home

esd.superdownloads.com.br

Financeiro GrupoNZN

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Server location:
Virginia, United States (US)

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.

Root domain:
superdownloads.com.br

Whois:
2 superdownloads.com.br records

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.W32Setup.i, PUP.InstallCore.Bundler (M), PUP.installCore.WorldSetup (M), PUP.installCore.Binstall (M), PUP.installCore.W32Setup (M), PUP.installCore.MaxSetup (M), PUP.installCore.WorldSet (M), PUP.installCore.Extended (M), PUP.installCore.SDInterN (M), PUP.installCore.SoftInst (M), PUP.installCore (M)
100.00%

F-Prot
W32/A-90d5f9a4, W32/InstallCore.R.gen, W32/InstallCore.R3.gen
18.37%

McAfee
CryptInno, Artemis!9593039B498E, Artemis!FC8A7FCB52D5, Artemis!E49E98DD24D8, Artemis!E86A3A34F7DD, Artemis!4A45A08A55AA, Artemis!BCAC2336C7A7, Artemis!6AD78CF07C4F
16.33%

Trend Micro House Call
TROJ_GEN.R0CBC0EGH14, TROJ_GEN.F47V1010, TROJ_GEN.F47V1015, TROJ_GEN.F47V1004, TROJ_GEN.F47V1026, TROJ_GEN.F47V1006
16.33%

VIPRE Antivirus
Threat.5063361, InstallCore.b
16.33%

Avira AntiVirus
ADWARE/InstallCore.Gen9, ADWARE/InstallCore.Gen7
16.33%

McAfee Web Gateway
CryptInno, Artemis!9593039B498E, Artemis!FC8A7FCB52D5, Artemis!E49E98DD24D8, Artemis!E86A3A34F7DD, Artemis!4A45A08A55AA
16.33%

Comodo Security
UnclassifiedMalware, ApplicUnwnt
14.29%

Dr.Web
Trojan.MulDrop5.10078, Adware.InstallCore.124
14.29%

Vba32 AntiVirus
Downware.InstallCore
14.29%

Malwarebytes
PUP.Optional.InstallCore.A
14.29%

SUPERAntiSpyware
PUP.InstallCore/Variant
14.29%

ESET NOD32
Win32/InstallCore.CU (variant)
14.29%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
14.29%

Bkav FE
W32.Clod055.Trojan, W32.Clodfce.Trojan, W32.Clod09b.Trojan, W32.Cloda66.Trojan
8.16%

The domain esd.superdownloads.com.br has been seen to resolve to the following 21 IP addresses.

169.45.117.88
58.75.2da9.ip4.static.sl-reverse.com
June 3, 2016

107.23.21.160
ec2-107-23-21-160.compute-1.amazonaws.com
May 16, 2016

23.0.160.83
a23-0-160-83.deploy.static.akamaitechnologies.com
September 3, 2014

23.0.160.25
a23-0-160-25.deploy.static.akamaitechnologies.com
August 17, 2014

23.0.160.42
a23-0-160-42.deploy.static.akamaitechnologies.com
August 17, 2014

23.15.9.153
a23-15-9-153.deploy.static.akamaitechnologies.com
August 17, 2014

23.15.9.161
a23-15-9-161.deploy.static.akamaitechnologies.com
August 17, 2014

23.15.7.147
a23-15-7-147.deploy.static.akamaitechnologies.com
August 17, 2014

23.15.7.152
a23-15-7-152.deploy.static.akamaitechnologies.com
August 17, 2014

63.88.100.187
May 31, 2014

23.67.243.33
a23-67-243-33.deploy.static.akamaitechnologies.com
April 14, 2014

23.67.244.176
a23-67-244-176.deploy.static.akamaitechnologies.com
February 2, 2014

23.67.244.200
a23-67-244-200.deploy.static.akamaitechnologies.com
February 2, 2014

96.17.197.25
a96-17-197-25.deploy.akamaitechnologies.com
January 26, 2014

96.17.197.34
a96-17-197-34.deploy.akamaitechnologies.com
January 26, 2014

63.88.100.145
January 22, 2014

63.88.100.147
January 22, 2014

63.88.100.186
December 25, 2013

63.88.100.179
December 25, 2013

23.67.243.19
December 22, 2013

23.67.243.88
December 22, 2013

File downloads found at URLs served by esd.superdownloads.com.br.

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/2768/.../easyoffice-111-gerenciador-32-bits.exe  (0bfadbf36099002a4be583a46220c050)

14 / 68    (PUP)
http://esd.superdownloads.com.br/programas/22101/.../pdftk-builder-36-gerenciador-32-bits.exe  (6ad78cf07c4f3f030a2138ea83c6318c)

13 / 68    (PUP)
http://esd.superdownloads.com.br/programas/4462/.../carom-3d-531-gerenciador-32-bits.exe  (bcac2336c7a7ad4b68def463b68fe54e)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/28547/.../windows-7-language-pack-portugues-brasileiro-pt-br--gerenciador-32-bits.exe  (38948a7a984b7bbb27fec1c150d5f76f)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/3324/.../daemon-tools-lite-44910356-gerenciador-32-bits.exe  (89053dd23a73594f63109746ce6e4491)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/17021/.../recuva-1491019-gerenciador-32-bits.exe  (36febec4c09e0db1ae6bf302b81ceb9a)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/49764/.../adwcleaner-3017-gerenciador-32-bits.exe  (fac9ca0bcd56eaaf8e802ca5dd190f96)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/7021/.../itunes-1110-gerenciador-32-bits.exe  (9af057241490f27750666ae15e201e4e)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/27332/.../delta-translator-ingles-portugues-30-gerenciador-32-bits.exe  (ad8de59e0aa31eeceb65be4e73af6daf)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/22002/.../glary-utilities-5205-gerenciador-32-bits.exe  (7e2972757d5d1efab818f4adc9596c3a)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/20352/.../atube-catcher-387943-gerenciador-32-bits.exe  (ee884aa132c28fbab7e4d4300a5ec2c0)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/8366/.../contabilizar-controle-de-caixa-80-gerenciador-32-bits.exe  (64e04d7818024c76f0588621ebd841e1)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/22506/.../teamviewer-9024951-gerenciador-32-bits.exe  (08388d7e6199e8168b4a4dec22574350)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/13056/.../bitlord-232-gerenciador-32-bits.exe  (c99ad77aa7576d6135a018c98e029675)

