home

bookbook.in

Jinheng Zhu

Domain Information

The domain bookbook.in registered by Jinheng Zhu was initially registered in December of 2015 through Name.com LLC (R65-AFIN). This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Kirkland, Washington within the United States which resides on the eNom, Incorporated network.
Registrar:
GoDaddy.com, LLC (R101-AFIN)

Server location:
Washington, United States (US)

Create date:
Saturday, December 5, 2015

Expires date:
Tuesday, December 5, 2017

Updated date:
Monday, January 18, 2016

ASN:
AS21740 ENOMAS1 - eNom, Incorporated,US

Whois:
3 bookbook.in records

Scanner detections:
Detections  (89% detected)

Scan engine
Details
Detections

ESET NOD32
Win32/AdWare.MultiPlug.CT application, Win32/Adware.MultiPlug.HV application
64.29%

avast!
Win32:Agent-AYLT [PUP]
57.14%

Norman
Gen:Variant.Adware.MPlug.16, Gen:Variant.Adware.MPlug.10, Adware.MultiPlug.CU, Adware.Agent.OZI, Adware.Mplug.CY, Trojan.Agent.BGHQ
47.62%

Dr.Web
Trojan.Crossrider.38012, Trojan.Crossrider.36808, Trojan.Crossrider.38014, Trojan.Crossrider.37873, Trojan.Crossrider.37360, Trojan.DownLoader11.39404, Trojan.Crossrider.36840
45.24%

Microsoft Security Essentials
Threat.Undefined
45.24%

AVG
Adware Generic_r.VD, Adware Generic_r.UH
42.86%

Emsisoft Anti-Malware
Gen:Variant.Adware.MPlug.16, Gen:Variant.Adware.MPlug.10, Adware.MultiPlug.CU, Adware.Agent.OZI, Adware.Mplug.CY, Trojan.Agent.BGHQ
40.48%

Reason Heuristics
PUP.OlehAlek (M), PUP (M), Adware.Downloader.ET (M)
40.48%

Kaspersky
not-a-virus:HEUR:AdWare.Win32.MultiPlug, not-a-virus:AdWare.Win32.MultiPlug
33.33%

McAfee
Program.MultiPlug-FRO, Program.MultiPlug-FRE
26.19%

VIPRE Antivirus
Threat.5085665, Threat.5180739
16.67%

F-Secure
Variant.Adware.MPlug, Trojan.Agent.BGHQ, Trojan.Agent.BGIR
14.29%

Sophos
PUA 'MultiPlug' (of type Adware)
2.38%

The domain bookbook.in has been seen to resolve to the following 7 IP addresses.

119.9.74.18
February 22, 2016

52.79.54.33
ec2-52-79-54-33.ap-northeast-2.compute.amazonaws.com
January 28, 2016

69.64.147.242
rc2.sjl01.dmtracker.com
July 16, 2015

54.68.56.152
ec2-54-68-56-152.us-west-2.compute.amazonaws.com
May 3, 2015

54.68.145.207
ec2-54-68-145-207.us-west-2.compute.amazonaws.com
November 3, 2014

104.28.28.74
November 1, 2014

104.28.29.74
November 1, 2014

File downloads found at URLs served by bookbook.in.

0 / 68
http://bookbook.in/3b8c89381c1c7e176bea7e2a6153cf87/identi_ref/dl.php?id=1414701628941583091&r=http://bookchi.in/v3258/lp/.../AUXxF a0jg0B&__rnd=8ff814bcda9ae200bcab84c75b26d393  (f.exe)

0 / 68
http://bookbook.in/f098a8569199deae526b7e559c41eef4/monsteva/dl.php?id=1414953197701678626&r=http://bookcross.in/v20394/lp/.../xz4miKFShQ5cDjGRDNwSaA6gjg4ZfEfWuBITtOhpKcKWK26sU3b11GNAtT8BJFrHHRMci8cJUT1hPnaJRy4dWsjsYBVqYKpJIYOJxhLxSCex8P0 sani1F4l&__rnd=e82699588513e1279d1cae685c6e85d6  (download.exe)

