home

downprov.dynadownload.com

Whois Privacy Corp.

Domain Information

The domain downprov.dynadownload.com registered by Whois Privacy Corp. was initially registered in October of 2014 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software.
Registrar:
INTERNET.BS CORP.

Create date:
Sunday, October 12, 2014

Expires date:
Monday, October 12, 2015

Updated date:
Sunday, October 12, 2014

ASN:
AS9498 BBIL-AP BHARTI Airtel Ltd.,IN

Root domain:
dynadownload.com

Whois:
1 dynadownload.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Ukra2006.a, PUP.Ukra2006.z, PUP.Ukra2006.j, PUP.Amonetize (M)
100.00%

VIPRE Antivirus
Trojan.Win32.Generic
75.00%

Sophos
Amonetize
75.00%

G Data
NSIS.Application.Crypted
75.00%

AVG
Ukra, Win32/DH
75.00%

avast!
Win32:Malware-gen
50.00%

Trend Micro House Call
Suspicious_GEN.F47V1111, Suspicious_GEN.F47V1110
50.00%

McAfee
Artemis!FA9EEDF58ADE
25.00%

Dr.Web
Trojan.Amonetize.12
25.00%

The domain downprov.dynadownload.com has been seen to resolve to the following IP address.

127.0.0.1
ReasonOne
November 29, 2014

File downloads found at URLs served by downprov.dynadownload.com.

1 / 68      (Adware)
http://downprov.dynadownload.com/links?version=1.1.8.22&campid=10924&instid[appname]=direito constitucional descomplicado marcelo alexandrino_Downloader&instid[appsetupurl]=http://go.downloadboutique.com/getfast/download.cgi?9&ti1=1405000&ti2=0&ti3=DD1_2014-11-05T20:20:00.457124 00:00&instid[cmdline]=/S /PERFORMINSTALL /NORUN&instid[appimageurl]=http://download.downloadboutique.com/d1/logo150x150.png&prefix=direito constitucional descomplicado marcelo alexandrino&instid[thankyoupage]=http://download.downloadboutique.com/.../thank_you.php?ti1=1405000&ti2=0&ti3=DD1_2014-11-05T20:20:00.457124 00:00&parameter=direito constitucional descomplicado marcelo alexandrino&instid[interrupted]=http://download.downloadboutique.com/.../interrupted.php?ti1=1405000&ti2=0&ti3=DD1_2014-11-05T20:20:00.457124 00:00&parameter=direito constitucional descomplicado marcelo alexandrino&ti1=1405000&ti2=0&ti3=DD1_2014-11-05T20:20:00.457124 00:00  (direito constitucional descomplicado marcelo alexandrino_10924_i554950_il345.exe)

6 / 68      (Adware)
http://downprov.dynadownload.com/.../iskoola pota sinhala unicode_10924_i357990_il345.exe  (dz sat hd.zip_10924_i375096_il345.exe)

6 / 68      (Adware)
http://downprov.dynadownload.com/links?version=1.1.8.22&campid=10924&instid[appname]=iskoola pota sinhala unicode_Downloader&instid[appsetupurl]=http://go.downloadboutique.com/getfast/download.cgi?9&ti1=1405000&ti2=0&ti3=DD1_2014-11-04T13:25:56.493272 00:00&instid[cmdline]=/S /PERFORMINSTALL /NORUN&instid[appimageurl]=http://download.downloadboutique.com/d1/logo150x150.png&prefix=iskoola pota sinhala unicode&instid[thankyoupage]=http://download.downloadboutique.com/.../thank_you.php?ti1=1405000&ti2=0&ti3=DD1_2014-11-04T13:25:56.493272 00:00&parameter=iskoola pota sinhala unicode&instid[interrupted]=http://download.downloadboutique.com/.../interrupted.php?ti1=1405000&ti2=0&ti3=DD1_2014-11-04T13:25:56.493272 00:00&parameter=iskoola pota sinhala unicode&ti1=1405000&ti2=0&ti3=DD1_2014-11-04T13:25:56.493272 00:00  (dz sat hd.zip_10924_i375096_il345.exe)

6 / 68      (Adware)
http://downprov.dynadownload.com/.../iskoola pota sinhala unicode_10924_i357971_il345.exe  (dz sat hd.zip_10924_i375096_il345.exe)

