See: https://www.virustotal.com/nl/url/7bdb0352a379be0dddf9fe69a6462848a54323650020b44083e4e5eb92206976/analysis/1449419562/
See: http://urlquery.net/report.php?id=1449419719894
See: http://support.clean-mx.de/clean-mx/viruses.php?domain=downyouxi.com&sort=id%20DESC
Avast detects but in PUP-mode: https://www.virustotal.com/nl/file/062189d864aeb400f36a5d190ef9a655f2136d955f9bd5a9941628df520fd1db/analysis/
This allthough it is a “Signed file, verified signature”.
Some of this malware is OVERDUE! spreading for over 232.8 hours!
Good we have detection in PUP.mode. Users should enable it as it not set as by default.
polonus