downloader.ez-download.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

Adware distribution site from Adlogica using a customized download manager such as the iBryte Optimum Installer. The site provides users with downloadble software bundled with various potentially unwanted software such as web browser toolbars and search hijackers including Babylon, Funmmods and Search.us. The domain downloader.ez-download.com is registered by proxy through GODADDY.COM, LLC and was originally registered in August of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Remove Malware from downloader.ez-download.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Tuesday, August 21, 2012

Expires date:
Sunday, August 21, 2016

Updated date:
Saturday, August 22, 2015

Root domain:

Scanner detections:
Detections  (92% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.SecureInstaller.R, PUP.Installer.Ezdownload.S, PUP.Outbrowse.Bundler (M), PUP.Adlogica.Ezdownload.Bundler (M), PUP.Adknowledge.OptimumInstaller.Installer (M), PUP.installCore.DownloadExpert.Installer (M), PUP.Adlogica.QuickDownloader.Bundler (M), PUP.Adlogica.FastDownloads.Bundler (M), PUP.installCore.SecureInstaller.Installer (M)
76.09%

Dr.Web
Adware.Downware.693, Adware.Downware.2081, Trojan.Crossrider1.49350, Adware.Downware.1143, Trojan.MulDrop4.64479, Adware.InstallCore.133
41.30%

VIPRE Antivirus
InstallCore, Trojan.Win32.Generic, Threat.4786018, Threat.4778314, Threat.4150696
39.13%

avast!
Win32:Malware-gen, Win32:Evo-gen [Susp], Win32:Installer-J [PUP], Win32:OutBrowse-CH [PUP], Win32:OutBrowse-AR [PUP], Win32:PUP-gen [PUP], Win32:Adware-gen [Adw]
39.13%

ESET NOD32
Win32/InstallCore.AZ potentially unwanted application, Win32/Adware.iBryte.G application, Win32/InstallCore.DF potentially unwanted application
39.13%

Sophos
Install Core, PUA 'Install Core', PUA 'iBryte Optimum Installer', PUA 'Install Core Click run software'
30.43%

Microsoft Security Essentials
Threat.Undefined
21.74%

AVG
MalSign.Generic, Adware Generic5, OutBrowse, Adware InstallCore.VP, Adware Generic_c.DVU, Adware Generic5.BDFX, Adware MultiBundle.M
19.57%

Clam AntiVirus
Win.Adware.Ibryte-179, Win.Trojan.Installcore-423, Win.Adware.Installcore-592, Win.Trojan.Installcore-883, Win.Adware.Dealply
17.39%

F-Prot
W32/Outbrowse.B.gen, W32/InstallCore.S.gen, W32/Ibryte.C.gen, W32/A-dbe1ec51, W32/InstallCore.R.gen
15.22%

Norman
Gen:Variant.Strictor.97895, Agent.ASWDM, Application.Generic.935276, Adware.DealPly.J, Trojan.GenericKD.2959813
13.04%

Comodo Security
UnclassifiedMalware, ApplicUnwnt, ApplicUnwnt.Win32.AdWare.iBryte.H, Application.Win32.InstallCore.KAU, Application.Win32.InstallCore.DSW
10.87%

Avira AntiVirus
ADWARE/InstallCore.Gen, PUA/Outbrowse.Gen, ADWARE/Adware.Gen7, ADWARE/InstallCore.Gen4
10.87%

Emsisoft Anti-Malware
Gen:Variant.Strictor.97895, Application.Generic.935276, Adware.DealPly, Trojan.GenericKD.2959813
10.87%

Vba32 AntiVirus
Adware.InstallCore.gen, SScope.Adware.OptimusInstaller.26607, Downware.InstallCore, Malware-Cryptor.InstallCore.gen
8.70%

The domain downloader.ez-download.com has been seen to resolve to the following 9 IP addresses.

ip-184-168-221-36.ip.secureserver.net
November 30, 2014

ip-50-63-202-43.ip.secureserver.net
November 29, 2014

November 1, 2014

November 1, 2014

December 26, 2013

(CloudFlare)
December 26, 2013

December 26, 2013

December 26, 2013

December 26, 2013

File downloads found at URLs served by downloader.ez-download.com.

 
Latest 30 of 179 download URLs

30 of 46 related domains

Remove Malware from downloader.ez-download.com - Powered by Reason Core Security