home

plexwin.com

Kim Heechull

Domain Information

The domain plexwin.com registered by Kim Heechull was initially registered in July of 2010 through MEGAZONE CORP. DBA HOSTING.KR. Currently this domain has been known to host various forms of malware. The hosted servers are located in San Jose, California within the United States which resides on the Asia Pacific Network Information Centre network.
Registrar:
MEGAZONE CORP. DBA HOSTING.KR

Server location:
California, United States (US)

Create date:
Tuesday, July 27, 2010

Expires date:
Sunday, July 27, 2014

Updated date:
Wednesday, July 11, 2012

ASN:
AS3786 LGDACOM LG DACOM Corporation,KR

Whois:
1 plexwin.com record

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

MicroWorld eScan
Gen:Trojan.Heur.RP.0C0@ai!chTgG
100.00%

Quick Heal
(Suspicious) - DNAScan
100.00%

Trend Micro House Call
TROJ_GE.E411D70B
100.00%

Kaspersky
HEUR:Trojan.Win32.Generic
100.00%

Bitdefender
Gen:Trojan.Heur.RP.0C0@ai!chTgG
100.00%

Lavasoft Ad-Aware
Gen:Trojan.Heur.RP.0C0@ai!chTgG
100.00%

Emsisoft Anti-Malware
Gen:Trojan.Heur.RP.0C0@ai!chTgG
100.00%

F-Secure
Gen:Trojan.Heur.RP.0C0@ai!chTgG
100.00%

Avira AntiVirus
TR/Black.Gen2
100.00%

Sophos
Mal/VMProtBad-A
100.00%

G Data
Gen:Trojan.Heur.RP.0C0@ai!chTgG
100.00%

ESET NOD32
Win32/Packed.VMProtect.ABD (variant)
100.00%

AVG
Win32/Blacked
100.00%

The domain plexwin.com has been seen to resolve to the following IP address.

211.233.50.233
vline-50-233.godo.co.kr
April 23, 2014

File downloads found at URLs served by plexwin.com.

13 / 68    (Malware)
http://plexwin.com/.../CapZZang_3.2.4_H1.exe  (a2185a818004be08b9e095caa1e3e516)

URL:
http://plexwin.com/

Web server:
Apache

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.