home

directmediadownloads.com

N/A

Domain Information

The domain directmediadownloads.com registered by N/A was initially registered in December of 2013 through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Amsterdam, Noord-Holland within Netherlands which resides on the RIPE Network Coordination Centre network.
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM

Server location:
Noord-Holland, Netherlands (NL)

Create date:
Sunday, December 1, 2013

Expires date:
Monday, December 1, 2014

Updated date:
Monday, December 30, 2013

ASN:
AS16265 FIBERRING LeaseWeb B.V.,NL

Whois:
1 directmediadownloads.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.InstallMonetizer, PUP.Optional.Amonetize.A
100.00%

Sophos
Amonetize
100.00%

Dr.Web
Adware.Downware.1655, Adware.Downware.1833, Adware.Downware.2467
100.00%

VIPRE Antivirus
Amonetize
100.00%

ESET NOD32
Win32/Amonetize.AA (variant), Win32/Amonetize.AJ (variant)
100.00%

Reason Heuristics
PUP.Installer.Amonetizeltd.AA, PUP.Installer.Amonetizeltd.Y, PUP.Installer.Amonetizeltd.?, PUP.Installer.Amonetizeltd.c, PUP.Installer.Amonetizeltd.F
100.00%

Trend Micro House Call
TROJ_GEN.F47V0102, TROJ_GEN.F47V0106, TROJ_GEN.F47V0109, TROJ_GEN.F47V1230
83.33%

McAfee
Artemis!7AC7C64CC2F4, Artemis!6DE97CF4E6D1, Artemis!13CE375DADC9, Artemis!5DF925D8AAAB
66.67%

avast!
Win32:Malware-gen, Win32:Dropper-gen [Drp], Win32:Amonetize-AK [PUP]
50.00%

Bkav FE
W32.Clod294.Trojan
16.67%

MicroWorld eScan
Adware.Agent.NVN
16.67%

nProtect
Adware.Agent.NVN
16.67%

Bitdefender
Adware.Agent.NVN
16.67%

Lavasoft Ad-Aware
Adware.Agent.NVN
16.67%

Emsisoft Anti-Malware
Adware.Agent.NVN
16.67%

The domain directmediadownloads.com has been seen to resolve to the following IP address.

85.17.122.160
hosted-by.leaseweb.com
January 10, 2014

File downloads found at URLs served by directmediadownloads.com.

9 / 68      (Adware)
http://directmediadownloads.com/download.php?version=1.1.6.19&campid=3687&instid[appname]=PokemonXY EmulatorRom Downloader&instid[appsetupurl]=http://yourmediadownloads.com/download/Prompt-Downloader-1804568587.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=PokemonXY EmulatorRom Downloader&instid[thankyoupage]=http://.../?success&instid[interrupted]=http://.../?cancel&ti1=1804568587  (mediaplayer__3137_i223509078_il710.exe)

8 / 68      (Adware)
http://directmediadownloads.com/download.php?version=1.1.6.19&campid=3687&instid[appname]=Het Diner Luisterboek Downloader&instid[appsetupurl]=http://yourmediadownloads.com/download/Prompt-Downloader-1131553656.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Het Diner Luisterboek Downloader&instid[thankyoupage]=http://.../?success&instid[interrupted]=http://.../?cancel&ti1=1131553656  (facebook hack tool 2014 downloader__3687_i233247363_il1373809.exe)

8 / 68      (Adware)
http://directmediadownloads.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=The Urban Moment Cosmopolitan Essays On The Late Downloader&instid[appsetupurl]=http://yourmediadownloads.com/download/Prompt-Downloader-1574049335.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=The Urban Moment Cosmopolitan Downloader&instid[thankyoupage]=http://.../?success&instid[interrupted]=http://.../?cancel&ti1=1574049335  (livecracker v2 0 free download downloader__3687_i251292332_il4250824.exe)

8 / 68      (Adware)
http://directmediadownloads.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=The Urban Moment Cosmopolitan Essays On The Late Downloader&instid[appsetupurl]=http://yourmediadownloads.com/download/Prompt-Downloader-1793315831.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=The Urban Moment Cosmopolitan Downloader&instid[thankyoupage]=http://.../?success&instid[interrupted]=http://.../?cancel&ti1=1793315831  (livecracker v2 0 free download downloader__3687_i251292332_il4250824.exe)

