home

esd.baixaki.com.br

Financeiro GrupoNZN

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Chicago, Illinois within the United States which resides on the MCI Communications Services, Inc. d/b/a Verizon Business network.
Server location:
Illinois, United States (US)

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:
baixaki.com.br

Whois:
2 baixaki.com.br records

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore.ISBRInstaller (M), PUP.InstallCore.ENG (M), PUP.InstallCore.RE (M), PUP.installCore.ISBRInst (M), PUP.installCore (M)
100.00%

Bkav FE
W32.Cloddcc.Trojan, W32.Clodb0d.Trojan
6.12%

Trend Micro House Call
TROJ_GEN.F47V1109, TROJ_GEN.F47V1009
6.12%

Comodo Security
Application.Win32.Agent.J, UnclassifiedMalware
6.12%

Dr.Web
Adware.InstallCore.133, Trojan.Packed.24524
6.12%

VIPRE Antivirus
InstallCore.b
6.12%

ESET NOD32
Win32/InstallCore.ES (variant), Win32/InstallCore.DO (variant)
6.12%

McAfee
Artemis!58172AB50816, Artemis!214C1A0A9FCD
4.08%

K7 AntiVirus
Trojan
4.08%

Sophos
Generic PUA ME, Install Core Click run software
4.08%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
4.08%

Avira AntiVirus
APPL/InstallCore.AL, ADWARE/InstallCore.Gen7
4.08%

Baidu Antivirus
Adware.Win32.InstallCore
2.04%

Malwarebytes
PUP.Optional.InstallCore
2.04%

SUPERAntiSpyware
PUP.InstallCore/Variant
2.04%

The domain esd.baixaki.com.br has been seen to resolve to the following 49 IP addresses.

107.154.112.89
107.154.112.89.ip.incapdns.net
May 15, 2016

107.154.113.89
107.154.113.89.ip.incapdns.net
May 15, 2016

169.45.117.93
5d.75.2da9.ip4.static.sl-reverse.com
April 14, 2016

184.25.157.91
a184-25-157-91.deploy.static.akamaitechnologies.com
September 22, 2014

184.25.157.83
a184-25-157-83.deploy.static.akamaitechnologies.com
September 22, 2014

23.15.7.163
a23-15-7-163.deploy.static.akamaitechnologies.com
September 15, 2014

184.50.228.203
a184-50-228-203.deploy.static.akamaitechnologies.com
September 5, 2014

184.50.228.189
a184-50-228-189.deploy.static.akamaitechnologies.com
September 5, 2014

23.0.160.72
a23-0-160-72.deploy.static.akamaitechnologies.com
September 4, 2014

23.0.160.58
a23-0-160-58.deploy.static.akamaitechnologies.com
September 3, 2014

23.77.209.50
a23-77-209-50.deploy.static.akamaitechnologies.com
September 3, 2014

23.77.208.160
a23-77-208-160.deploy.static.akamaitechnologies.com
September 3, 2014

23.0.160.83
a23-0-160-83.deploy.static.akamaitechnologies.com
September 2, 2014

23.62.7.19
a23-62-7-19.deploy.static.akamaitechnologies.com
August 26, 2014

23.62.7.65
a23-62-7-65.deploy.static.akamaitechnologies.com
August 26, 2014

23.0.160.42
a23-0-160-42.deploy.static.akamaitechnologies.com
August 17, 2014

23.0.160.25
a23-0-160-25.deploy.static.akamaitechnologies.com
August 17, 2014

23.15.9.153
a23-15-9-153.deploy.static.akamaitechnologies.com
August 17, 2014

23.15.9.161
a23-15-9-161.deploy.static.akamaitechnologies.com
August 17, 2014

23.15.7.152
a23-15-7-152.deploy.static.akamaitechnologies.com
August 17, 2014

23.15.7.147
a23-15-7-147.deploy.static.akamaitechnologies.com
August 17, 2014

184.51.126.51
a184-51-126-51.deploy.static.akamaitechnologies.com
August 17, 2014

184.51.126.59
a184-51-126-59.deploy.static.akamaitechnologies.com
August 17, 2014

23.67.243.42
July 7, 2014

23.67.243.33
a23-67-243-33.deploy.static.akamaitechnologies.com
May 1, 2014

23.67.242.50
a23-67-242-50.deploy.static.akamaitechnologies.com
March 27, 2014

23.67.242.82
a23-67-242-82.deploy.static.akamaitechnologies.com
March 27, 2014

23.67.244.176
a23-67-244-176.deploy.static.akamaitechnologies.com
March 20, 2014

23.67.244.200
a23-67-244-200.deploy.static.akamaitechnologies.com
March 20, 2014

23.62.236.89
a23-62-236-89.deploy.static.akamaitechnologies.com
February 6, 2014

 
Showing 30 of 49 IP Addresses

File downloads found at URLs served by esd.baixaki.com.br.

