Domain > davidbower.com

More information on this domain is in AlienVault OTX

Files that talk to davidbower.com

MD5	A/V
95deb36c19de2cd386cfa7feb683e539	[RDN/Downloader.a!ry] [Trojan.FakeDoc.EML] [Win32.Malware!Drop] [Trojan.Win32.Dapato.dceijf] [W32/Trojan3.JGN] [Downloader.Upatre] [TROJ_UPATRE.YYNJ] [Trojan-Dropper.Win32.Dapato.eecs] [Trojan.Win32.S.Downloader.22528.Q] [Troj/Upatre-CW] [Trojan.DownLoad3.33795] [TR/Dapato.eecs] [Trojan[Dropper]/Win32.Dapato] [Win32.Troj.Dapato.ee.(kcloud)] [TrojanDownloader:Win32/Upatre] [W32/Trojan.KLJV-7085] [Trj/CI.A] [Win32/TrojanDownloader.Waski.F] [Win32.Trojan-dropper.Dapato.Hvji] [Trojan.Win32.Kryptik] [W32/UPATRE.YYNJ!tr] [Crypt3.AEFS] [Trojan.Win32.Waski.bF] [Artemis!95DEB36C19DE] [Trojan:Win32/Dynamer!ac] [Trojan.Win32.Dapato.Ave]
376736e78df91073e6df3a02194b8f5d	[Trojan-Dropper/W32.Dapato.22528.O] [RDN/Downloader.a!ry] [Trojan.Email.FakeDoc] [W32/Trojan3.JGM] [Downloader.Upatre] [TROJ_UPATRE.YYNJ] [Trojan-Dropper.Win32.Dapato.eecq] [Trojan.Win32.DownLoad3.dcengx] [Trojan.DownLoad3.33795] [TR/Drop.Dapato.eecq] [Troj/Upatre-CV] [Trojan[Dropper]/Win32.Dapato] [Win32.Troj.Undef.(kcloud)] [TrojanDownloader:Win32/Upatre] [W32/Trojan.VHNN-2142] [Trj/CI.A] [Win32/TrojanDownloader.Waski.F] [Win32.Trojan-dropper.Dapato.Ljud] [Trojan-Spy.Zbot] [W32/Tepfer.UERS!tr] [Trojan.Win32.Waski.BF]
c8f57970dc6f280645b90c79b50c6e3b	[RDN/Downloader.a!ry] [Trojan.Email.FakeDoc] [W32/Trojan3.JGM] [Downloader.Upatre] [Trojan-Dropper.Win32.Dapato.eecq] [Trojan.Win32.DownLoad3.dcengx] [Trojan.DownLoad3.33795] [TR/Drop.Dapato.eecq] [TROJ_UPATRE.YYNJ] [Trojan[Dropper]/Win32.Dapato] [VIRUS_UNKNOWN] [TrojanDownloader:Win32/Upatre] [W32/Trojan.VHNN-2142] [Trj/CI.A] [Win32/TrojanDownloader.Waski.F] [Win32.Trojan-dropper.Dapato.Tccb] [Win32.Outbreak] [W32/Tepfer.UERS!tr] [Trojan.Win32.Waski.BF]
b97b46d67d0fe4949dfa90c8aa37695e	[Trojan.Win32.Dapato.dceijf] [W32/Trojan3.JGN] [W32/Trojan.KLJV-7085] [W32/UPATRE.YYNJ!tr]
c46c65e00215f45142e9e5a4fbeb0a31	[TrojanDropper.Dapato.r4] [RDN/Downloader.a!ry] [Trojan.FakeDoc.EML] [Trojan.Win32.Dapato.dceijf] [W32/Trojan3.JGN] [Downloader.Upatre] [Win32/Tnega.VQdRFS] [Win.Trojan.Downloader-62638] [Trojan-Dropper.Win32.Dapato.eecs] [Trojan.DR.Dapato!uo9m2uIcRyk] [Trojan.Win32.S.Downloader.22528.Q] [Trojan.DownLoad3.33795] [Win32.Malware!Drop] [TR/Dapato.eecs] [TROJ_UPATRE.YYNJ] [Troj/Upatre-CW] [TrojanSpy.Flux.ajo] [Trojan[Dropper]/Win32.Dapato] [VIRUS_UNKNOWN] [TrojanDownloader:Win32/Upatre] [W32/Trojan.KLJV-7085] [TrojanDropper.Dapato] [Trj/CI.A] [Win32/TrojanDownloader.Waski.F] [Trojan-Dropper.Win32.Dapato] [W32/UPATRE.YYNJ!tr] [Crypt3.AEFS] [Trojan.Win32.Waski.bF]