1 / 68      (Adware)
http://bookbook.in/88db3124ecb26233ee5570ba0e4a6d8d/aptoba/dl.php?id=1414805067165819858&r=http://bookcross.in/v20536/lp/.../t4Ik4iteo7YFvZC&__rnd=f4b356070e3e5e8859f07958b63266ab  (aptoide.exe)

2 / 68      (PUP)
http://bookbook.in/a12467cb15cd8a46a400b435a8dd3e2d/adboova/dl.php?id=1414530620988585844&r=http://comprison.info/v20375/lp/?q=R7p4wDzrs1qsG xztvgAB8L2Oqn4hhn8bfZomUOBSlIOfYqMrbevYz8Fyb6k1/.../wruE7EGyk7tyMuoiQOgFX9sEEV0WJPpyG7AZNi3dcEYkN1uYRpw tB4yW7x6Z0jyVGTebWjzTA5N1a&__rnd=d2f94c70875089167bcb015b4c714287  (download.exe)

1 / 68      (Adware)
http://bookbook.in/73a4c21447bf5764c98b8c13074870b4/Gadol/dl.php?id=1414831280773843315&r=http://bookcross.in/v3925/lp/?q=gmPupkCZMhhj6789/XQJ6OaT6x40pb0V91dp nGwzQN3bX3on8GO4lOI06ZNAvcVj nYk0qgnQWIq6F7uGR96Na9lxZJdjni MP DWCeHE2dV6oNNDiFGBKy4s6Pnym59B9SXFGd SFxPcqN0wqoSdTML9aDX35Ep4yTJd6IZPyLT4c2OzA/.../p5yDOE5sSEBKbfI7iNy1xQPCV8OrqdQO9ltbFhnvjr&__rnd=0302a9cfac92f91d6b454732d49e7621  (byhddd.wbrp_300mbfilms.com.rar.exe)

1 / 68      (Adware)
http://bookbook.in/a2f09831f7c1c792a289a5833642cdce/g4u/dl.php?id=1414831622448045328&r=http://bookcross.in/v3423/lp/?q=d r3H546zSs0jlhabc81xrzFIDNVsoj1fskTFtVRkyfOC1erykIvqEwiIB5xHfcVOuD2GS5InQlPesrpuiFUDxGbMAKo2K1NEVqlFhjI4IweWXJn3O NRVIwlKXoIDhIkHdqgMMV3sXokNHmQx3TD4OLIAylHiogNSuJiLGpG1QmbGdzHi2oNWnuDxb qx5t3 wu/z/FbDXZkW0o7tamdl0ZGLuV/.../ON8&__rnd=3726817ef820741279a466563289b3a1  (byhddd.wbrp_300mbfilms.com.mkv.exe)

2 / 68      (PUP)
http://bookbook.in/9d6009008975f0ec93f8ebc96a63da83/vid2/dl.php?id=1414895480232582147&r=http://bookcross.in/v2457/lp/?q=5lKojBVOcYIthZTVNP EOBpJGwIs0aYzqM9Q4izsq13me7aeBP Vd8rqL9jhRO0QCKtJV DD20K5BSQ/FFNU uRxeNsZpd1j/.../ZKxKwXEB9qDxi5R2Y70kDs66DnxPmV85DdnQ7ZNWbcbqbii0&__rnd=4af2ec6f8352e47a69d806e95a22407c  (download.exe)

2 / 68      (PUP)
http://bookbook.in/22931ea1e486d6ebd5b643cd48eaf7a6/never_2/dl.php?id=1414957942541637008&r=http://bookcross.in/v20412/.../?q=2ptbE0QuC3WG0TVNPRxw8E0F7FN9QBZLLGsfnO1IX5EXxH23d1o8rVVpV0zn2SwwMehV2QnS9CnyR13i7fxti1djUAjHxrOqK2rax4FsnVHSzkZtTd2Arf06d6H988SD1sraX Wm4EhbaXpWy8NTyWnBiD9duty5bt26CekSy8WauYT1FAh6Dlf1 NjThu4CxMNgYXA7bqHt6 sqcZsLAcff4hjk8sJ8&__rnd=9e2e70823eeee2acebd2dda060cf7994  (godzilla+.exe)

