Domain > www.directdownloader.com

More information on this domain is in AlienVault OTX

Is this malicious?

Reports

http://www.trendmicro.nl/media/misc/africa-new-saf...

https://otx.alienvault.com/pulse/56c6e16467db8c125...

Files that talk to www.directdownloader.com

MD5	A/V
194116d36659e04993a18be116de74b7	[Worm.P2P.Palevo.B] [Worm.Silly] [W32/Rimecud] [Trojan/Rimecud] [Virus] [Win32/Peerfrag.EE] [W32/Palevo.B] [WORM_PALEVO.AZ] [Win32:Rimecud-B] [Win32.WormPalevo.Ann] [Worm.Palevo-1] [P2P-Worm.Win32.Palevo.ann] [Virus.Win32.Rimecud._7] [Win32.HLLW.Lime.17] [Worm/Palevo.ann] [W32/Autorun-AIC] [Worm/Palevo.exd] [Worm:Win32/Rimecud.B] [BScope.Backdoor.SdBot.ofx] [Worm.Win32.Rimecud] [W32/Kryptik.ANN!tr] [W32/P2Pworm.CP]
67cb0bb1bba73e0875bcf2b9331f61de	[DirectDownminer] [Adware.DirectDownload] [PUA.Indirect!] [DirectDownloader.BQZB] [TROJ_DI.B9ADDC64] [Win.Trojan.Directdownloader] [not-a-virus:AdWare.NSIS.Indirect.a] [Riskware.Nsis.Downware.cuyfjb] [Adware.DirectDownloader] [DirectDownloader] [Application.Win32.DirectDown.B] [Trojan.MulDrop4.4652] [VIRUS_UNKNOWN] [SoftwareBundler:Win32/DirectDownloader] [W32/Trojan.KPLN-3729] [AdWare.Indirect] [Win32/DirectDownloader] [Skodna.SuspectCRC] [W32/DirectDownloader.E!tr] [AdInstaller.DirectDownloader.dropper]
51996f8efba55a4321b4d5604607c9d0
20f6003dbe98988688964e0f042fb59a
447c33242e8ae68d8d64407be5aab089	[Artemis!447C33242E8A] [Adware.DirectDownloader] [Trojan.Win32.Downware.bfqswo] [WS.Reputation.1] [HT_DIRECTDOWNLOADER_BK083A18.TOMC] [Trojan.Kazy-237] [Application.Win32.DirectDown.B] [Adware.Downware.493] [Heuristic.BehavesLike.Win32.Suspicious.H] [VIRUS_UNKNOWN] [W32/Trojan.KPLN-3729] [Win32/DirectDownloader.E] [Trojan.DirectDownloader!49BD] [W32/DirectDownloader]
193e7135cee428f250df2bfb713de6a1	[Artemis!193E7135CEE4] [Adware.DirectDownloader] [Trojan.Win32.Downware.bfqswo] [WS.Reputation.1] [Trojan.Kazy-237] [Application.Win32.DirectDown.B] [Adware.Downware.493] [Heuristic.BehavesLike.Win32.Suspicious.H] [VIRUS_UNKNOWN] [Win32/DirectDownloader.E] [Trojan.DirectDownloader!49BD] [W32/DirectDownloader]
43209462f87cdb956ccee70ad0ef0b7b	[Artemis!43209462F87C] [Adware.DirectDownloader] [Trojan.Win32.Downware.bfqswo] [DirectDownloader.BQZB] [Trojan.Kazy-237] [not-a-virus:AdWare.NSIS.Indirect.a] [DirectDownloader] [Application.Win32.DirectDown.B] [Trojan.Click2.64262] [Heuristic.BehavesLike.Win32.Suspicious.H] [VIRUS_UNKNOWN] [SoftwareBundler:Win32/DirectDownloader] [AdWare.Indirect] [Win32/DirectDownloader.E] [Trojan.DirectDownloader!49BD] [W32/DirectDownloader.E!tr]
0fe5575fbffc2db6806a61c05839e526	[W32.HfsIframe.3aab]
eedfd618bac239c996e46fdd7aa35fc2	[TrojanDownloader.Adload] [Trojan.DownLoader10.63932] [Win32/TrojanDownloader.Adload.NMU] [W32/Adload.NLZ!tr.dldr] [W32.IRCBot.NG] [TROJ_SPNV.03C414]
4c476f4fda9cb65331e336a512924e3b	[Artemis!4C476F4FDA9C] [Adware.DirectDownloader] [Trojan.Win32.Downware.bfqswo] [WS.Reputation.1] [Trojan.Kazy-237] [Application.Win32.DirectDown.B] [Adware.Downware.493] [Heuristic.BehavesLike.Win32.Suspicious.H] [VIRUS_UNKNOWN] [Win32/DirectDownloader.E] [Trojan.DirectDownloader!49BD] [W32/DirectDownloader]
e2b385fc07a9f2c7a8138a7f82abb468	[Adware.DirectDownloader] [Trojan.Win32.Downware.bfqswo] [DirectDownloader.BQZB] [HV_DIRECTDOWNLOADER_BK083A18.TOMC] [Trojan.Kazy-237] [not-a-virus:AdWare.NSIS.Indirect.a] [Application.Win32.DirectDown.B] [Trojan.Click2.64262] [TROJ_DIRECTDOWNLOADER_BK083A18.UVPC] [DirectDownloader] [VIRUS_UNKNOWN] [SoftwareBundler:Win32/DirectDownloader] [AdWare.Indirect] [Win32/DirectDownloader.E] [Trojan.DirectDownloader!49BD] [W32/DirectDownloader.E!tr]
