Download
Community
knowledgeBase
» get.down1012.org
Overview
Analysis
IPs Addresses (10)
Downloads (38)
Website Detail
get.down1012.org
OutBrowse
Domain Information
This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrant:
OutBrowse
Registrar:
GoDaddy.com, LLC
Server location:
Virginia, United States (US)
ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US
Root domain:
down1012.org
Whois:
1 down1012.org record
Analysis
Google Safe Browsing:
unwanted
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
(M), PUP.MariMara.M, PUP.JustAccept, PUP.Bundler.Outbrowse, PUP.Outbrowse.otOPiaSoFT.Bundler (M), PUP.Outbrowse.MariMara.Bundler (M), PUP.Outbrowse.YesApps.Bundler (M), PUP.Outbrowse.otOPiaSo.Bundler (M), PUP.Outbrowse (M)
100.00%
Dr.Web
Trojan.OutBrowse.14, Trojan.OutBrowse.54, infected with Trojan.OutBrowse.125
7.89%
Sophos
PUA 'OutBrowse Revenyou'
7.89%
McAfee
Adware-OutBrowse.d, Program.Adware-OutBrowse.d, Adware-OutBrowse.e
7.89%
Malwarebytes
PUP.Optional.OutBrowse
7.89%
Agnitum Outpost
PUA.OutBrowse
7.89%
NANO AntiVirus
Trojan.Win32.OutBrowse.dlwssj, Trojan.Win32.OutBrowse.dlunsw, Trojan.Win32.Generic.dorbni
7.89%
Avira AntiVirus
APPL/Outbrowse.Gen, PUA/Outbrowse.Gen
7.89%
Fortinet FortiGate
Riskware/OutBrowse, Adware/OutBrowse
7.89%
AVG
Downloader, Adware AdPlugin.CUA
7.89%
ESET NOD32
Win32/OutBrowse.BQ potentially unwanted application, Win32/OutBrowse.BS potentially unwanted application
5.26%
K7 AntiVirus
Unwanted-Program
5.26%
Trend Micro House Call
Suspici.C190457F, Suspici.2F9E2453
5.26%
Vba32 AntiVirus
Downloader.OutBrowse
5.26%
Kaspersky
not-a-virus:Downloader.NSIS.OutBrowse, not-a-virus:AdWare.Win32.OutBrowse
5.26%
IPs Addresses
The domain get.down1012.org has been seen to resolve to the following 10 IP addresses.
54.175.102.143
ec2-54-175-102-143.compute-1.amazonaws.com
May 17, 2016
50.19.244.143
ec2-50-19-244-143.compute-1.amazonaws.com
April 19, 2016
54.225.72.141
ec2-54-225-72-141.compute-1.amazonaws.com
April 2, 2016
107.20.138.96
ec2-107-20-138-96.compute-1.amazonaws.com
April 2, 2016
54.235.203.221
ec2-54-235-203-221.compute-1.amazonaws.com
February 21, 2016
75.101.141.20
ec2-75-101-141-20.compute-1.amazonaws.com
February 21, 2016
23.23.73.75
ec2-23-23-73-75.compute-1.amazonaws.com
February 17, 2016
54.243.166.148
ec2-54-243-166-148.compute-1.amazonaws.com
February 17, 2016
54.225.222.50
ec2-54-225-222-50.compute-1.amazonaws.com
February 10, 2016
23.23.109.139
ec2-23-23-109-139.compute-1.amazonaws.com
February 10, 2016
Downloads
File downloads found at URLs served by get.down1012.org.
