home

dl.downc468.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain dl.downc468.com is registered by proxy through GODADDY.COM, LLC and was originally registered in August of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Wednesday, August 28, 2013

Expires date:
Thursday, August 28, 2014

Updated date:
Thursday, August 29, 2013

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC

Root domain:
downc468.com

Whois:
1 downc468.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Solimba.PortalProgramas (M), PUP.Solimba.FIRSERIA.Bundler (M), PUP.Solimba.Firseria.Bundler (M), PUP.Solimba.PortalPr (M), PUP.Solimba.AppsInst.Bundler (M), Threat.Win.Reputation.IMP, PUP.Solimba (M)
100.00%

The domain dl.downc468.com has been seen to resolve to the following 22 IP addresses.

50.63.202.65
ip-50-63-202-65.ip.secureserver.net
September 7, 2014

23.67.243.72
a23-67-243-72.deploy.static.akamaitechnologies.com
May 1, 2014

23.67.243.49
May 1, 2014

23.67.243.51
May 1, 2014

23.67.243.32
a23-67-243-32.deploy.static.akamaitechnologies.com
April 20, 2014

23.67.243.88
April 20, 2014

23.67.243.98
a23-67-243-98.deploy.static.akamaitechnologies.com
April 20, 2014

23.67.243.99
April 20, 2014

23.67.243.97
a23-67-243-97.deploy.static.akamaitechnologies.com
April 20, 2014

23.67.244.32
a23-67-244-32.deploy.static.akamaitechnologies.com
March 27, 2014

23.67.244.83
a23-67-244-83.deploy.static.akamaitechnologies.com
March 27, 2014

23.67.244.8
a23-67-244-8.deploy.static.akamaitechnologies.com
March 27, 2014

23.67.244.49
a23-67-244-49.deploy.static.akamaitechnologies.com
March 27, 2014

23.67.244.27
a23-67-244-27.deploy.static.akamaitechnologies.com
March 27, 2014

23.67.244.43
a23-67-244-43.deploy.static.akamaitechnologies.com
March 27, 2014

23.67.244.10
a23-67-244-10.deploy.static.akamaitechnologies.com
March 27, 2014

23.67.244.50
a23-67-244-50.deploy.static.akamaitechnologies.com
March 27, 2014

23.67.244.41
a23-67-244-41.deploy.static.akamaitechnologies.com
March 27, 2014

23.67.250.137
a23-67-250-137.deploy.static.akamaitechnologies.com
February 14, 2014

23.67.250.145
a23-67-250-145.deploy.static.akamaitechnologies.com
February 14, 2014

63.88.100.137
November 26, 2013

63.88.100.161
November 26, 2013

File downloads found at URLs served by dl.downc468.com.

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.10/.../GTA San Andreas Boys Screensaver.exe  (be15faf09cbccaec3fa1657ad4d536ef)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.19.2/.../Microsoft Office 2010.exe  (8181a15f4b6d3d107f63176d14893f2b)

1 / 68      (Adware)
http://dl.downc468.com/n/.../Avast! Free Antivirus.exe  (cc30a0a416e25cc7ec3225cd9494cb5d)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.11/.../Mario Bros 64.exe  (6e51d365c97a998bb6b4cffc6d24dfb6)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.19.2/.../GestareWin.exe  (a4695be259bb1f5dc373b26da02a5d57)

1 / 68      (Malware)
http://dl.downc468.com/n/3.0.23.10/.../Aion.exe  (f903b9d7bba8b7090ce88a8c1007bf6f)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.10/.../Halo: Combat Evolved.exe  (halo- combat evolved.exe)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.10/.../Naruto Shinobi Wars.exe  (441cd94227377364a02678ec9bb3c3a9)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.10/.../spss.exe  (102bf6f32ef7b10b01723f2d51e50a59)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.10/.../Adobe Photoshop.exe  (961352b3fb31654dc2906ede848ad569)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.10/.../Picto Selector.exe  (be3cc2201a2a81713850774fa719f5c2)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.10/.../cyotek webcopy.exe  (6870f728f85d547be7334cac9918e2c3)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.19.2/.../ZSNES.exe  (8f161171bf661d3bd1ab426f627866eb)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.19.2/.../Encore.exe  (2b8a325a061fe7a2f5cace1fa2094772)

