down.hit020.com

wangxiaojie

Domain Information

The domain down.hit020.com registered by wangxiaojie was initially registered in April of 2013 through HANGZHOU AIMING NETWORK CO.,LTD. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Hangzhou, Zhejiang within China which resides on the Asia Pacific Network Information Centre network.
Registrar:
HANGZHOU AIMING NETWORK CO.,LTD

Server location:
Zhejiang, China (CN)

Create date:
Saturday, April 13, 2013

Expires date:
Monday, April 13, 2015

Updated date:
Sunday, March 30, 2014

ASN:
AS4134 CHINANET-BACKBONE No.31,Jin-rong Street

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.BeijingYuJinChengTechnologyCo.M, PUP.BeijingYuJinChengTechnologyCo.O, PUP (M)
100.00%

Trend Micro House Call
TROJ_GEN.R0CCH01LL13, TROJ_GEN.R047H01KU13
66.67%

Comodo Security
TrojWare.Win32.Injector.JQFR
66.67%

Microsoft Security Essentials
Trojan:Win32/Startpage.gen!A
66.67%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
66.67%

Panda Antivirus
Suspicious file
66.67%

Bkav FE
W32.Clod345.Trojan
33.33%

Quick Heal
Trojan.StartPage.a
33.33%

McAfee
Artemis!AF04CAC10F02
33.33%

Malwarebytes
Trojan.Chad
33.33%

K7 AntiVirus
Backdoor
33.33%

F-Prot
W32/Backdoor2.HTHA
33.33%

McAfee Web Gateway
Heuristic.BehavesLike.Win32.Suspicious-PKR.S
33.33%

Commtouch SDK
W32/Backdoor.XWKN-4461
33.33%

Rising Antivirus
NS:Malware.Install!1.9F21
33.33%

The domain down.hit020.com has been seen to resolve to the following 3 IP addresses.

August 12, 2014

January 10, 2014

January 10, 2014

File downloads found at URLs served by down.hit020.com.

1 / 68      (Adware)
http://down.hit020.com/.../?????_37_001.exe  (激爽播放器_37_001.exe)

7 / 68      (Adware)
http://down.hit020.com/.../?????_28_80012.exe  (男人播放器_28_80012.exe)

16 / 68    (Adware)
http://down.hit020.com/.../?????_37_001.exe  (激爽播放器_37_001.exe)

16 / 68    (Adware)
http://down.hit020.com/.../?????_37_001.exe  (激爽播放器_37_001.exe)

16 / 68    (Adware)
http://down.hit020.com/.../?????_37_001.exe  (激爽播放器_37_001.exe)

URL:
http://down.hit020.com/

Web server:
nginx