esd.baixaki.com.br

Financeiro GrupoNZN

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Chicago, Illinois within the United States which resides on the MCI Communications Services, Inc. d/b/a Verizon Business network.
Remove Malware from esd.baixaki.com.br - Powered by Reason Core Security
Server location:
Illinois, United States (US)

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.ISBRInstaller.n, PUP.ISBRInstaller.a, Threat.ironSource.Installer, PUP.Bundler.InstallCore, PUP.installCore.ISBRInstaller (M)
100.00%

Dr.Web
Adware.InstallCore.133, Trojan.Packed.2782, Trojan.Packed.24524, Trojan.Packed.29268, Trojan.Packed.25266
28.00%

ESET NOD32
Win32/InstallCore.ES (variant), Win32/Kryptik.BWAM (variant), Win32/InstallCore.DO (variant), Win32/InstallCore.BY (variant)
28.00%

VIPRE Antivirus
Trojan.Win32.Generic, InstallCore.b, Adware.InstallCore
28.00%

Comodo Security
Application.Win32.Installcore.ES, UnclassifiedMalware, Application.Win32.Agent.AS, Application.Win32.Agent.J
26.00%

McAfee Web Gateway
Artemis!8B6192B778B4, Artemis!B4F81827C23D, Artemis!2795D39F642A, Artemis!3A8F53B023C5, BehavesLike.Win32.CryptInno.jc, Artemis!1498DFFDB1E6
24.00%

McAfee
Artemis!8B6192B778B4, Artemis!B4F81827C23D, Artemis!2795D39F642A, Artemis!3A8F53B023C5, Artemis!2D32890FA2A0, Artemis!1498DFFDB1E6
22.00%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
20.00%

Vba32 AntiVirus
Downware.InstallCore, BScope.Trojan.MTA.0162
20.00%

Malwarebytes
PUP.Optional.InstallCore.A
20.00%

K7 Gateway Antivirus
Unwanted-Program , Trojan
20.00%

Bkav FE
W32.Clodfa4.Trojan, W32.Clodb0d.Trojan, W32.Cloddcc.Trojan, W32.Clodab1.Trojan
18.00%

Sophos
Install Core Click run software, Generic PUA BK
18.00%

K7 AntiVirus
Unwanted-Program , Trojan
18.00%

Fortinet FortiGate
Riskware/Vittalia, W32/Kryptik.BWAM!tr, Riskware/MultiPlug, Riskware/InstallCore, Riskware/IBryte_O
18.00%

The domain esd.baixaki.com.br has been seen to resolve to the following 46 IP addresses.

a184-25-157-91.deploy.static.akamaitechnologies.com
September 22, 2014

a184-25-157-83.deploy.static.akamaitechnologies.com
September 22, 2014

a23-15-7-163.deploy.static.akamaitechnologies.com
September 15, 2014

a184-50-228-203.deploy.static.akamaitechnologies.com
September 5, 2014

a184-50-228-189.deploy.static.akamaitechnologies.com
September 5, 2014

a23-0-160-72.deploy.static.akamaitechnologies.com
September 4, 2014

a23-0-160-58.deploy.static.akamaitechnologies.com
September 3, 2014

a23-77-209-50.deploy.static.akamaitechnologies.com
September 3, 2014

a23-77-208-160.deploy.static.akamaitechnologies.com
September 3, 2014

a23-0-160-83.deploy.static.akamaitechnologies.com
September 2, 2014

a23-62-7-19.deploy.static.akamaitechnologies.com
August 26, 2014

a23-62-7-65.deploy.static.akamaitechnologies.com
August 26, 2014

a23-0-160-42.deploy.static.akamaitechnologies.com
August 17, 2014

a23-0-160-25.deploy.static.akamaitechnologies.com
August 17, 2014

a23-15-9-153.deploy.static.akamaitechnologies.com
August 17, 2014

a23-15-9-161.deploy.static.akamaitechnologies.com
August 17, 2014

a23-15-7-152.deploy.static.akamaitechnologies.com
August 17, 2014

a23-15-7-147.deploy.static.akamaitechnologies.com
August 17, 2014

a184-51-126-51.deploy.static.akamaitechnologies.com
August 17, 2014

a184-51-126-59.deploy.static.akamaitechnologies.com
August 17, 2014

July 7, 2014

a23-67-243-33.deploy.static.akamaitechnologies.com
May 1, 2014

a23-67-242-50.deploy.static.akamaitechnologies.com
March 27, 2014

a23-67-242-82.deploy.static.akamaitechnologies.com
March 27, 2014

a23-67-244-176.deploy.static.akamaitechnologies.com
March 20, 2014

a23-67-244-200.deploy.static.akamaitechnologies.com
March 20, 2014

a23-62-236-89.deploy.static.akamaitechnologies.com
February 6, 2014

a23-62-236-81.deploy.static.akamaitechnologies.com
February 6, 2014

February 6, 2014

a23-62-236-155.deploy.static.akamaitechnologies.com
February 5, 2014

 
Showing 30 of 46 IP Addresses

File downloads found at URLs served by esd.baixaki.com.br.

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

22 / 68    (PUP)

1 / 68      (Adware)

32 / 68    (Adware)

26 / 68    (Adware)

17 / 68    (PUP)

25 / 68    (Adware)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/7127/.../spybot-search-destroy-22250-32-bits.exe  (icreinstall_spybot-search-destroy-22250-32-bits.exe)

1 / 68      (Adware)

1 / 68      (Adware)

19 / 68    (PUP)

 
Latest 30 of 395 download URLs

The following 638 files have been seen to comunicate with esd.baixaki.com.br in live environments.

 
Latest 20 of 655 files

URL:
http://esd.baixaki.com.br/

Web server:
Apache

Remove Malware from esd.baixaki.com.br - Powered by Reason Core Security