home

download-file.downloadzone.org

Quick Downloader

Domain Information

The website operated by Adlogica distributes adware bundles of wrapped open-source and legitimate commercial software with various adware toolbars and other potentially unwanted software. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network. The domain is associated with the publisher Quick Downloader who is located in San Francisco, California in the United States.
Registrar:
GoDaddy.com, LLC

Server location:
Arizona, United States (US)

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

Root domain:
downloadzone.org

Whois:
2 downloadzone.org records

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Adlogica.QuickDow.Bundler (M), PUP.installCore.Download.Installer (M), PUP.Adlogica.FastDown.Bundler (M), PUP.installCore.Software.Installer (M), PUP.installCore.InstallM.Installer (M), PUP.Outbrowse.greatapp.Bundler (M), PUP.installCore.SnappyIn.Installer (M), PUP.installCore.SpeedyDo.Installer (M), PUP.installCore (M), PUP.InstallCore (M), PUP.Adlogica (M), PUP.Air Software (M), PUP.Outbrowse (M)
100.00%

The domain download-file.downloadzone.org has been seen to resolve to the following 14 IP addresses.

208.73.211.70
April 8, 2016

141.8.224.239
December 1, 2015

184.168.221.61
ip-184-168-221-61.ip.secureserver.net
October 26, 2015

104.24.108.3
August 16, 2015

104.24.109.3
August 16, 2015

190.93.250.104
July 7, 2015

190.93.251.104
July 7, 2015

104.20.23.114
May 2, 2015

104.20.26.114
May 2, 2015

104.20.25.114
May 2, 2015

104.20.22.114
May 2, 2015

104.20.24.114
May 2, 2015

162.159.247.109
May 1, 2014

162.159.248.109
May 1, 2014

File downloads found at URLs served by download-file.downloadzone.org.

1 / 68      (Adware)
http://download-file.downloadzone.org/download/285/.../  (java_setup.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/620/.../  (chrome_setup.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/106/.../  (java_setup.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/877/.../  (firefox_setup.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/218/.../  (java_setup.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/218/.../  (java_setup.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/106/.../  (java_setup.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/106/.../  (java_setup.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/684/.../  (google-chrome.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/285/.../  (java_setup.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/285/.../  (java_setup.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/687/.../  (java.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/106/.../  (java_setup.exe)

1 / 68      (PUP)
http://download-file.downloadzone.org/download/922/.../  (firefox_setup.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/217/.../  (oovoo.exe)

0 / 68
http://download-file.downloadzone.org/download/212/.../  (msvcr111.dll)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/109/.../  (google_talk_setup.exe)

0 / 68
http://download-file.downloadzone.org/download/285/.../  (java_setup.exe)

1 / 68      (Adware)
http://download-file.downloadzone.org/download/215/.../  (oovoo.exe)

The following 117 files have been seen to comunicate with download-file.downloadzone.org in live environments.

TCP » 184.168.221.61:80
googleupdate.exe13d7b73 (globalUpdate Update by globalUpdate)

TCP » 184.168.221.61:80
d9457dbd-e9ec-471a-9c02-e75612d4b90d-1-7.exe (SuperPlusRadio v2.1 by RadioCanyonv2)

TCP » 184.168.221.61:80
cf2f0c60-8b09-4897-ab0e-5643a89cf068-1-7.exe (CinemaP-1.8cV05.02 by Cinema PlusV05.02)

TCP » 184.168.221.61:80
d9457dbd-e9ec-471a-9c02-e75612d4b90d-11.exe (SuperPlusRadio v2.1 by RadioCanyonv2)

TCP » 184.168.221.61:80
spacesondpro_service.exe

TCP » 184.168.221.61:80
ebe2f2ab-ec9d-4de1-9cab-17c324c60b8f-1-7.exe (Ge-Force by Webar)

TCP » 184.168.221.61:80
d6ac52ba-b676-45f1-874e-5260240fef08-1-7.exe (SavePass 1.1 by OB)

TCP » 184.168.221.61:80
d6ac52ba-b676-45f1-874e-5260240fef08-11.exe (SavePass 1.1 by OB)

TCP » 184.168.221.61:80
eda806b4-1ce0-44a3-bd9b-5d75c59acf2e-1-7.exe (iWebar by Webby)

TCP » 184.168.221.61:80
ebe2f2ab-ec9d-4de1-9cab-17c324c60b8f-5.exe (Ge-Force by Webar)

TCP » 184.168.221.61:80
06e7c238-0bd3-4c50-996e-307ddae0b4cc-1-7.exe (Sense by Sense+)

TCP » 184.168.221.61:80
06e7c238-0bd3-4c50-996e-307ddae0b4cc-4.exe (Sense by Sense+)

TCP » 184.168.221.61:80
maxcomputercleaner_maintenance.exe

TCP » 184.168.221.61:80
eec96653-9a9c-43f7-ae9a-8b5f4f572f04-1-7.exe (Ge-Force by Webar)

TCP » 184.168.221.61:80
3529064f-7216-417e-9fb6-2a79d12d6aa5-1-7.exe (iWebar by Webby)

TCP » 184.168.221.61:80
3653bfbb-501c-413a-b9b3-d4a829f7492a-1-7.exe (SavePass 1.1 by OB)

TCP » 184.168.221.61:80
maxcomputercleaner_maintenance.exe

TCP » 184.168.221.61:80
84bc1794-f3d1-48d4-b8a0-d6577294876d-1-7.exe (TotalPlusHD-3.1V08.02 by HDPlus-3.1TotalV08.02)

TCP » 184.168.221.61:80
47e26a51-313e-4f6e-bfba-76003377a4c5-5.exe (I - Cinema by DiscountFrenzy)

TCP » 184.168.221.61:80
e7e7e2dd-a78c-4fb0-af33-bdbf9fbba620-6.exe (Sense by Object Browser)

 
Latest 20 of 118 files

URL:
http://download-file.downloadzone.org/

Title:
“downloadzone.org”

Web server:
Apache

quickdownloader.org

browsersinfo.com

adlogica.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.