0 / 68
http://bookbook.in/5dec488efd4292914d6302300c940868/tveva/dl.php?id=1414860100652342237&r=http://bookcross.in/v3608/lp/?q=KLOtqm27hy6AqPRJLFvnsPTAzLToCI7pdBK 0GwmIueTO89iIe7J1K5FjVERkTplimfmXhk6WRora/XoQiPH34A/.../mEWAbHIRK4Yl0vPOVQ uxm S270z0sL&__rnd=e7820db8a9493f549ac1659762c871ad  (download.exe)

1 / 68      (Adware)
http://bookbook.in/dcf60f0b18686f8029ecd214ac4d8b3f/roro/dl.php?id=1414540772095153176&r=http://comprison.info/v3815/lp/?q=JFEmlYl5lPoc6nikg0fEX4wXZk4lj59gaWXL EQar8bfvrFVBlYUFqrjTDHb/5W77w5pP1sv/aqFtUEEcVDpwv7mXb4rwrx0lJTqY2sMSBnktDOe2sRKVxPVZnsmhBUu0GWnOiPS1zzx2TTuGHu7vZJyzCOC5diol1EH3kMDO6Vnjc8ZzvcQIX6FBQmQ2tpXNbf5LyH4wloGnHZlb8VaXb25lHwAdr280IpnDr6rVPErwY3lRnLnDmLZxsOUkGH3M5p0O0w0urdb8vzfMAYWviPVIyJxOcXEwIAPrI5bR2b0ZfW3ckDm3v5Zdu4nMlqh4p4jGUGdrQrnzVlWCg84ZcXiwV1 pZBJD0L2uLde akSoLu/3hjsnJqtPFBdfaWux93x6ve/.../1NhiESRV6A0kryQbtCJtm4xTzikGpHwSqux3pp0lWeXGGOH9llijmA0YaVS9IhflA9p&__rnd=262acc227d5a320aa76355ceb19da961  (koh lanta koh lanta du 24 octobre 2014 ( 1) tf 1 2014 10 24 20 55.exe)

1 / 68      (Adware)
http://bookbook.in/cfe6b4f742f2ed4d34f2a1caa264de7f/assist/dl.php?id=1414942297124687679&r=http://bookcross.in/v1970/lp/?q= 7PuplWQSX5t5rpnikdsuhn4zO7XOhp737kbejPCJ2WQfX9iO8DvXA5vVNkkJTo7zWocWlnHdLK4SM wsUQvRazXArQ5hlJrHvU7pg n/kjpRj9K/.../SZQPryxFaYzxK&__rnd=ce517dac8795e3316053cfd5ccbae2d4  (download.exe)

0 / 68
http://bookbook.in/0578e20b98818aaa950e0b94d24bdfb4/shareb2/dl.php?id=1414874945323889710&r=http://bookcross.in/v3681/lp/?q=nXUxCLid11dQVNPRJLtbxkIgH73ZY8EOAWz//1oPLDASSRbfjc7Tz0d4UVEOzj1K1ptUDiuVK1t5glLpJh7gpEfJJm8Z0anA5pVrNLZGuti66IEGqfv7qsPSX6DoZ2JTIUucC4qgNJFgukHPT3dWbTVMNc&__rnd=972427664543121aa7b32e4a4444e990  (download.exe)

0 / 68
http://bookbook.in/b0d95c1abe0021bac49b5f5fe6599c6c/chicofilm/dl.php?id=1414790022076770934&r=http://bookchi.in/v3601/lp/.../59x0Xb1WJYB5y5ASKdzndDxGYq2XIWCzG8mCQl9HkChVTdhae2xG4WhXYzDZugvvwNwlGEyFzBLhNo8SnuZuyVxJPQj39PGfhUM0o&__rnd=0fbe336959676acba6e6a0bbc513ccc8  (download.exe)