20f17f3f87228612c25fdf891b86dc34	[DirectDownminer] [Adware.DirectDownload] [PUA.Indirect!] [DirectDownloader.BQZB] [TROJ_DI.B9ADDC64] [Win.Trojan.Directdownloader] [not-a-virus:AdWare.NSIS.Indirect.a] [Riskware.Nsis.Downware.cuyfjb] [Adware.DirectDownloader] [Application.Win32.DirectDown.B] [Trojan.MulDrop4.4652] [DirectDownloader] [VIRUS_UNKNOWN] [SoftwareBundler:Win32/DirectDownloader] [W32/Trojan.KPLN-3729] [AdWare.Indirect] [Win32/DirectDownloader] [Skodna.SuspectCRC] [W32/DirectDownloader.E!tr] [AdInstaller.DirectDownloader.dropper]
1f54be728d07fb8db2a3ede42b51c527	[Adware.DirectDownloader] [Trojan.Win32.Downware.bfqswo] [DirectDownloader.BQZB] [HV_DIRECTDOWNLOADER_CA25030D.TOMC] [Trojan.Kazy-237] [not-a-virus:AdWare.NSIS.Indirect.a] [Application.Win32.DirectDown.B] [Trojan.Click2.64262] [TROJ_DIRECTDOWNLOADER_BK083A18.UVPC] [DirectDownloader] [VIRUS_UNKNOWN] [SoftwareBundler:Win32/DirectDownloader] [Adware/Win32.DirectDownloader] [AdWare.Indirect] [Win32/DirectDownloader.E] [Trojan.DirectDownloader!49BD] [W32/DirectDownloader.E!tr]
331dace0f0d60acba3be735627c5a488	[Artemis!331DACE0F0D6] [Adware.DirectDownloader] [Trojan.Win32.Downware.bfqswo] [WS.Reputation.1] [Trojan.Kazy-237] [Application.Win32.DirectDown.B] [Adware.Downware.493] [Heuristic.BehavesLike.Win32.Suspicious.H] [VIRUS_UNKNOWN] [Win32/DirectDownloader.E] [Trojan.DirectDownloader!49BD] [W32/DirectDownloader]
c5712dfb68f457ebd30c2e8d06fe966f	[Adware.DirectDownloader] [Trojan.Win32.Downware.bfqswo] [DirectDownloader.BQZB] [HV_DIRECTDOWNLOADER_BK083A18.TOMC] [Trojan.Kazy-237] [not-a-virus:AdWare.NSIS.Indirect.a] [Application.Win32.DirectDown.B] [Trojan.Click2.64262] [TROJ_DIRECTDOWNLOADER_BK083A18.UVPC] [DirectDownloader] [VIRUS_UNKNOWN] [SoftwareBundler:Win32/DirectDownloader] [Adware/Win32.DirectDownloader] [AdWare.Indirect] [Win32/DirectDownloader.E] [Trojan.DirectDownloader!49BD] [W32/DirectDownloader.E!tr]
84ed4bc59f53da4569086189757ac3cf
3335d232596781bce9638a1c908192d3
0d1e2665836e49a16b6ff6d8614c3f7e	[Artemis!0D1E2665836E] [Adware.DirectDownloader] [Trojan.Win32.Downware.bfqswo] [WS.Reputation.1] [Trojan.Kazy-237] [Application.Win32.DirectDown.B] [Adware.Downware.493] [Heuristic.BehavesLike.Win32.Suspicious.H] [VIRUS_UNKNOWN] [Win32/DirectDownloader.E] [Trojan.DirectDownloader!49BD] [W32/DirectDownloader]
020bd7b60dc6ddec3e4f041aca60e2d7	[Artemis!020BD7B60DC6] [Adware.DirectDownloader] [Riskware.Nsis.Downware.cuyfjb] [WS.Reputation.1] [DirectDownloader.BQZB] [Trojan.Kazy-237] [not-a-virus:AdWare.NSIS.Indirect.a] [PUA.DirectDownloader!] [Application.Win32.DirectDown.B] [Trojan.Click2.64262] [TROJ_DI.B9ADDC64] [Heuristic.BehavesLike.Win32.Suspicious.H] [DirectDownloader] [VIRUS_UNKNOWN] [SoftwareBundler:Win32/DirectDownloader] [Adware/Win32.DirectDownloader] [NSIS.Trojan.DirectDownloader.C] [W32/Trojan.KPLN-3729] [AdWare.Indirect] [Adware/DirectDownloader] [PE:Trojan.DirectDownloader!1.6597] [W32/DirectDownloader.E!tr] [Adware.NSIS.Indirect.Ac]
439d053633aec77a5aca884835f5806b	[W32.HfsIframe.5c03] [JS.Iframe-2] [TrojWare.JS.iFrame.EBTZ] [JS/iFrame.EB.309] [HTML/Framer]

Whois

Property	Value
Email	EF4D67C9A989434C8375E6AAEE66C689.PROTECT@WHOISGUARD.COM
NameServer	DNS2.REGISTRAR-SERVERS.COM
Created	2012-04-02 00:00:00
Changed	2015-03-16 00:00:00
Expires	2016-04-02 00:00:00
Registrar	ENOM, INC.

DNS Resolutions

Date	IP Address
2013-04-01	194.28.157.40 (ClassC)
2013-10-18	199.58.162.51 (ClassC)
2013-10-19	199.58.162.69 (ClassC)
2014-01-14	199.58.162.51 (ClassC)
2014-01-14	199.58.162.69 (ClassC)
2014-10-06	192.31.186.4 (ClassC)
2014-10-10	162.255.119.254 (ClassC)
2015-07-10	68.65.123.201 (ClassC)
2016-02-06	162.255.119.251 (ClassC)
2026-01-19	162.255.119.249 (ClassC)

Port 80

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]