1 / 68 (Adware)
http://get.down1012.org/.../get5?p=16434&d=22135&l=21329&n=1
(nsx7cc6.tmp)
1 / 68 (Adware)
http://get.down1012.org/.../get5?p=16434&d=22135&l=21329&n=1
(installation.exe)
1 / 68 (Adware)
http://get.down1012.org/1425801867/1425801867/.../bTcoMDAyNB9jNDE1My4tJGg8KjcoMjYgZTovIm9rblt1YG5lXmthPG10WWVqW2tiXWxga2BWcGBZXGtdYXJpYGVvaSBbdmxdbGJiZWFqXzRxc15kZmBrZVxqWG9fW29cXlxuXF9qbV9qbmUlXWlpX2Vea2E8bXRZZWpba2JdbGBrYFZwYFlca11hcmlgZW9pIFsuOy4xH2hab2s3LCN4ZW82MQ
(tubemate_para_pc_en_espanol.exe)
1 / 68 (Adware)
http://get.down1012.org/.../get5?p=16434&d=22135&l=21329&n=1
(installation.exe)
1 / 68 (Adware)
http://get.down1012.org/.../get5?p=16434&d=22135&l=21329&n=1
(installation.exe)
1 / 68 (Adware)
http://get.down1012.org/.../1425791150/1425791150?52462905819YmNwKzc2cDgvMictJGA3MCs1LyslYzgvMjMyHW44KSVbLDstMi4tNSFba2BeaWVeOyk0LS01MDQ0Li4kYGNqZjwsIXhlajsp
(setup.exe)
1 / 68 (Adware)
http://get.down1012.org/.../1425791221/1425791221?63902590175YWJrMTc6Zz02LCssI1s9MC8sNDIfZzcuLTkyIWU9MB9fKzooOC4xLCZiZWRdaGBkOy0rMjQvNDMzKTQkZFpvbTYwIHdgcDst
(setup.exe)
1 / 68 (Adware)
http://get.down1012.org/.../1425791360/1425791360?42208548738Y2NyMTE6bDUwMCguJGI9Ki8xLCwjZDkvNDksIWo1KiNcLTsvOCgxMR5caWFfaWdkNS0wKi4zMTU0MDQeZF9nZzotInhncDUt
(setup.exe)
1 / 68 (Adware)
http://get.down1012.org/.../get5?p=16434&d=22135&l=21329&n=1
(installation.exe)
1 / 68 (Adware)
http://get.down1012.org/.../get9?p=19363&d=25548&l=24735&n=1 productname=Doctor pc&filename=Doctor pc&icon=2
(264920.exe.exe)
1 / 68 (Adware)
http://get.down1012.org/1420154677/get5?p=15593&d=21343&l=20431&n=1&productname=Setup&exeurl=https://download-installer.cdn.mozilla.net/pub/firefox/releases/30.0/win32/.../Firefox Setup 30.0.exe&dynamicname=Firefox&filename=Firefox
(firefox.exe)
1 / 68 (Adware)
http://get.down1012.org/.../get5?p=8697&d=18464&l=17609&n=1
(installation.exe)
1 / 68 (Adware)
http://get.down1012.org/.../1425785965/1425785965?29388833149ZVxxKTE3bTowNSw3LSNcNSoyNTAzHWo0LywxMTUjbTkoJGdvZ1xtYHFtXWRjNFNEOyNKYmNlWClHaVlxXW8oMSooLC1eHlxxa15sZVpsWGpdNU5JQCpJXGJgXiNIZF52ZG4iMCUuJi5ZI2NoaFxsWGpdNW5pYCwuJS8lM1klb2ZrMi5qY2tyaB5hYGxtOSwkcWZoNSo
(vlc-2.1.6a-win32setup.exe)
1 / 68 (Adware)
http://get.down1012.org/.../1425791667/1425791667?77820518852YF5sLzk6bzUpNDMyLx5iPS00MCkyJGU2KjI5NDceZjgvH2lqbWRwYmxmXGteNk5KQyZMXVxkXyRJZF95YHEjKikvJy9ZJGR0bVllZGFnWmVjPVFLOyNIY11iWSlQZ2BxXW0pKycpLDZcJV5hZ2NnWmVjPXFrWyUtLConLl8tcmhmKy1xXm1tbiZkYmdmODMfc2FuPS0
(vlc-2.1.6a-win32setup.exe)
1 / 68 (Adware)
http://get.down1012.org/.../1425783627/1425783627?81421882430X2RwLzg3aDstNjUxNSJiPCotNi00JmQ8LjI4MTAkajoxHm9ubWNtW3JqXm1dPFJKQiNFY2BmYSNPaF94XWopLisxJjVdJGNxZl9pZmNmYGljPE5EQSdKZVxoXSlPZFl3YW8rKi0tLDVZHmRlaWVmYGljPG5kYSkvLiktMl8sb2FsLy9zXXNxbiVhW21qOjUeeWVuPCo
(vlc-2.1.6a-win32setup.exe)
1 / 68 (Malware)
http://get.down1012.org/.../1425801880/1425801880?24935102755ZWFrLjQ cDswLiswIls6LTM1MiwhZzstLTYvJW47KiFfLzkoNSs1NSRcZ2RhZ2BhODE0MS4yMDUvMDYhaGNtZzgwJHZgbTgx
(setup.exe)
1 / 68 (Adware)
