The domain downlite.net registered by Linus Kolseth was initially registered in March of 2013 through INTERNETWORX LTD. & CO. KG. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Francisco, California within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Registrar:
INTERNETWORX LTD. & CO. KG
Server location:
California, United States (US)
Create date:
Monday, March 18, 2013
Expires date:
Saturday, March 18, 2017
Updated date:
Saturday, March 19, 2016
ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US
Google Safe Browsing:
unwanted
Scanner detections:
Detections (91% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.OOO.F, PUP.OOO.DD, PUP.OOO.d, PUP.OOO.p, PUP.OOO.h, PUP.Installer.OOO.t, PUP.OOO.i, PUP.DownLite.Installer (M), PUP.Installer (M)
90.91%
F-Prot
W32/OpenCandy.A, W32/OpenCandy.A (exact, not disinfectable)
63.64%
Dr.Web
Adware.Downware.1329
63.64%
VIPRE Antivirus
Adware.Privitize
63.64%
ESET NOD32
Win32/OpenCandy, Win32/DownLite
63.64%
McAfee
Artemis!5ACE242BCE28, Artemis!E9E5059DD650, Artemis!5C62FC04727E, Artemis!E768474DDA31, Artemis!32FCA83CD54B, Artemis!F41A253A3EBC
54.55%
Malwarebytes
PUP.Optional.BundleInstaller, PUP.Optional.OpenCandy, PUP.Optional.Opencandy
54.55%
K7 AntiVirus
Unwanted-Program , Riskware, Adware
54.55%
Trend Micro House Call
TROJ_GEN.R0CBH0AI113, TROJ_SPNR.08JK13, TROJ_SPNR.08LB13, TROJ_SPNR.09JM13, TROJ_GE.E218BDF9, TROJ_GEN.R0CBOH0L513
54.55%
Bkav FE
W32.Clod46b.Trojan, W32.Clod108.Trojan, W32.Clod981.Trojan, W32.Clod782.Trojan, W32.Clodf11.Trojan
45.45%
avast!
Win32:PUP-gen [PUP], NSIS:Adware-LK [PUP]
45.45%
Rising Antivirus
PE:PUF.OpenCandy!1.9DE5
45.45%
Comodo Security
Heur.Suspicious
36.36%
Trend Micro
TROJ_SPNR.09H113, TROJ_SPNR.08LB13, TROJ_SPNR.09JM13
27.27%
The domain downlite.net has been seen to resolve to the following 9 IP addresses.
cf-173-245-61-128.cloudflare.com
May 13, 2014
cf-173-245-60-128.cloudflare.com
May 13, 2014
File downloads found at URLs served by downlite.net.
Latest 30 of 209 download URLs
Subdomains
Statistics above are for the previous month of March 2024.