8 / 68      (PUP)
http://bookbook.in/44467c057cf0084051e5c6d700d1cd08/aq_b/dl.php?id=1414896242004604967&r=http://bookcross.in/v2145/lp/?q=jLFigMWL3hZAu23456YB YnIL0zzbrUidHMDdglXVah4MtjnNzLNo dFp9xP2I ticUvx5/h/2dfLA8Tz1fiFM9bGLZl/wZsNJk6r6gj3yFg6T2OjVEKcjl6RnwmhKjrd04fRHslHE4suvXypyEHTlR64o2aWeC/AB 2Mccx0xOEiN1DjMbDeypzEeehmiDhxTHQv84gZAMHSX/AwI0Fl5p2O7hP/ZFFIJPf3AoBEzj 3TTxT8V39JiB2wlgRhVLYjZx 1MJ8ycq8WQPJU79GmP8hYyyrIB4Z69TXBHMT/6ayg3ZP8ivUuUjahjbmL7Sz6bUahLVPKMX7F5RrrcRsqy7SKPmfpDu nuTI PFQvZtdG2AhXMpUeG2F5hQE2E2i9WOHHWkv9Ue3zykOFI0O 1WeesgWQBncR72MbXy4Cnh29Ghh4cPH2dheAIfw/EenfLICOfiEnsZkNDTdlNLtmrwxMOsGmjns1qp43basO0Qkdu/.../jYCt02FMMFTFL3&__rnd=b60ba6dc39839de8090f0bca9a9821ef  (windows 7 ultimate crack genuine activator ~ free crack files download.exe)

5 / 68      (PUP)
http://bookbook.in/780e5b77cdfcc6f9eca8d6d53f43af49/roro/dl.php?id=1414991725540095039&r=http://newdata.in/v3815/lp/?q=IsDKedgd0tIuF56789MfLfgXqB/qnxYlBMwJcZymZs149Esfjqs1hqrTpW1ZOapBU182e92KeUzWRwsF08XtUKXlv0TsJzMbhugX8ZB0BDS8te/MDnUqDxeBVTFZMJ4Mis/7B9QtwFUr9QY DkCnX9xZtNeQWqpW1ow/c/vSsWEU8VaTAkHNkyT0NvCSee4MjINpa7aIx/TEdflWLRj7pDX1Z2xb8bNTjalETCNxSy8y3mntU59F4skp4Acm514Be3NmPkaSebAHw /MFt36U3m0r/IkOtg1y803iwvjFdtzGBAKKW8 cdgBzyFEpYzpMiazqyUkfA9XfuyY/.../5CV7jAzjXB9X5es0wEaVHegOpGCYXLuRqV8812 J&__rnd=f7dc095fa6d1b6b89e923ba97b216619  (como+llamar+a+un+celular+en+cuba+desde+chile.exe)

7 / 68      (PUP)
http://bookbook.in/ee3958e5297b3b2e89852fd0fa8f9377/fullfully/dl.php?id=1414570817279146045&r=http://comprison.info/v20320/lp/?q=421/Z1FxC/uBlNPRJLtbIBfBEmzb3iGzm2K2jzhvFSMvTdE0Zf/OiKxKkz2SvTpG MjrfdJES5slGsJxND/hc6qrR/A/GtzZ/5dwkmR6N12wopHF/.../clmD8lB5bKDLeIeUf5G71nIFZY5Ml4m3utwrS6YZBaBZM8hjHJR4&__rnd=862a49fe49c78405da1954b23cb50521  (farming simulator 2013 game.exe)

4 / 68      (PUP)
http://bookbook.in/50470dc57dc0a735969db9556a13196c/vipba2/dl.php?id=1414897232186233778&r=http://bookcross.in/v3687/lp/?q=i33ZVDzpitHw789/XZIZekujecbyZkKFgYa9XbfbyXFcmUq rZkhf/tSfXGWWiiYwtOBRdrEL3u/ufIY158znJc0Lbb LL13xtWdR8N4LWa/yLJU9FIOIlFZE/.../eCT7ovFM769mEmesH&__rnd=81f5a5582876adaae5ad61a2c3a67e1a  (reproductor hd.exe)