15 / 68    (PUP)
http://esd.baixaki.com.br/programas/44770/.../visualizador-do-microsoft-powerpoint-2007-32-bits.exe  (214c1a0a9fcdf8c8d996969cc2deaf13)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/71039/.../lsaver-do-corinthians--32-bits.exe  (bcd2d8d6db4f7e2392c2391cae063353)

10 / 68    (PUP)
http://esd.baixaki.com.br/programas/62702/.../mobile-media-converter-182-32-bits.exe  (b8cb4a66a5aff5e6264bea419fbc4a8f)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/49555/.../picperk-70-32-bits.exe  (6d5dbc40466ea31a6fd470b02c666a6e)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/49948/.../around-the-world-in-80-days-12-32-bits.exe  (b04dfe05fdc38eec690ebbaaef6fce13)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/52609/.../alex-gordon-102-32-bits.exe  (1ecc51aa6c78849f75dcfaacab0308f2)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/54102/.../free-studio-manager-6213304-32-bits.exe  (49c16573adc8055d05051c608bdfca3d)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/74803/.../voobly-214648-32-bits.exe  (6496d49e3ed67b127415e168d9506038)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/39408/.../smart-data-recovery-45-32-bits.exe  (0c8816098cc78bcf62321ecd4ef3673c)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/61897/.../iexplorer-3241-32-bits.exe  (cb8a2034236ef3d28bf4240a1cfcf64d)

0 / 68
http://esd.baixaki.com.br/programas/66916/.../mkv-player-2115-32-bits.exe  (06edb3921845e7c87cc32f329868c033)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/50526/.../haihaisoft-universal-player-1580-32-bits.exe  (18bbd7e912f0cf753b2213f2f85fdeaf)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/77621/.../music2pc-217-build-231-32-bits.exe  (ff4b1c8ad3c23a63144e1471f8f59415)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/48185/.../free-dvd-decrypter-156-32-bits.exe  (0eb4915663f84660f8107d5433add2a5)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/96511/.../volo-view-30-32-bits.exe  (91593b98a87cf56de090952c9b6dcb90)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/28965/.../convertxtodvd-51014-32-bits.exe  (10fe51eb2e5395022993c05890b50481)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/72496/.../vso-media-player-1310470-32-bits.exe  (7f20b91468092b387e6ff21d968390a3)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/89487/.../unified-remote-21100-32-bits.exe  (ba0051a07e612b2b6a7e52cb6c1c7a1b)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/89114/.../torch-browser-29006090-32-bits.exe  (332549d0414235618c0b2ab92fe93818)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/44163/.../umd-chat-2034-32-bits.exe  (a7d814fc119e58837cdceeed784c888b)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/91321/.../ebeam-scrapbook-07-32-bits.exe  (d0c7b7a230b87696b6d99b3818428937)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/74230/.../e-car-15-trial-32-bits.exe  (75a49c08f9da2f686709d3b1da77ae97)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/49016/.../dynamic-photo-hdr-53-32-bits.exe  (ff905cfc77b17a7d368de990883e41e0)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/19038/.../getdataback-for-ntfs-433-32-bits.exe  (dc4d044900b767563e25a56c50293357)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/107694/.../dj-music-mixer-51-32-bits.exe  (d8a9ccd0649b89ce3e2f10b63a71310e)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/34274/.../fruity-loops-studio-1103-32-bits.exe  (aa1dfe28a835c9515067fc4be5b4bfba)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/52652/.../adobe-reader-lite-930-32-bits.exe  (44f06f62d8ed6a05e9651272c305f167)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/60027/.../super-mp3-download-4938-32-bits.exe  (69d4ed8e0dc56a876d76f1cd26021b97)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/45697/.../driver-magician-lite-412-32-bits.exe  (8a6df5d8f0c78575cb75bce3f9cee302)

1 / 68      (Adware)
http://esd.baixaki.com.br/programas/103629/.../ben-10-adventure-ride--32-bits.exe  (ad377717cd6e8495a7c106309ea3416e)

 
Latest 30 of 1,075 download URLs

The following 809 files have been seen to comunicate with esd.baixaki.com.br in live environments.

TCP » 107.154.113.89:443
citrio.exe (Citrio by CatalinaGroup)

TCP » 23.15.7.152:80
browser.exe (speed browser by Smart Applications)

TCP » 23.15.7.147:80
browser.exe (speed browser by Smart Applications)

TCP » 23.15.7.152:80
updateadmin.exe

TCP » 169.45.117.93:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 107.154.112.89:443
citrio.exe (Citrio by CatalinaGroup)

TCP » 184.51.126.59:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 169.45.117.93:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 169.45.117.93:80
browser.exe (Speed Browser by Smart Applications)

TCP » 184.51.126.59:80
browser.exe (Speed Browser by Smart Applications)

TCP » 169.45.117.93:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 184.51.126.51:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 23.15.7.152:443
browser.exe (Browser)

TCP » 169.45.117.93:80
webbrowser.exe (CrossBrowser by The CrossBrowser Authors)

TCP » 169.45.117.93:80
internetenhancer.exe (Internet Enhancer)

TCP » 184.51.126.51:80
internetport3.exe (internetport3)

TCP » 184.51.126.51:80
ankgikcaabhnbjopedljgmgmdbkbdimn.crx

TCP » 184.51.126.51:80
imnmlgndokmgocfabbcnfnjfopjkbinb.crx

TCP » 184.51.126.59:80
mgecpdghpgpnpbaipkgdmjmoihnhicjg.crx

TCP » 184.51.126.59:80
onheklgeghhphlhgpbfpgmlpjinjoida.crx

 
Latest 20 of 834 files

URL:
http://esd.baixaki.com.br/

Web server:
Apache

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.