The domain download.idmsilent.net is registered by proxy through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM and was originally registered in November of 2012. Currently this domain has been known to host various forms of malware. The hosted servers are located in Zurich, Zurich within Switzerland which resides on the RIPE Network Coordination Centre network.
Registrant:
Privacy Protection Service INC d/b/a PrivacyProtect.org
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM
Server location:
Zurich, Switzerland (CH)
Create date:
Monday, November 19, 2012
Expires date:
Saturday, November 19, 2016
Updated date:
Friday, October 30, 2015
ASN:
AS40034 CONFLUENCE-NETWORK-INC - Confluence Networks Inc,VG
Scanner detections:
Malware distribution (100% detected)
Scan engine
Details
Detections
Bkav FE
W32.TrosrameLTAT.Trojan, W32.RoaleteyLTE.Trojan
100.00%
MicroWorld eScan
Gen:Variant.Zusy.93150, Gen:Variant.Zusy.84754
100.00%
McAfee
RDN/Generic PWS.y!bb3, W32/Worm-FSD!Gamarue
100.00%
Malwarebytes
Backdoor.Agent.WNAGen, Backdoor.Agent.LDGen
100.00%
K7 AntiVirus
Trojan
100.00%
Bitdefender
Gen:Variant.Zusy.93150, Gen:Variant.Zusy.84754
100.00%
NANO AntiVirus
Trojan.Win32.KeyLogger.cwnnui, Trojan.Win32.Foxhiex.dhxzyz
100.00%
ESET NOD32
MSIL/Injector.DFD (variant), Win32/Agent.VOE
100.00%
avast!
Win32:Malware-gen, MSIL:Agent-BQX [Trj]
100.00%
Kaspersky
HEUR:Trojan.Win32.Generic
100.00%
Agnitum Outpost
TrojanSpy.KeyLogger, Trojan.Agent
100.00%
Lavasoft Ad-Aware
Gen:Variant.Zusy.93150, Gen:Variant.Zusy.84754
100.00%
Comodo Security
UnclassifiedMalware
100.00%
F-Secure
Gen:Variant.Zusy.93150, Packed:MSIL/SmartIL.A
100.00%
Dr.Web
Trojan.DownLoader9.28526, Trojan.DownLoader9.30057
100.00%
The domain download.idmsilent.net has been seen to resolve to the following 2 IP addresses.
File downloads found at URLs served by download.idmsilent.net.
URL:
http://download.idmsilent.net/
Web server:
Apache/2.2.15 (CentOS) (PHP/5.3.3)
Related Domains