5 / 68      (PUP)
http://bookbook.in/a03fa67af7f881d58434cc71ecabc9dc/profullba/dl.php?id=1414622414505679377&r=http://bookchi.in/v3104/lp/?q=lV/L5AYVUdxaGfABCDNAp0OjNg6mYMlT4C6l9Tl DsV6eM81VwU0eSkq9qUtCiGBWXIfnNhO5s/xh0GQ44mevGPZJkr0zj0mzkGIvd2HTdb8ztmbdcAdXsaD7j9f2RbSqwDjF4Q6hzTEMc7D1Qo/.../tJ6 aCLmuKiyWNZfWUEodo&__rnd=750a1aa4f67189f02b4bc96be260ea18  (windows loader 2.2.exe)

7 / 68      (PUP)
http://bookbook.in/ec3ba24c60fe0339841f48e47745c40e/fullfully/dl.php?id=1414840562601925614&r=http://bookcross.in/v20320/lp/?q=oFXF6DxpRmJjnikg01AwrM6z6c5G/ZGidhFSt7IZzE6THbWxSVdhe1efcTdhzel6v3 rmfgcsE3i3nwKDbtSQSHqGTBlgsNkvMbsef3mmeWuYSz2AKbobxntptaTr/klRYfnvityVItMpqqg/.../7JFKLm95T6jIZ6AGJS&__rnd=92f50a6a3d68fe8b1ffd125bc2f7a801  (sonic heroes game.exe)

8 / 68      (PUP)
http://bookbook.in/3b8dedeb41002e525a41a05120eb1179/20minva/dl.php?id=1414955758326086403&r=http://bookcross.in/v3607/lp/?q=RiLnk/tvD1KUR23456Y8z/xvDSTnds15nPM k9RWaHePim7pK6DO/eHPkNhNY1qjo/.../k460a9itS74OgNbEQqfW2 z4z5s3KacbX6Hx6ViqJP2GFPQ&__rnd=bed12f5884eb1bc5b37e1abe63a85015  (download.exe)

1 / 68      (Adware)
http://bookbook.in/1069982335d0413967cdab3938111656/inmov/dl.php?id=1414859521852312773&r=http://bookcross.in/v2564/lp/.../rurYJERZztvqo1KKvAuIFvqc6dhJw8jKJFaYqR WHAcp2MehPZQdcyGBLxHfIk BtPG0nVOMP woc2AMXGzMJJ0RmkGEsZs04QkgQ7GKumKRRh5bG3x HBLJobRB7VpB1Jo8ditLdmCuGtQ&__rnd=32fab4789b42caf8e7d4fbbcbb20b623  (download.exe)

5 / 68      (PUP)
http://bookbook.in/99aa89eb8a9f99fd6c072cb7c3280044/adboova/dl.php?id=1414520597285586275&r=http://comprison.info/v20375/lp/?q=zrfMQGdBM7hcoABCDWPRY/.../S3zBf5K4espnXWhH gkxmWsI bxjFRRF&__rnd=4f7774520fa643aa3e6881309240687f  (download.exe)

9 / 68      (PUP)
http://bookbook.in/49b4adcbb32475701c5e52ba501acca6/nobel/dl.php?id=1414708964142808057&r=http://bookchi.in/v20832/lp/?q=x2VyuxYQSh95efABCDN7MtmD0U2nm1S8Tf67EYqVfKQJkXC0ljOjAQaE5tB02RSuQPKtcFiL8fnCG/ot93ReZBbZJkVnR 2x6e6 dof20HC1H29/.../ye3vB0zGoNSM4zm4bZpb9iEgqLQyCGYogZCATrRnMDcmgl26hUkKvWckPLAfpJVjU7JBQatf91B0wePzu6 PWwgfdr hZWPAI574JeFdCU6ERKhK26b3Fe4WZsPOcb2Ic8fJHrvWBzpNsrime0V2GNaRPjuCE7Sfx9o FSHTxq1p2hMZKsRucrOKA7ceB80MfYfv0G2JsMgWHAI0JQsD7oqAggxwUIo6tAfHS6M8hWg7NUoxfQ4Oyj&__rnd=50209c39a51442801c58dacf54fb96a2  (removewat 2.2.8 windows permanent activator full.exe)

