download.windows7codecs.com

Williams Cole

Domain Information

The domain download.windows7codecs.com registered by Williams Cole was initially registered in August of 2009 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Anaheim, California within the United States.
Registrar:
GODADDY.COM, LLC

Server location:
California, United States (US)

Create date:
Saturday, August 01, 2009

Expires date:
Tuesday, August 01, 2017

Updated date:
Tuesday, July 21, 2015

ASN:
AS16276 OVH OVH SAS,FR

Root domain:

Scanner detections:
Detections  (61% detected)

Scan engine
Details
Detections

ESET NOD32
Win32/OpenCandy, Win32/Toolbar.Widgi (variant), Win32/OpenCandy potentially unsafe, Win32/OpenCandy.C potentially unsafe (variant)
80.00%

Reason Heuristics
PUP.Installer.ColeWilliams.N, PUP.Installer.ColeWilliams.AA, PUP.OpenCandy.Installer (L)
73.33%

Antiy Labs AVL
Trojan[:HEUR]/Win32.AGeneric, Trojan/Generic.ASMalwNS.9
60.00%

Trend Micro House Call
HV_ZYX_.A632A135, TROJ_GEN.F47V0521, TROJ_GEN.F47V0531, Suspicious_GEN.F47V0813, Suspicious_GEN.F47V0308, TROJ_GEN.R00UH05DS15
60.00%

Dr.Web
Adware.Spigot.9, Adware.OpenCandy.4, Adware.OpenCandy.137, Adware.Spigot.76
53.33%

K7 AntiVirus
Spyware , Unwanted-Program , Riskware
40.00%

McAfee Web Gateway
Artemis!6810717C3DF2, BehavesLike.Win32.Suspicious.rc, BehavesLike.Win32.Suspicious.vc, BehavesLike.Win32.Downloader.wc
40.00%

G Data
NSIS.Application.OpenCandy, NSIS.Adware.SoftBundled, Win32.Adware.OpenCandy, Win32.Application.OpenCandy
40.00%

Kingsoft AntiVirus
VIRUS_UNKNOWN
40.00%

Rising Antivirus
PE:PUF.OpenCandy!1.9DE5
33.33%

McAfee
Artemis!6810717C3DF2, Artemis!8A5A9D227796, Artemis!C426E3252DA1, Artemis!4C3A91E88146, Artemis!2A69647E32A1
33.33%

Malwarebytes
PUP.Optional.OpenCandy, PUP.Optional.OpenCandy.A
33.33%

K7 Gateway Antivirus
Unwanted-Program , Riskware
33.33%

NANO AntiVirus
Riskware.Win32.OpenCandy.ddwoan, Riskware.Win32.OpenCandy.dqxwfk, Riskware.Win32.OpenCandy.dvwkdm
26.67%

VIPRE Antivirus
Trojan.Win32.Generic, Opencandy, Spigot
26.67%

The domain download.windows7codecs.com has been seen to resolve to the following 8 IP addresses.

June 5, 2016

ip31.ip-149-56-65.net
February 23, 2016

ip32.ip-149-56-65.net
February 23, 2016

ip144.ip-167-114-11.net
December 7, 2015

ip28.ip-192-99-182.net
November 13, 2015

May 30, 2014

March 15, 2014

March 15, 2014

File downloads found at URLs served by download.windows7codecs.com.

11 / 68    (PUP)

15 / 68    (PUP)

16 / 68    (PUP)

15 / 68    (PUP)

4 / 68      (inconclusive)

11 / 68    (PUP)

11 / 68    (PUP)

10 / 68    (PUP)

3 / 68      (PUP)

7 / 68      (PUP)

5 / 68      (PUP)

7 / 68      (PUP)

7 / 68      (PUP)

5 / 68      (PUP)

5 / 68      (PUP)

4 / 68      (PUP)

URL:
http://download.windows7codecs.com/

Google Analytics:
UA-27082635

Title:
“Windows 7 Codec Pack”

Web server:
Apache (PHP/7.0.4)