home

download.re58.cn

Domain Information

Server location:
Shanghai, China (CN)

ASN:
AS4134 CHINANET-BACKBONE No.31,Jin-rong Street,CN

Root domain:
re58.cn

Scanner detections:
Detections  (88% detected)

Scan engine
Details
Detections

Malwarebytes
Trojan.Chad.GS
87.50%

McAfee
Artemis!F951A17F9892, Artemis!4239FFCE35CE, Artemis!0D83E2CB79CE, Artemis!BF90803B5B17, Artemis!A8B908C03B57, Artemis!EF94C6AFA48C
87.50%

Dr.Web
Adware.PornTool.14, Adware.Downware.2101, Adware.Downware.9851
87.50%

ESET NOD32
Win32/PornTool.GuaGua, Win32/PornTool.GuaGua (variant), Win32/PornTool.GuaGua.A potentially unsafe (variant)
87.50%

VIPRE Antivirus
Trojan.Win32.Generic, Trojan.Win32.Generic.pak!cobra
62.50%

G Data
Trojan.Generic.11455334, Trojan.Generic.11911861, Win32.Application.GuaGua, Win32.Application.Agent.6T9UJG
62.50%

AVG
Skodna.Bundle_c, Generic_r, Generic_s
62.50%

IKARUS anti.virus
Application.Downloader.RR, Trojan.SuspectCRC, not-a-virus:Porn-Tool.Win32.GuaGua
50.00%

K7 AntiVirus
Trojan , Unwanted-Program
50.00%

Agnitum Outpost
Riskware.GuaGua
50.00%

MicroWorld eScan
Trojan.Generic.11455334, Trojan.Generic.11911861
37.50%

Bitdefender
Trojan.Generic.11455334, Trojan.Generic.11911861
37.50%

Lavasoft Ad-Aware
Trojan.Generic.11455334, Trojan.Generic.11911861
37.50%

F-Secure
Trojan.Generic.11455334, Trojan.Generic.11911861
37.50%

ViRobot
Adware.Agent.921448, Adware.Agent.737280[h]
37.50%

The domain download.re58.cn has been seen to resolve to the following 30 IP addresses.

122.226.183.103
August 28, 2016

122.226.183.102
August 28, 2016

122.226.183.101
August 28, 2016

122.226.183.120
August 28, 2016

122.226.183.119
August 28, 2016

122.226.183.118
August 28, 2016

122.226.183.108
August 28, 2016

122.226.183.107
August 28, 2016

122.226.183.106
August 28, 2016

122.226.183.105
August 28, 2016

122.226.183.104
August 28, 2016

122.226.183.142
April 21, 2016

122.226.183.148
April 21, 2016

122.226.183.203
April 10, 2016

122.226.183.189
April 10, 2016

8.37.234.3
October 19, 2015

8.37.231.21
October 19, 2015

8.37.231.20
October 19, 2015

8.37.236.6
October 19, 2015

8.37.236.3
October 19, 2015

8.37.236.2
October 19, 2015

8.37.235.6
October 19, 2015

8.37.235.5
October 19, 2015

8.37.235.3
October 19, 2015

8.37.234.4
October 19, 2015

122.228.251.107
August 16, 2014

122.228.251.106
August 16, 2014

122.228.251.102
August 16, 2014

115.238.226.86
August 16, 2014

115.238.226.76
August 16, 2014

 
Showing 30 of 30 IP Addresses

File downloads found at URLs served by download.re58.cn.

14 / 68    (PUP)
http://download.re58.cn/.../girlshow_21550033994.exe  (girlshow_20680171213.exe)

13 / 68    (PUP)
http://download.re58.cn/.../girlshow_22091710530.exe  (girlshow_20300032534.exe)

29 / 68    (PUP)
http://download.re58.cn/.../guagua_70750000101.exe  (guagua_70750000202.exe)

5 / 68      (Malware)
http://download.re58.cn/.../girlshow_20080039134.exe  (girlshow_20050082791.exe)

13 / 68    (PUP)
http://download.re58.cn/.../girlshow_20480013078.exe  (f_0000cd)

7 / 68      (PUP)
http://download.re58.cn/.../girlshow_20020073933.exe  (4239ffce35cec13dc2a33b4ea4c783c1)

13 / 68    (PUP)
http://download.re58.cn/.../girlshow_20480001106.exe  (ef94c6afa48c4f141ed1d27ecda4b9c3)

14 / 68    (PUP)
http://download.re58.cn/.../girlshow_20680171213.exe  (0d83e2cb79ceebeccbdd58005073de01)

2 / 68
http://download.re58.cn/.../girlshow_20060038972.exe  (girlshow_20170012765.exe)

2 / 68
http://download.re58.cn/.../girlshow_20060038764.exe  (girlshow_20170012765.exe)

img001.com

17m3.com

ztgame.com

173.com

9669.com

cr173.com

ifeng.com

leaderhero.com

cmbchina.com

25pp.com

benshouji.com

cntv.cn

dahuasecurity.com

duowan.com

gmw.cn

ijinshan.com

meitu.com

netease.com

pc6.com

tongbu.com

appdown.info

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.