5 / 68      (PUP)
http://bookbook.in/4427f3935645a9d6b27787b081743f6e/myshop_ER/dl.php?id=1414649189645337327&r=http://bookchi.in/v3787/lp/?q=/12XTAXJOp/huTVNPRx fB8tjT3ZL ri/nxqBaqkFi9mmuOUuw I5AQJ3q9Zzv9yzNDvbcedD0AJFARKOvSWr8HbgyjrI6yedWReQTLnOoHf66 IJdglSwdBo/TZJDJLKe1iglA5Ei/npKTGpMSrFveaWloi2XqfE4FFlnGaCWBqUxyUvrUIoSOVe5fqzYzPMytSi9ylBnDpHHUsRPlJSQd aVxf3WRdY3HLodkGGq62/kX8mnAk5s1xcKxiy2HKr4ePALeKHmVnBKW/bm2V978dxb44v3vkZtk/KPR rh9c8mzy/.../P5kev7ZoWCJBgpnl8Cjt2RHYxUTvXuaVAW8XO1l1NZ8&__rnd=b2cb6d81cbf5e65278986585976cee33  (tide-football-theme-banner-vector-material.exe)

1 / 68      (Adware)
http://bookbook.in/f084227bd07f0585a32f9e3756f31933/compucali_nc/dl.php?id=1414544097720343003&r=http://comprison.info/v3244/lp/?q=IuDKe4aB3Zzy9pnikger92zhGGeaVmsUOWxuFArm5u02wtSIw8qXz9 IPx1LEXrSgff3V7x2C46mDahOy5E3wfD8g/pnVt9eAuOQkDJZ7Tpe9AyXv4cdjVIhYj5XSatm50ozKpF0vEehdsqMFd/ZSlpAtWByo7VEWmiFfHDts/.../nEkjwg5MiKnzsiB5 hPFNT&__rnd=e06f1ee25eddff81aaf2cf7136aedae4  (megadownloader.exe)

9 / 68      (PUP)
http://bookbook.in/14819758a2e0528d1152f87b1fc48398/Villa/dl.php?id=1414733783739110230&r=http://bookchi.in/v2130/lp/?q=t94TNU7Yi29Ahtvqom2TKpJPnQb0NkPLhbpJqWLzX7XEJ3QUwS0ZYIFabTy7qf7ciXNLNvYLLXyi06S0G/RqA0UgNPYBSL3LLvbw2T8dFYe8J9u2n38NjEEPD0OuR3qClHiti9VUiQb6vJI0nNJw5232fAW sHJzk2mvqANWTjLZiXCm04mr9aAPKwNkk982m3uUUJcQVTUJa1tbOy7B FA3/ar1QcttkGhKPgRjivq1AnLFIfxBVNWi0IaD3XuX9Pf33gCTcxDq9L IWlV XWjU3nuFhM3Apb2ZT9I9riKCzBeGrvjhLTRXtbww0RsYir1JB2jaxqoz3vf8RIZx//hIq5r5LwDRQqAVf5L9tQJz2IhHHlmfv1cypeo8GS7a&__rnd=738f06714cdbb05082f072c053c7c9d7  (removewat 2.2.6 your windows 7 loader free download.exe)