5 / 68      (Adware)
http://esd.superdownloads.com.br/programas/1531/.../microsoft-powerpoint-viewer-2010-1404763-gerenciador-32-bits.exe  (37ce5637086439d6c1ce484603604eb8)

13 / 68    (PUP)
http://esd.superdownloads.com.br/programas/8542/.../assistente-pimaco--220-gerenciador-32-bits.exe  (9593039b498e1399e51468b995cd9622)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/48373/.../free-soundcloud-downloader-23-gerenciador-32-bits.exe  (ee9ca173bbe81aed831b9f762044b0f3)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/3547/.../kawaks-163-gerenciador-32-bits.exe  (9f2134e8c29e5fd809d6cb8647bddc4c)

0 / 68
http://esd.superdownloads.com.br/programas/29856/.../nero-10-burnlite-free-10010500-gerenciador-32-bits.exe  (1f6b392670cb950966168dde1f66d65c)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/6682/.../k-lite-codec-pack-full-995-gerenciador-32-bits.exe  (67f85c3b1abeddfbeeab1acda08dac0d)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/6118/.../agenda-telefonica-13-gerenciador-32-bits.exe  (fad4d2e1cac9760e9c4907962ddc251e)

20 / 68    (Adware)
http://esd.superdownloads.com.br/programas/20352/.../atube-catcher-387955-gerenciador-32-bits.exe  (b7f994ca19386ce67d37454bd829debf)

14 / 68    (PUP)
http://esd.superdownloads.com.br/programas/15789/.../orbit-downloader-41118-gerenciador-32-bits.exe  (e86a3a34f7dd0307d412d67ea339210d)

15 / 68    (PUP)
http://esd.superdownloads.com.br/programas/20104/.../megacubo-1033-gerenciador-32-bits.exe  (fc8a7fcb52d5958ace67a9d0aa90488a)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/44134/.../windows-movie-maker-para-windows-xp-e-2003-20-gerenciador-32-bits.exe  (780a0a2b1c9fe208b1cda744f033ca5b)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/45507/.../emissor-de-nota-fiscal-eletronica-20-gerenciador-32-bits.exe  (52bfc3b70dc45067fc5be3f925521e0e)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/6118/.../agenda-telefonica-13-gerenciador-32-bits.exe  (9e72859d47c7cf4259d288c3728d8054)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/8466/.../dvdfab-9110-gerenciador-32-bits.exe  (3d30d755a17a42877649134adfb354e5)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/31817/.../splayer-37-build-2437-gerenciador-32-bits.exe  (74f9e0608955611f89ace195c3398b07)

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/13430/.../nero-burning-rom-2014-15003900-gerenciador-32-bits.exe  (693792eaae95de1132c806ec5986973a)

 
Latest 30 of 134 download URLs

The following 446 files have been seen to comunicate with esd.superdownloads.com.br in live environments.

TCP » 23.15.7.152:80
browser.exe (speed browser by Smart Applications)

TCP » 23.15.7.147:80
browser.exe (speed browser by Smart Applications)

TCP » 23.15.7.152:80
updateadmin.exe

TCP » 169.45.117.88:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 23.15.7.152:443
browser.exe (Browser)

TCP » 23.0.160.25:80
nedmkhahhppfofnniinaggmabnngddjk.crx

TCP » 23.0.160.25:80
wsmallstub.exe

TCP » 23.0.160.25:80
cpgilknjonchkdgeeajbpoggccpmmhfa.crx

TCP » 23.0.160.25:80
kdeekjeminbcjbfcohnnjppafgngbehe.crx

TCP » 23.0.160.25:80
gdjeihkmglmapgifllngcdlaoeemaacf.crx

TCP » 23.0.160.25:80
cpcnnilbjbdkiaoemkdfkeepobgjglcg.crx

TCP » 23.0.160.25:80
cfcacpgcecgcgfileglmaoakegmojlnj.crx

TCP » 23.0.160.25:80
ohmnhngmbailhjkpelkhddjbfbdjjmll.crx

TCP » 23.0.160.25:80
inglknhicnomibbnhdnhbkmncldebfcb.crx

TCP » 23.0.160.25:80
gdjeihkmglmapgifllngcdlaoeemaacf.crx

TCP » 23.0.160.42:80
tubesingkgs158.exe

TCP » 23.0.160.42:80
nnomhdcllmceelhbpclhblipjkjilnli.crx

TCP » 23.0.160.42:80
eenjjbjiadjbebaeobkciapinpnppgon.crx

TCP » 23.0.160.42:80
imnmlgndokmgocfabbcnfnjfopjkbinb.crx

TCP » 23.0.160.42:80
mgecpdghpgpnpbaipkgdmjmoihnhicjg.crx

 
Latest 20 of 459 files

URL:
http://esd.superdownloads.com.br/

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Apache

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.