1 / 68      (Adware)
http://dl.downc468.com/n/.../BitTorrent Plus.exe  (4d1900ae43fccf9c918573624864abc2)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.10/.../Harry Potter and the Goblet of Fire.exe  (a34b4182c315a69f535fb5a67a881aec)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.10/.../Multi Theft Auto San Andreas.exe  (1d22b8879515f59fa950031836a838e7)

1 / 68      (Adware)
http://dl.downc468.com/n/.../FLV_Media_Player.exe  (05e2c579ad37bae41fb6418beb6b7b4a)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.19.4/.../Google Chrome.exe  (e581425e52bba128f06de9a0c6153f20)

1 / 68      (Adware)
http://dl.downc468.com/g/.../skype_dsetup.exe  (3912347b8f4d9f7dc589f729e9efb65d)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.10/.../QuickTime.exe  (2ee92effc99a8cbb8535a68c96f01418)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.10/.../Minecraft.exe  (0b431ad1d0df0cfc56407ddb1efeb789)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.19.4/.../CloneCD.exe  (600ffcf5b6e58b66ef7aa1a2cabfa348)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.19.4/.../Super Mario Bros 2.5D.exe  (f1d2e9b9882601d2c2eea27c11272eb6)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.10/.../tu dien lac viet.exe  (ca3b6e8e0059d47bd3d7fdd78c15aac9)

1 / 68      (Adware)
http://dl.downc468.com/g/.../co_rom_dsetup.exe  (07814bb90141ee254c5e451af682e4f7)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.11/.../Sonic and Knuckles 3.exe  (6713ac5984e45d89306690628e49bdb8)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.11/.../Mario and Sonic Flash.exe  (a6d9581208a90183181d9715205b8401)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.19.2/.../Piezas Desenho Técnico.exe  (ae85dc9a2fd61ad76b3684d66b92add1)

1 / 68      (Adware)
http://dl.downc468.com/n/3.0.23.11/.../Broadband Usage Meter.exe  (672fa92042a4485a60a12c84e9a5a763)

 
Latest 30 of 60 download URLs

The following 387 files have been seen to comunicate with dl.downc468.com in live environments.

TCP » 23.67.243.32:80
njflpifpdjgpdonjfagkdllledkekmll.crx

TCP » 23.67.243.32:80
pbolnfpdgolhbninmbeddfeedjhoppbn.crx

TCP » 23.67.243.32:80
iebodjmkcanckgpfakpbfhanhfhambkj.crx

TCP » 23.67.243.32:80
ikbhkkidfpmgkhmcaaefgggpniehgfpa.crx

TCP » 23.67.243.32:80
mkbhmdcccmdakmgaaejjjgllahmljpge.crx

TCP » 23.67.243.32:80
capfmhnhgfnoppibghakknhdpeenmkgf.crx

TCP » 23.67.243.32:80
fnhobppfdfllddjeeabicdffacmiekjk.crx

TCP » 23.67.243.32:80
imnmlgndokmgocfabbcnfnjfopjkbinb.crx

TCP » 23.67.243.32:80
odimognccioelmebaecjhapdbcoaboao.crx

TCP » 23.67.243.32:80
jbcpeabdgebgnmiohpgjhhlglafgicdb.crx

TCP » 23.67.243.32:80
aeagpdmkilgnmmdcffheancoadjndidm.crx

TCP » 23.67.243.32:80
nblajofadheooiaaclhladaojjbdejgl.crx

TCP » 23.67.243.32:80
ammaeagafpofhgdlbjakkgggcpdbhjoo.crx

TCP » 23.67.243.32:80
mhomndnkedaaiaffnfjojdeobgnckjnm.crx

TCP » 23.67.243.49:80
goipcfdihomaoojgckmhigcogbnpncaf.crx

TCP » 23.67.243.49:80
effjefplpodnkkjomomchlcmbmodpema.crx

TCP » 23.67.243.49:80
aonghjghooedkdjggibkmjicgdokoknb.crx

TCP » 23.67.243.49:80
dlobpbmabmkhgddolngigpajaaeaccle.crx

TCP » 23.67.243.49:80
hosts-codedownloader.exe (hosts by Alex)

TCP » 23.67.243.49:80
2da4200944bf5c6ab06e820d1dca9dad.exe

 
Latest 20 of 391 files

URL:
http://dl.downc468.com/

Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)

Alexa:
Global rank:  240,246
Backlinks:  77

Statistics are for the previous month (Alexa statistics are for entire downc468.com).

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.