Re: https://www.virustotal.com/nl/url/d99e387d2e9837e2a0138d778c7612a67d52b055dddaed2f7399036de576332d/analysis/1439210943/
Blacklisted: http://www.google.com/safebrowsing/diagnostic?site=down.nihuwo.cc
System Details:
Unable to properly scan your site. Site returning error: HTTP/1.0 502 Bad Gateway
Malware found: https://urlquery.net/report.php?id=1439211135429
Good to establish that Avast detects this executable: http://www.herdprotect.com/game_wanyx-1490.exe-7ac5c29591b59eb0264b84562b31a08389e38842.aspx
It is still there as DrWeb flags it: -http://down.nihuwo.cc/hezi/xx55c72b82905ef/game_wanyx-1490.exe contains an advertising software Adware.WDJiange.1
Website Risk Status full red: http://toolbar.netcraft.com/site_report?url=+http%3A%2F%2Fdown.nihuwo.cc
IP badness history: https://www.virustotal.com/nl/ip-address/202.97.174.82/information/
82% detection: https://www.herdprotect.com/ip-address-202.97.174.82.aspx
Re: http://whois.domaintools.com/nihuwo.cc
polonus