Domain > helpdesk.keldon.info

More information on this domain is in AlienVault OTX

Is this malicious?

Most users have voted this as MALICIOUS

Reports

https://ransomwaretracker.abuse.ch/downloads/RW_UR...

http://www.malware-traffic-analysis.net/2016/04/05...

Files that talk to helpdesk.keldon.info

MD5	A/V
b224003f6331017396c720fbef906a19	[HEUR.JS.Trojan.b] [trojan.js.downloader.1]
5588b1766d60d4a54db77181df6800c2	[HEUR.JS.Trojan.b] [Js.Trojan.Raas.Auto] [trojan.js.downloader.1]
6bf8e35e517465863ae6f02d03c257d2	[HEUR.JS.Trojan.b] [trojan.js.downloader.1]
7ec16ee2a1a53d82df8fd631b60875d8	[HEUR.JS.Trojan.b] [trojan.js.downloader.1]
60ee8e1767d03c71e21a5a1368e267f6	[Js.Trojan.Raas.Auto] [TrojanDownloader:JS/Swabfex.H] [HEUR.JS.Trojan.b] [Win32.Outbreak] [trojan.js.downloader.1]
a21f0dede5ef472164284a1522597e04	[Ransomware-FHS!A21F0DEDE5EF] [BehavesLike.Win32.Expiro.dc]
78085c2c325c9271c1cc46ab31767968	[HEUR.JS.Trojan.b] [Js.Trojan.Raas.Auto] [trojan.js.downloader.1]
af1b0f937175b89bd91b2652995225a2	[TrojanDownloader:JS/Swabfex.H] [HEUR.JS.Trojan.b] [trojan.js.downloader.1]
8f611804a7bc2d04eb8923e55399eeb6	[TrojanDownloader:JS/Swabfex.H] [HEUR.JS.Trojan.b] [trojan.js.downloader.1]
097176160d09f9c07a1cdf9d5570f112	[HEUR.JS.Trojan.b] [Js.Trojan.Raas.Auto] [trojan.js.downloader.1]
b3c00819cc192c93b295e53cc5df37ce	[Ransomware-FHS!B3C00819CC19] [BehavesLike.Win32.Expiro.dc]
43ae902f95cd48f77a744758b8e0b32e
2a0db7860b252340161056a32354d126
81d13894e626827035c771f3f1b24fbf	[JS/TrojanDownloader.Nemucod.PA] [Troj/JSDldr-HD] [HEUR.JS.Trojan.b] [TrojanDownloader:JS/Swabfex.H] [Js.Trojan.Raas.Auto] [Win32.Outbreak] [trojan.js.downloader.1]
ad7e0f698147bef023abd4cc30b8c61d	[Ransomware-FHS!AD7E0F698147] [Suspicious.Cloud.5]
cc54391455dd1ed7fc9c7310395dcef4	[HEUR.JS.Trojan.b] [Js.Trojan.Raas.Auto] [trojan.js.downloader.1]
387f7c957ddac8ed73e466c58eeaf084	[HEUR.JS.Trojan.b] [trojan.js.downloader.1]
c8b740f55655dd89ff11b40a774355d2	[HEUR.JS.Trojan.b] [Js.Trojan.Raas.Auto] [trojan.js.downloader.1]
dfeaad399baf04b1edebf5ea6597665c	[HEUR.JS.Trojan.b] [Js.Trojan.Raas.Auto] [trojan.js.downloader.1]
b86483fc79c40d4463ae6cb7b08e4911	[HEUR.JS.Trojan.b] [Js.Trojan.Raas.Auto] [trojan.js.downloader.1]

Whois

Property	Value
Name	Roman Rohr
Organization	Erika a.s.
Email	domeny@erika-as.cz
Address	Na Prikope 9-11
Zip Code	11000
City	Praha 1
Country	CZ
Phone	+420.602660307
NameServer	beta.ns.active24.cz
Created	2008-03-24 19:33:06
Changed	2016-03-24 22:21:16
Expires	2017-03-24 19:33:06
Registrar	Ascio Technologies,