Whois

Property	Value
NameServer	NS2.SITEGROUND213.COM
Created	2005-01-12 00:00:00
Changed	2015-03-22 00:00:00
Expires	2017-01-12 00:00:00
Registrar	GODADDY.COM, LLC

DNS Resolutions

Date	IP Address
2013-10-08	72.167.131.126 (ClassC)
2014-07-15	23.229.192.97 (ClassC)
2014-07-22	23.229.192.97 (ClassC)
2014-09-26	50.63.202.14 (ClassC)
2015-03-17	184.168.221.4 (ClassC)
2015-03-26	184.154.247.229 (ClassC)
2019-09-01	104.18.55.176 (ClassC)
2019-09-05	104.18.54.176 (ClassC)
2022-12-10	188.114.97.1 (ClassC)
2024-11-07	172.67.179.220 (ClassC)
2024-11-12	104.21.43.133 (ClassC)
2025-01-01	104.21.96.1 (ClassC)
2025-03-06	104.21.112.1 (ClassC)
2025-06-20	104.21.80.1 (ClassC)
2025-07-22	104.21.32.1 (ClassC)
2025-08-16	104.21.16.1 (ClassC)
2025-08-25	104.21.48.1 (ClassC)

HTTP/1.1 403 ForbiddenDate: Thu, 15 Aug 2019 12:54:57 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveSet-Cookie: __cfduidd6b028a7ba78e48ae23f263b1cb0e789f1565873697; expires

!DOCTYPE html PUBLIC -//W3C//DTD XHTML 1.0 Transitional//EN http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd>html xmlnshttp://www.w3.org/1999/xhtml>head>style typetext/css>	body{background-color:#f4f9fa}	.centered{text-align:center}	.container{border:1px solid #e2e2e2;width:750px;margin:50px auto}	.header{height:100px;background-color:#fff;padding-top:50px;background:url(/error_page.gif) top repeat-x}	.header h1{font: bold 150% Arial, Helvetica, sans-serif; color:#5278af;margin:0;padding:0}	.header h2{font: bold 80% Tahoma, Verdana, sans-serif; color:#5278af;margin:0;padding:0}	.line{height:15px;background-color:#eef6f7}	.error-container{background-color:#fff;font:normal 80% Tahoma, Verdana, sans-serif;color:#000;text-align:justify;padding:30px}	.error-container li{padding-bottom:10px}/style>title>403 - Forbidden Error/title>/head>body>div classcentered>	div classcontainer>		div classheader>			h1>403 - Forbidden Error/h1>			h2>You are not allowed to access this address. br />If the error persists, please contact the website webmaster./h2>		/div>		div classline>/div>		div classerror-container>			p>If you are the webmaster of this site please log in to Cpanel and check the Error Logs. You will find the exact reason for this error there./p>			p>Common reasons for this error are:/p>			ul>				li>Incorrect file/directory permissions: Below 644. 				p>In order files to be read by the webserver, their permissions have to be equal or above 644. You can update file permissions with a FTP client or through cPanels File Manager./p>			  /li>				li>Restrictive Apache directives inside .htaccess file. 				p>There are two Apache directives which can cause this error - Deny from and Options -Indexes. /p>/li>			/ul>		/div>	/div>/div>/body>/html>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > davidbower.com

Is this malicious?

Files that talk to davidbower.com

Whois

DNS Resolutions

Port 80

Port 443