The domain www.girlquzijin.com registered by YinSi BaoHu Yi KaiQi (Hidden by Whois Privacy Protection Service) was initially registered in June of 2014 through HICHINA ZHICHENG TECHNOLOGY LTD.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Washington, District of Columbia within the United States which resides on the SoftLayer Technologies Inc. network.
Registrant:
YinSi BaoHu Yi KaiQi (Hidden by Whois Privacy Protection Service)
Registrar:
HICHINA ZHICHENG TECHNOLOGY LTD.
Server location:
District of Columbia, United States (US)
Create date:
Tuesday, June 17, 2014
Expires date:
Friday, June 17, 2016
Updated date:
Friday, June 19, 2015
ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.,US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Li Mo, PUP.Thinknice.ThinkniceCo (M), PUP.ELEX.XiaoqingLiu (M), PUP.ELEX.SkytouchTechnologyCo (M), PUP.PengZhang (M), PUP.CHAODONGXIAO (M), PUP.ELEX.Xiaoqing (M)
100.00%
AVG
Generic, Potentially harmful program Downloader
33.33%
Sophos
Elex, PUA 'Elex' (of type Adware)
23.81%
K7 AntiVirus
Unwanted-Program , Adware , Trojan
23.81%
Dr.Web
Adware.Mutabaha.122, Adware.Mutabaha.228, Adware.Mutabaha.220
19.05%
ESET NOD32
Win32/ELEX.CF potentially unwanted application
19.05%
herdProtect (fuzzy)
a variant of 9a7836676a116d3fb58ff42b06213eead7db4b91, a variant of b668823596a5bcd5cc22362a474b387f03f5ee2a, a variant of 4b215640bc5b2ae96f0d51c276fcbf5721a07765
19.05%
Malwarebytes
PUP.Optional.LuckySearches.A, PUP.Optional.ELEX, PUP.Optional.IStartSurf.A
19.05%
Baidu Antivirus
Adware.Win32.ELEX, PUA.Win32.ELEX
19.05%
VIPRE Antivirus
Trojan.Win32.Generic
14.29%
avast!
Win32:Dropper-gen [Drp], Win32:Malware-gen
14.29%
Agnitum Outpost
Riskware.Agent
9.52%
Fortinet FortiGate
W32/ELEX.CF, Riskware/Elex
9.52%
Bkav FE
W32.HfsAdware
4.76%
ESET NOD32
Win32/ELEX.CE potentially unwanted
4.76%
The domain www.girlquzijin.com has been seen to resolve to the following 2 IP addresses.
33.d5.24ae.ip4.static.sl-reverse.com
February 1, 2016
63.e6.2bd0.ip4.static.sl-reverse.com
February 1, 2016
File downloads found at URLs served by www.girlquzijin.com.
URL:
http://www.girlquzijin.com/
Google Analytics:
UA-40570956
Title:
“Free Video Player, AVI/MKV/MP4/CD Player, Media Player Download”
Description:
“GoPlayer is a free & powerful video player which can help you enjoy various video files such as Flash, MKV, AVI, MP4 on PC.”
Related Domains