This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Arlington Heights, Illinois within the United States which resides on the GigeNET network. The domain is associated with the publisher Download Manager who is located in Victoria, British Columbia in Canada.
Server location:
Illinois, United States (US)
ASN:
AS32181 ASN-GIGENET - GigeNET
Scanner detections:
Detections (74% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.OpenCandy.Installer (L), PUP.Adknowledge.Fileangels.Bundler (M), PUP.Air Software.DownloadManager.Bundler (M), PUP.Adknowledge.BootCompute.Bundler (M), PUP.Air Software.Download.Bundler (M), PUP.Adknowledge.ComputeC.Bundler (M), PUP.Adknowledge.Fileange.Bundler (M), PUP.Adknowledge.SafeDown.Bundler (M), PUP.Adknowledge.Fileprot.Bundler (M), PUP.Adknowledge.FileMona.Bundler (M), PUP.Adknowledge.Seekinst.Bundler (M), PUP.Air Software (M), PUP.Adknowledge (M)
97.37%
VIPRE Antivirus
Trojan.Win32.Generic, Threat.4784938, Threat.4150696, Threat.4778314
10.53%
K7 AntiVirus
Riskware , Unwanted-Program
10.53%
ESET NOD32
Win32/AirAdInstaller.A potentially unwanted application, Win32/Adware.iBryte.BO application
7.89%
Dr.Web
Trojan.SMSSend.4757, Trojan.SMSSend.4653, Trojan.DownLoader11.39084
7.89%
AVG
Adware InstallCore, Adware Generic_r, Adware AdPlugin
7.89%
Clam AntiVirus
Win.Adware.Airadinstaller-63, Win.Adware.Airadinstaller-65, Win.Adware.Ibryte-5666
7.89%
Sophos
PUA 'AirInstaller', PUA 'iBryte Optimum Installer'
7.89%
nProtect
Adware.Agent.OEW, Trojan-Clicker/W32.AirAdInstaller.836008, Trojan-Clicker/W32.iBryte.83312.E
7.89%
Quick Heal
Adware.AirAdInstaller.I5, TrojanDownloader.Badur.A5
7.89%
Malwarebytes
PUP.Optional.AirInstaller, PUP.Optional.OptimunInstaller
7.89%
Zillya! Antivirus
Adware.AirAdInstaller.Win32.95, Adware.AirAdInstaller.Win32.241, Trojan.Buzus.Win32.122155
7.89%
NANO AntiVirus
Riskware.Win32.AirAdInstaller.cwchel, Riskware.Win32.AirAdInstaller.dmxpbw, Trojan.Win32.Badur.dgvfep
7.89%
Comodo Security
Application.Win32.AirAdInstaller.B, Application.Win32.AgentCV.HWYE
7.89%
F-Prot
W32/A-8c0ea402, W32/A-34fffba4
7.89%
The domain downloadd.org has been seen to resolve to the following 17 IP addresses.
no.rdns.ukservers.com
January 5, 2016
no.rdns.ukservers.com
January 5, 2016
no.rdns.ukservers.com
December 19, 2015
184.172.106.42-static.reverse.softlayer.com
December 15, 2015
shaynesherman.com
May 3, 2015
shaynesherman.com
February 27, 2014
ns1.log1x.com
January 22, 2014
File downloads found at URLs served by downloadd.org.
The following 48 files have been seen to comunicate with downloadd.org in live environments.
Subdomains
URL:
http://downloadd.org/
Google Analytics:
UA-19309218
Title:
“downloadd.org - This website is for sale! - downloadd Resources and Information.”
Description:
“This website is for sale! downloadd.org is your first and best source for information about downloadd . Here you will also find topics relating to issues of general interest. We hope you find what you are looking for!”
Web server:
Apache (PHP/5.3.3-7+squeeze28)
Related Domains