api.downloadastro.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain api.downloadastro.com is registered by proxy through GODADDY.COM, LLC and was originally registered in August of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Chicago, Illinois within the United States which resides on the SingleHop, Inc. network.
Remove Malware from api.downloadastro.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Illinois, United States (US)

Create date:
Wednesday, August 08, 2012

Expires date:
Sunday, August 08, 2021

Updated date:
Tuesday, May 12, 2015

ASN:
AS32475 SINGLEHOP-INC - SingleHop,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Webcellence.R, PUP.MaxSetup.a, PUP.Webcellence.Y, PUP.MaxSetup.U, PUP.MaxSetup.R, PUP.W32Setup.DD, PUP.W32Setup.M, PUP.W32Setup.P, PUP.SoftInstall.P, PUP.MaxSetup.I, PUP.W32Setup.H, PUP.SomotoLimited.DD, PUP.SoftInstall.H, PUP.SoftInstall.Q, PUP.SymbolicomHoldings.S, Threat.Installer.SoftInstall, PUP.Installer.MaxSetup, PUP.Installer.Webcellence, PUP.SoftInstall (M), PUP.installCore.MaxSetup (M), PUP.installCore.Webcellence (M), PUP.installCore.SoftInstall (M)
98.00%

VIPRE Antivirus
Trojan.Win32.Generic, Adware.Win32.InstallCore.ba, Threat.5063361, Threat.4837543, Threat.4150696, Threat.4788237, Adware.InstallCore
76.00%

Sophos
Install Core Click run software, PUA.Install Core Click run software, Somoto BetterInstaller, PUA 'Install Core Click run software'
70.00%

Avira AntiVirus
ADWARE/InstallCore.Gen7, Adware/InstallCore.A.194, Adware/InstallCore.MJP, Adware/InstallCore.OG, Adware/InstallCore.aett
70.00%

AVG
InstallCore.O, MalSign.InstallC, MalSign.InstallCore, Generic, Adware InstallCore.LO, Somoto, Ransomer, Adware InstallCore.O
70.00%

Malwarebytes
PUP.Optional.InstallCore.A, PUP.Optional.MaxSetup, PUP.Optional.Somoto.A, PUP.Optional.Maxsetup, PUP.Optional.Installcore
60.00%

Dr.Web
Trojan.Packed.24524, Trojan.MulDrop5.10078, Trojan.Packed.25266
58.00%

ESET NOD32
Win32/InstallCore.FJ (variant), Win32/InstallCore.MJ (variant), Win32/InstallCore.OG (variant), Win32/InstallCore.OF (variant)
52.00%

G Data
Win32.Application.InstallCore, Application.Bundler.Somoto, Win32.Application.InstallCore.CJ, Win32.Application.InstallCore.CZ
50.00%

Comodo Security
Application.Win32.InstallCore.KAT, Application.Win32.Installcore.MX, Application.Win32.InstallCore.PCA, Application.Win32.Installcore.MJ
48.00%

Vba32 AntiVirus
Downware.InstallCore
44.00%

McAfee
Artemis!74FD481D6593, Artemis!7F19CEBC1759, Artemis!A5E6BA4C07A0, Artemis!118169FFE5B4, Artemis!7CAE57C00B73, Artemis!14FED7C64C43, Artemis!FF36464D7AAD, Artemis!D7C258E86F68, Artemis!ACA31A5360DD, Artemis!7DE0C1F2772C, Artemis!FEA7239F086B, Artemis!0FF522B08881, Program.Artemis!ACE0B99BEAA9
40.00%

McAfee Web Gateway
Artemis!74FD481D6593, Artemis!7F19CEBC1759, Artemis!A5E6BA4C07A0, Artemis!118169FFE5B4, Artemis!7CAE57C00B73, Artemis!14FED7C64C43
40.00%

K7 Gateway Antivirus
Unwanted-Program , Adware
36.00%

K7 AntiVirus
Unwanted-Program , Adware
32.00%

The domain api.downloadastro.com has been seen to resolve to the following 8 IP addresses.

lb1.forsetup.com
June 18, 2015

f3.foresetup.com
November 29, 2014

lm2200.foresetup.com
November 10, 2014

f1.forsetup.com
August 7, 2014

downloadastro.com
August 1, 2014

serverab.downloadastro.com
May 5, 2014

dc-b90c4e43.downloadastro.com
December 13, 2013

phx1-sha-redirect-lb.cnet.com
August 7, 2013

File downloads found at URLs served by api.downloadastro.com.

1 / 68      (Adware)

1 / 68      (Adware)

17 / 68    (Adware)

 
Latest 30 of 99 download URLs

URL:
http://api.downloadastro.com/

Web server:
nginx/1.9.10 (PHP/5.5.9-1ubuntu4.14)

Remove Malware from api.downloadastro.com - Powered by Reason Core Security