http://get.down1012.org/.../get5?p=16434&d=22135&l=21329&n=1
(installation.exe)
1 / 68 (Adware)
http://get.down1012.org/.../1425787344/1425787344?62968781815YWNrKzE4aDwpODAzNB1eNSstNyk2IWY7KS4xMjAlZjwsIG5paVxuW3NmYGhfO01GOyRFZFxoXCVOY1txXmoqKi0sKDRYIFxyZmBlaF5oX2RfNU9EQiNMYF5nWCVIZVl4XXEmLCwoKC5aHmVha2BoX2RfNW9kYiUxKSssLVslcGFtKzFuX3Jsah5iW25mPDAgeGBqNSs
(vlc-2.1.6a-win32setup.exe)
1 / 68 (Adware)
http://get.down1012.org/1418989203/get5?p=1094&d=19929&l=19094&n=1&productname=AnizanDownloadManager&exeurl=http://go34down.com/dwnld/h/HD CODEC Setup.exe&dynamicname=Free Download Games Fifa 2013 Full Version for PC&filename=Free Download Games Fifa 2013 Full Version for PC&tyurl=http://.../an?q=Free Download Games Fifa 2013 Full Version for PC&affiliate_id=Thankspager&S=5204
(free_download_games_fifa_2013_full_version_for_pc.exe)
1 / 68 (Adware)
http://get.down1012.org/.../get9?p=19363&d=25548&l=24735&n=1 productname=Doctor pc&filename=Doctor pc
(497694.exe.exe)
1 / 68 (Adware)
http://get.down1012.org/1419146321/get5?p=15593&d=21257&l=20431&n=1&productname=Setup&exeurl= http://mirror.switch.ch/ftp/mirror/videolan/vlc/2.1.5/.../vlc-2.1.5-win32.exe&dynamicname=VLC player&filename=VLC player
(vlc player.exe)
1 / 68 (Adware)
http://get.down1012.org/1419504406/get5?p=15593&d=21343&l=20431&n=1&productname=Setup&exeurl=https://download-installer.cdn.mozilla.net/pub/firefox/releases/30.0/win32/.../Firefox Setup 30.0.exe&dynamicname=Firefox&filename=Firefox
(firefox.exe)
1 / 68 (Adware)
http://get.down1012.org/.../get5?p=16434&d=22135&l=21329&n=1
(installation.exe)
1 / 68 (Adware)
http://get.down1012.org/.../get5?p=16434&d=22135&l=21329&n=1
(installation.exe)
1 / 68 (Adware)
http://get.down1012.org/1425790906/1425790906/.../bjQwLCsyMh9dNzIyLS8qIWc8Ki8zNCRlPCkhXzA2R09NQDxRH15naFxkY2Q7LTIqKzNDSWlDdSRgYmhpODQfc2NwOyk
(setup.exe)
1 / 68 (Adware)
http://get.down1012.org/1425790910/1425790910/.../bjkvKiw2KiRiNTIyMi4oIms0LzQxNCRqOyciYyg7TE1NQEFQHV9rYGFpYWQ7S1YoLHNcNngrUyRlYWZqPCwkeGFwOy4
(setup.exe)
1 / 68 (Adware)
http://get.down1012.org/.../1425790913/1425790913?00827547423Z2VsLzI6bDYtMS03Mx5iNi0wLywvI2w9KTQyLyJnOS4jZDE1TE5IPj5OJGBsaVtpYl85bWcvLVQ2aUVfZyJiX21rPTUeeGJrOSs
(setup.exe)
1 / 68 (Adware)
http://get.down1012.org/.../1425790919/1425790919?23596383181ZWJvKDM8aDowKy81MCFbNy8sMy8pJWo6LC0zMR5rPCglYi44RU9KOkJRHmJqZl5iY2E1NmApL1JKU0BEcR5mYmdtOzIhcWNtNS8
(setup.exe)
1 / 68 (Adware)
http://get.down1012.org/.../1425790923/1425790923?10988696544ZmVrKTE5ZzcsLyw2Mx1cNSwrMCstIms9KC4xLh1oOCwiYzE0Rk1HOT9NIl9raVpjYV40aT8tLEZDR0JqYR1jXmtqPDUdcmFqNCw
(setup.exe)
1 / 68 (Adware)
http://get.down1012.org/.../1425790952/1425790952?11012271810ZmR0MDc9aTwpMjA2MiZjOzAtNSgwJms8MTU3Mh9tNS8mYzA9TVNLO0RKJWNraGNqZ2I2UTEwMHJ2bUNuRh9oW25uPDQmeWduNjE
(setup.exe)
Latest 30 of 38 download URLs
Website Details
URL:
http://get.down1012.org/
Network:
Amazon Web Services (AWS), running an EC2 instance
Web server:
Microsoft-IIS/8.0 (ASP.NET) (Version: 4.0.30319)
X