home

secure.dwnld06.com

Domain Information

Server location:
Virginia, United States (US)

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Root domain:
dwnld06.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Bundler.Adknowledge
100.00%

VIPRE Antivirus
Threat.4798837
100.00%

Emsisoft Anti-Malware
Gen:Variant.Adware.Strictor.76822
100.00%

ESET NOD32
NSIS/TrojanDownloader.Adload.AG trojan
100.00%

F-Secure
Gen:Variant.Adware.Strictor
100.00%

Lavasoft Ad-Aware
Gen:Variant.Adware.Strictor.76822
100.00%

Clam AntiVirus
Win.Trojan.Agent-847729
100.00%

MicroWorld eScan
Gen:Variant.Adware.Strictor.76822
100.00%

nProtect
Trojan-Clicker/W32.iBryte.117576
100.00%

Bitdefender
Gen:Variant.Adware.Strictor.76822
100.00%

Avira AntiVirus
TR/Dldr.Adload.117576.3
100.00%

G Data
Gen:Variant.Adware.Strictor.76822
100.00%

AVG
Adware AdPlugin
100.00%

K7 AntiVirus
Unwanted-Program
100.00%

Dr.Web
Trojan.DownLoader12.24188
100.00%

The domain secure.dwnld06.com has been seen to resolve to the following 2 IP addresses.

54.243.183.125
ec2-54-243-183-125.compute-1.amazonaws.com
May 5, 2015

54.243.186.169
ec2-54-243-186-169.compute-1.amazonaws.com
May 5, 2015

File downloads found at URLs served by secure.dwnld06.com.

28 / 68    (Adware)
http://secure.dwnld06.com/o/.../Setup.exe  (3195ca103074b4d543c28d5e2a0a5ea9)

The following 5 files have been seen to comunicate with secure.dwnld06.com in live environments.

TCP » 54.243.183.125:80
bmanager.exe

TCP » 54.243.183.125:80
havij.exe (Swift Installer)

TCP » 54.243.183.125:80
havij.exe (Swift Installer)

TCP » 54.243.183.125:80
889cfdf53ed361b978a97984afb04aa93fb721bd (Software Installer)

TCP » 54.243.186.169:80
setup.exe (Software Installer)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.