6 / 68      (Adware)
http://downprov.dynadownload.com/links?version=1.1.8.22&campid=10924&instid[appname]=iskoola pota sinhala unicode_Downloader&instid[appsetupurl]=http://go.downloadboutique.com/getfast/download.cgi?9&ti1=1405000&ti2=0&ti3=DD1_2014-11-04T13:25:49.529656 00:00&instid[cmdline]=/S /PERFORMINSTALL /NORUN&instid[appimageurl]=http://download.downloadboutique.com/d1/logo150x150.png&prefix=iskoola pota sinhala unicode&instid[thankyoupage]=http://download.downloadboutique.com/.../thank_you.php?ti1=1405000&ti2=0&ti3=DD1_2014-11-04T13:25:49.529656 00:00&parameter=iskoola pota sinhala unicode&instid[interrupted]=http://download.downloadboutique.com/.../interrupted.php?ti1=1405000&ti2=0&ti3=DD1_2014-11-04T13:25:49.529656 00:00&parameter=iskoola pota sinhala unicode&ti1=1405000&ti2=0&ti3=DD1_2014-11-04T13:25:49.529656 00:00  (dz sat hd.zip_10924_i375096_il345.exe)

8 / 68      (Adware)
http://downprov.dynadownload.com/links?version=1.1.8.22&campid=10924&instid[appname]=daossoft rar password recovery keygen_Downloader&instid[appsetupurl]=http://go.downloadboutique.com/getfast/download.cgi?9&ti1=1405000&ti2=0&ti3=DD1_2014-11-04T16:58:28.019354 00:00&instid[cmdline]=/S /PERFORMINSTALL /NORUN&instid[appimageurl]=http://download.downloadboutique.com/d1/logo150x150.png&prefix=daossoft rar password recovery keygen&instid[thankyoupage]=http://download.downloadboutique.com/.../thank_you.php?ti1=1405000&ti2=0&ti3=DD1_2014-11-04T16:58:28.019354 00:00&parameter=daossoft rar password recovery keygen&instid[interrupted]=http://download.downloadboutique.com/.../interrupted.php?ti1=1405000&ti2=0&ti3=DD1_2014-11-04T16:58:28.019354 00:00&parameter=daossoft rar password recovery keygen&ti1=1405000&ti2=0&ti3=DD1_2014-11-04T16:58:28.019354 00:00  (daossoft rar password recovery keygen_10924_i399462_il345.exe)

8 / 68      (Adware)
http://downprov.dynadownload.com/.../daossoft rar password recovery keygen_10924_i398903_il345.exe  (daossoft rar password recovery keygen_10924_i399462_il345.exe)

7 / 68      (Adware)
http://downprov.dynadownload.com/links?version=1.1.8.22&campid=10924&instid[appname]=pepeljasto plava kosa_Downloader&instid[appsetupurl]=http://go.downloadboutique.com/getfast/download.cgi?9&ti1=1460000&ti2=0&ti3=DD1_2014-11-03T01:13:03.048852 00:00&instid[cmdline]=/S /PERFORMINSTALL /NORUN&instid[appimageurl]=http://download.downloadboutique.com/d1/logo150x150.png&prefix=pepeljasto plava kosa&instid[thankyoupage]=http://download.downloadboutique.com/.../thank_you.php?ti1=1460000&ti2=0&ti3=DD1_2014-11-03T01:13:03.048852 00:00&parameter=pepeljasto plava kosa&instid[interrupted]=http://download.downloadboutique.com/.../interrupted.php?ti1=1460000&ti2=0&ti3=DD1_2014-11-03T01:13:03.048852 00:00&parameter=pepeljasto plava kosa&ti1=1460000&ti2=0&ti3=DD1_2014-11-03T01:13:03.048852 00:00  (pepeljasto plava kosa_10924_i277153_il345.exe)

8 / 68      (Adware)
http://downprov.dynadownload.com/links?version=1.1.8.22&campid=10924&instid[appname]=daossoft rar password recovery keygen_Downloader&instid[appsetupurl]=http://go.downloadboutique.com/getfast/download.cgi?9&ti1=1405000&ti2=0&ti3=DD1_2014-11-04T16:58:28.019354 00:00&instid[cmdline]=/S /PERFORMINSTALL /NORUN&instid[appimageurl]=http://download.downloadboutique.com/d1/logo150x150.png&prefix=daossoft rar password recovery keygen&instid[thankyoupage]=http://download.downloadboutique.com/.../thank_you.php?ti1=1405000&ti2=0&ti3=DD1_2014-11-04T16:58:28.019354 00:00&parameter=daossoft rar password recovery keygen&instid[interrupted]=http://download.downloadboutique.com/.../interrupted.php?ti1=1405000&ti2=0&ti3=DD1_2014-11-04T16:58:28.019354 00:00&parameter=daossoft rar password recovery keygen&ti1=1405000&ti2=0&ti3=DD1_2014-11-04T16:58:28.019354 00:00  (daossoft rar password recovery keygen_10924_i399462_il345.exe)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.