dl.baixaki.com.br

Financeiro GrupoNZN

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dublin, Dublin City within Ireland which resides on the RIPE Network Coordination Centre network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Remove Malware from dl.baixaki.com.br - Powered by Reason Core Security
Server location:
Dublin City, Ireland (IE)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

ESET NOD32
Win32/InstallCore.AY (variant), Win32/InstallCore.BA (variant), Win32/InstallCore.AL (variant), Win32/InstallCore.AZ (variant)
83.33%

Dr.Web
Adware.InstallCore.75, Adware.InstallCore.53, Adware.InstallCore.76, Adware.InstallCore.72, Adware.InstallCore.43, Adware.InstallCore.59
76.67%

VIPRE Antivirus
InstallCore, Trojan.Win32.Generic, Adware.Trojan.Win32.Generic, Threat.4786018
76.67%

Avira AntiVirus
Adware/InstallBai.A, Adware/Installco.AB, Adware/InstallCo.LA, Adware/InstallCo.AB, ADWARE/InstallCore.Gen, PUA/InstallCo.AB
76.67%

Trend Micro House Call
TROJ_GEN.RCBH1J8, TROJ_GEN.RCBCOCN, HV_INSTALLBAI_CA082DAB.TOMC, TROJ_GEN.RCBH1B7, TROJ_GEN.R0CBH05JC13, TROJ_GEN.R0CBB01EL14, TROJ_GEN.F47V0822, TROJ_GEN.F47V0902
66.67%

F-Prot
W32/InstallCore.P.gen, W32/InstallCore.V2.gen, W32/InstallCore.S.gen, W32/InstallCore.G.gen, W32/InstallCore.W.gen
63.33%

SUPERAntiSpyware
Adware.InstallCore/Variant, PUP.AdBundle, Trojan.Agent/Gen-Artemis
60.00%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), Win32.Troj.InstallCore.(kcloud), Win32.Troj.Generic.v.(kcloud)
56.67%

Vba32 AntiVirus
BScope.Malware-Cryptor.InstallCore.2691, Malware-Cryptor.InstallCore.9, BScope.Malware-Cryptor.InstallCore.2692
50.00%

Rising Antivirus
PE:Trojan.Win32.Generic.141AB68B!337294987, PE:Malware.XPACK-LNR/Heur!1.5594
50.00%

Comodo Security
ApplicUnwnt.Win32.AdWare.Baxia.A, UnclassifiedMalware
43.33%

McAfee
Artemis!DCA848CBFB25, Artemis!F6A468FEFAE9, Artemis!ED589C83D940, Artemis!FB3D1CBD6FF7, Artemis!FBCA9B2571E6, Artemis!A1494D53006C, Artemis!C64BA84A095B
43.33%

McAfee Web Gateway
Artemis!DCA848CBFB25, Artemis!F6A468FEFAE9, Artemis!ED589C83D940, Artemis!FB3D1CBD6FF7, Artemis!FBCA9B2571E6, Artemis!A1494D53006C
43.33%

NANO AntiVirus
Trojan.Win32.InstallCore.cqqkpf, Trojan.Win32.InstallCore.ctkfjj, Trojan.Win32.InstallCore.cofivl, Trojan.Win32.InstallCore.cqleod
43.33%

Antiy Labs AVL
Trojan[:HEUR]/Win32.Unknown, Trojan/Win32.Tgenic, Trojan/Win32.SGeneric, HackTool[Hoax:HEUR]/Win32.ArchSMS
43.33%

The domain dl.baixaki.com.br has been seen to resolve to the following 30 IP addresses.

a184-51-126-105.deploy.static.akamaitechnologies.com
February 14, 2016

a184-51-126-83.deploy.static.akamaitechnologies.com
February 11, 2016

a184-51-126-82.deploy.static.akamaitechnologies.com
February 11, 2016

a23-0-160-83.deploy.static.akamaitechnologies.com
February 11, 2016

a184-28-17-160.deploy.static.akamaitechnologies.com
February 8, 2016

a184-28-17-210.deploy.static.akamaitechnologies.com
February 8, 2016

January 30, 2016

January 30, 2016

a184-51-126-59.deploy.static.akamaitechnologies.com
January 30, 2016

a184-51-126-51.deploy.static.akamaitechnologies.com
January 30, 2016

a23-0-160-25.deploy.static.akamaitechnologies.com
January 28, 2016

a23-0-160-42.deploy.static.akamaitechnologies.com
January 28, 2016

s3-1.amazonaws.com
June 30, 2015

s3-1.amazonaws.com
May 15, 2015

s3-1.amazonaws.com
May 6, 2015

s3-1.amazonaws.com
February 1, 2015

s3-1.amazonaws.com
January 25, 2015

s3-1.amazonaws.com
December 26, 2014

s3-1.amazonaws.com
December 1, 2014

s3-1.amazonaws.com
October 24, 2014

s3-1.amazonaws.com
October 20, 2014

s3-1.amazonaws.com
September 18, 2014

s3-1.amazonaws.com
September 7, 2014

s3-1.amazonaws.com
September 7, 2014

June 20, 2014

s3-1.amazonaws.com
June 20, 2014

March 6, 2014

s3-1.amazonaws.com
February 7, 2014

December 22, 2013

s3-1.amazonaws.com
December 22, 2013

 
Showing 30 of 30 IP Addresses

File downloads found at URLs served by dl.baixaki.com.br.

1 / 68      (Adware)

1 / 68      (Malware)

6 / 68      (PUP)

23 / 68    (PUP)

1 / 68      (Adware)

3 / 68      (PUP)

1 / 68      (Malware)

4 / 68      (Adware)

24 / 68    (PUP)

24 / 68    (Adware)
http://dl.baixaki.com.br/programas/.../cdburnerxp-4503717-baixaki-32-bits.exe  (icreinstall_cdburnerxp-4503717-baixaki-32-bits.exe)

30 / 68    (Adware)
http://dl.baixaki.com.br/programas/.../mozilla-firefox-160-baixaki-32-bits.exe  (icreinstall_mozilla-firefox-160-baixaki-32-bits.exe)

23 / 68    (PUP)

25 / 68    (PUP)

18 / 68    (PUP)

9 / 68      (Adware)

22 / 68    (PUP)

23 / 68    (PUP)

12 / 68    (Adware)

10 / 68    (Adware)

25 / 68    (PUP)

29 / 68    (PUP)

7 / 68      (PUP)

4 / 68      (PUP)

16 / 68    (Adware)
http://dl.baixaki.com.br/programas/.../winrar-420-baixaki-32-bits.exe  (icreinstall_winrar-420-baixaki-32-bits.exe)

7 / 68      (PUP)

 
Latest 30 of 30 download URLs

The following 162 files have been seen to comunicate with dl.baixaki.com.br in live environments.

 
Latest 20 of 164 files

URL:
http://dl.baixaki.com.br/

Google Analytics:
UA-144680

Title:
“Baixaki - Download e Jogos”

Description:
“Baixaki Download - Download de jogos, programas, papis de parede, aplicativos e mais.”

Network:
Amazon Web Services (AWS)

Web server:
Microsoft-IIS/7.5

Remove Malware from dl.baixaki.com.br - Powered by Reason Core Security