chrome  (18b46f8f72aeaf85eb5aafd224a20326)

0 / 68
http://yz.app.sogou.com/download?url=http://xiazai.sogou.com/comm/redir?softdown=1&u=YRyEVuHeM44R64n5Z9vDp8w9LgPDEeC3lXW2w6UGPTnNZ3QPVjeP0PhesuIH3vf1-EPOJ_DfrDMdcGInnnA0jq31XkjOi4oLLHxTu70WYrMZa2WIQA_ysdj6Mdq038vl6RZdWzcV1ng.&pcid=-6699374927030488929&w=1950&filename=sogou_pinyin_7.7.0.6788_6992.exe&extra=2_sogou&downloadtype=software&surl=http://xiazai.sogou.com/comm/redir?softdown=1&u=YRyEVuHeM44R64n5Z9vDp8w9LgPDEeC3lXW2w6UGPTnNZ3QPVjeP0PhesuIH3vf1-EPOJ_DfrDMdcGInnnA0jq31XkjOi4oLLHxTu70WYrMZa2WIQA_ysdj6Mdq038vl6RZdWzcV1ng.&pcid=-6699374927030488929&filename=sogou_pinyin_7.7.0.6788_6992.exe&w=1907&iconurl=https://img.sogoucdn.com/v2/thumb/retype/ext/jpg/cls/imagick?appid=200504&url=http://dl.app.sogou.com/.../-6699374927030488929.png&name=?????&softsize=37.9 MB&browser=chrome  (a9fafbbda4ba0a526f6b80c46aeacbb0)

0 / 68
http://yz.app.sogou.com/download?url=http://xiazai.sogou.com/comm/redir?softdown=1&u=YRyEVuHeM44R64n5Z9vDp8w9LgPDEeC3lXW2w6UGPTnNZ3QPVjeP0PQelh7N16bCsHjGIU9q-RwdcGInnnA0jq31XkjOi4oLLHxTu70WYrMZa2WIQA_ysQi4YhEelr-q6RZdWzcV1ng.&pcid=-6699374927030488929&w=1950&filename=sogou_pinyin_7.7.0.6917_6992.exe&extra=2_sogou&downloadtype=software&surl=&iconurl=https://img.sogoucdn.com/v2/thumb/retype/ext/jpg/cls/imagick?appid=200504&url=http://dl.app.sogou.com/.../-6699374927030488929.png&name=?????&softsize=37.9 MB&browser=chrome  (3e5be36c9a07082a2d543511d7081bb2)

0 / 68
http://yz.app.sogou.com/download?url=http://xiazai.sogou.com/comm/redir?softdown=1&u=YRyEVuHeM45mBjjEUSPVUEJm8GF_McJfVdEjKPrgnocp6RPTnPFSKls2-N19zn1VsL0ldjwm8TIXsVfUuFZH1If_aI-S-tn-UdhLV5OBlw3O1qgEiXFMzWYGOMRRI9VQniF5_tMpLpNKNrbuIcvX48iKcb4qnjjhyqjN155DDGifMGvTnnPBsDNHyQ98evYxAH8li6jhjlRNrR0ymX1SZpdYeddfMeUW&pcid=-3862323520152902573&w=1950&filename=sogou_wallpaper_2.5j-2.5.4.2687.exe&extra=11_tencent&downloadtype=software&surl=http://xiazai.sogou.com/comm/redir?softdown=1&u=YRyEVuHeM45mBjjEUSPVUEJm8GF_McJfVdEjKPrgnocp6RPTnPFSKls2-N19zn1VsL0ldjwm8TIXsVfUuFZH1If_aI-S-tn-UdhLV5OBlw3O1qgEiXFMzWYGOMRRI9VQniF5_tMpLpNKNrbuIcvX48iKcb4qnjjhyqjN155DDGifMGvTnnPBsDNHyQ98evYxAH8li6jhjlRNrR0ymX1SZpdYeddfMeUW&pcid=-3862323520152902573&filename=sogou_wallpaper_2.5j-2.5.4.2687.exe&w=1907&iconurl=https://img.sogoucdn.com/v2/thumb/retype/ext/jpg/cls/imagick?appid=200504&url=http://dl.app.sogou.com/.../-3862323520152902573.png&name=????&softsize=7.8 MB&browser=chrome  (sogou_wallpaper_2.5j.exe)

The following file have been seen to comunicate with yz.app.sogou.com in live environments.

TCP » 106.120.151.61:80
sogouexplorer.exe (by Sogou.com)

TCP » 106.120.151.62:80
sogouexplorer.exe (by Sogou.com)

TCP » 106.120.151.65:80
sogouexplorer.exe (by Sogou.com)

URL:
http://yz.app.sogou.com/

Title:
“Welcome to nginx!”

Web server:
nginx

sogoucdn.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.