6 / 68      (PUP)
http://bookbook.in/a66a9cb56ffcdb5440974db53d82f126/selfid/dl.php?id=1414842104983690809&r=http://bookcross.in/v2907/lp/?q=ak09Xk9Pe4rsikg012B0luOiHX2ICm XRDXy9LS/7JlKAbCiQNPs2E64We1 CmIVIDirdQNAJlPVHVqg3NfuekQPIfYyQEVvWW8mcWEGb7Tv3Pp6sp KxRjgRRkKdrFucEWfZQacyqYinyo79H4xW0d3cxhvPCWOYunyy3PPovyW7wiD90l9M/6cep9WnsOC/qOLyCqyTNPUGUGdqkE 7HGJFddNCNgJVzY9tMrjomsIp/.../0O7izGZO&__rnd=0836e3f253ab3bcc103798ae58f04892  (kenza_farah_karismatik_album_2014_hq.exe)

1 / 68      (Malware)
http://bookbook.in/caacf4eb931d09e0f725886ff5954600/listen2/dl.php?id=1414596374468571001&r=http://bookchi.in/v2459/lp/.../dV5G9Wo255krKxMNl3c3Zesnt6 1TzRJFBm5M9hCZALIC&__rnd=2cdd11ef8a4e4c2fdb8443b618eeb9e5  (download.exe)

9 / 68      (PUP)
http://bookbook.in/6b73d1d9050aa123f0b3d88cb3309658/chicofilm/dl.php?id=1414789024327959748&r=http://bookchi.in/v3601/lp/?q=COr3H5eYDlwVpnikg0fE A3cH0E9tIBo7p9T8efnvhurH0n8JrPNIFiE4dDcoyplwicYgzV6tS0WpsXmtSdogZx/j6Sfy/.../bQIzcGV6d7JRigId1jR8p2ZTi&__rnd=3bc0a529b8640d83bad55458464befc2  (download.exe)

4 / 68      (PUP)
http://bookbook.in/bd7a7e8ff2d52e6c6b0c30361759c455/chicofilm/dl.php?id=1414790326554786000&r=http://bookchi.in/v3601/lp/?q=ju laFaAqg1T9/XZTVEsy1TARj7ZMU8naek29A n72WVE8/kBA421KVvNIS9kQONzw mPDJ54Ee/.../edAat7fiHq 5Tlrd5p3v0IfC1EmvopbwTpJ629yC&__rnd=c5c488ae7220cd74a65c1334fab9bcf8  (download.exe)

 
Latest 30 of 134 download URLs

The following 35 files have been seen to comunicate with bookbook.in in live environments.

TCP » 69.64.147.242:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 69.64.147.242:80
pricemeter.exe (PriceMeter)

TCP » 69.64.147.242:80
ContentFinder.exe (ContentFinder by ContentFinder Software)

TCP » 69.64.147.242:80
pricemeter.exe (PriceMeter)

TCP » 69.64.147.242:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 69.64.147.242:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 69.64.147.242:80
ContentFinder.exe (ContentFinder by ContentFinder Company)

TCP » 69.64.147.242:80
pricemeter.exe (PriceMeter)

TCP » 69.64.147.242:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 69.64.147.242:80
PopiTV.exe (PopiTV)

TCP » 69.64.147.242:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 69.64.147.242:80
ContentSinder.exe (ContentSinder by ContentSinder Company)

TCP » 69.64.147.242:80
pricemeter.exe (PriceMeter)

TCP » 69.64.147.242:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 69.64.147.242:80
tmp197b.tmp.exe (HLClientUpdater by ECON)

TCP » 69.64.147.242:80
GenieCleanService.exe (Genie Cleaner by Oppoos.com)

TCP » 69.64.147.242:80
pricemeter.exe (PriceMeter)

TCP » 69.64.147.242:80
ContentFinder.exe (ContentFinder by DigitalSoftware Group)

TCP » 69.64.147.242:80
pricemeter.exe (PriceMeter)

TCP » 69.64.147.242:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

 
Latest 20 of 47 files

URL:
http://bookbook.in/

Title:
“Book Book, Come In”

Description:
“世界上失败的方式只有一种,就是半途而废<br/><br/> 如被微信重新排版,请在浏览器中打开”

Web server:
Tengine/2.1.0

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.