8 / 68      (Adware)
http://directmediadownloads.com/download.php?version=1.1.6.19&campid=3687&instid[appname]=Political And Military Masonic Leaders Downloader&instid[appsetupurl]=http://yourmediadownloads.com/download/Prompt-Downloader-1569108709.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Political And Military Masonic Downloader&instid[thankyoupage]=http://.../?success&instid[interrupted]=http://.../?cancel&ti1=1569108709  (facebook hack tool 2014 downloader__3687_i233247363_il1373809.exe)

11 / 68    (Adware)
http://directmediadownloads.com/download.php?version=1.1.6.19&campid=3687&instid[appname]=MyTTY 3 0 Software Phone System For Deaf And Heari Downloader&instid[appsetupurl]=http://yourmediadownloads.com/download/Prompt-Downloader-1290516205.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=MyTTY 3 0 Software Phone Syste Downloader&instid[thankyoupage]=http://.../?success&instid[interrupted]=http://.../?cancel&ti1=1290516205  (setup.exe)

8 / 68      (Adware)
http://directmediadownloads.com/download.php?version=1.1.6.19&campid=3687&instid[appname]=MyTTY 3 0 Software Phone System For Deaf And Heari Downloader&instid[appsetupurl]=http://yourmediadownloads.com/download/Prompt-Downloader-1290516205.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=MyTTY 3 0 Software Phone Syste Downloader&instid[thankyoupage]=http://.../?success&instid[interrupted]=http://.../?cancel&ti1=1290516205  (facebook hack tool 2014 downloader__3687_i233247363_il1373809.exe)

18 / 68    (Adware)
http://directmediadownloads.com/download.php?version=1.1.6.19&campid=3687&instid[appname]=MC68HC12 An Introduction Software And Hardware In Downloader&instid[appsetupurl]=http://yourmediadownloads.com/download/Prompt-Downloader-1205228757.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=MC68HC12 An Introduction Soft Downloader&instid[thankyoupage]=http://.../?success&instid[interrupted]=http://.../?cancel&ti1=1205228757  (a writer s reference for multi downloader__3687_i243469586_il3049828.exe)

7 / 68      (Adware)
http://directmediadownloads.com/download.php?version=1.1.5.26&campid=3687&instid[appname]=Engineering Economic Analysis Downloader&instid[appsetupurl]=http://yourmediadownloads.com/download/Prompt-Downloader-1246841861.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Engineering Economic Analysis Downloader&instid[thankyoupage]=http://.../?success&instid[interrupted]=http://.../?cancel&ti1=1246841861  (skymonkam__2155_il118457.exe)

8 / 68      (Adware)
http://directmediadownloads.com/download.php?version=1.1.6.19&campid=3687&instid[appname]=Tai Ji Quan Treatise Attributed To The Song Dynas Downloader&instid[appsetupurl]=http://yourmediadownloads.com/download/Prompt-Downloader-1710378828.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=Tai Ji Quan Treatise Attribut Downloader&instid[thankyoupage]=http://.../?success&instid[interrupted]=http://.../?cancel&ti1=1710378828  (facebook hack tool 2014 downloader__3687_i233247363_il1373809.exe)

18 / 68    (Adware)
http://directmediadownloads.com/download.php?version=1.1.6.19&campid=3687&instid[appname]=A Writer S Reference For Multimodal Projects Downloader&instid[appsetupurl]=http://yourmediadownloads.com/download/Prompt-Downloader-1765636614.exe&instid[cmdline]=&instid[appimageurl]=http://.../logo.png&prefix=A Writer S Reference For Multi Downloader&instid[thankyoupage]=http://.../?success&instid[interrupted]=http://.../?cancel&ti1=1765636614  (a writer s reference for multi downloader__3687_i243469586_il3049828.exe)

URL:
http://directmediadownloads.com/

Title:
“Redirecting to leaseweb.com”

Web server:
nginx/1.0.15

yourfastmediadownloads.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.