home

expressleech.com

Whois Privacy Protection Service, Inc.  (Proxy Registrant)

Domain Information

The domain expressleech.com is registered by proxy through NAME.COM, INC. and was originally registered in March of 2010. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Francisco, California within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Registrar:
NAME.COM, INC.

Server location:
California, United States (US)

Create date:
Sunday, March 28, 2010

Expires date:
Saturday, March 28, 2015

Updated date:
Sunday, January 19, 2014

Whois:
1 expressleech.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

McAfee
Artemis!092869BEB4B2
100.00%

Malwarebytes
PUP.Optional.Somoto
100.00%

VIPRE Antivirus
Trojan.Win32.Generic
100.00%

K7 AntiVirus
Unwanted-Program
100.00%

Trend Micro House Call
TROJ_GEN.F47V0409
100.00%

avast!
Win32:Somoto-O [PUP]
100.00%

Clam AntiVirus
Trojan.Agent-267630
100.00%

NANO AntiVirus
Trojan.Nsis.Mazel.cwhyud
100.00%

Sophos
Somoto BetterInstaller
100.00%

Comodo Security
Application.Win32.Somoto.DTL
100.00%

Dr.Web
Trojan.MulDrop4.11744
100.00%

AhnLab V3 Security
Win-AppCare/Somoto.236952.C
100.00%

ESET NOD32
Win32/Somoto
100.00%

AVG
Downloader
100.00%

Panda Antivirus
PUP/MultiToolbar.A
100.00%

The domain expressleech.com has been seen to resolve to the following 2 IP addresses.

162.159.247.141
May 23, 2014

162.159.248.141
May 23, 2014

File downloads found at URLs served by expressleech.com.

17 / 68    (Adware)
http://expressleech.com/.../ExpressLeech_Download_Manager_downloader-4gu6YiCD.exe  (092869beb4b2aec44cd187643a38c580)

URL:
http://expressleech.com/

Google Analytics:
UA-39088849

Title:
“ExpressLeech - Easy way to share your files”

Description:
“ExpressLeech - Free file upload service”

SSL certificate subject:
CN=ssl2966.cloudflare.com, O="CloudFlare, Inc.", L=San Francisco, S=CA, C=US

SSL certificate issuer:
CN=GlobalSign Organization Validation CA - G2, O=GlobalSign nv-sa, C=BE

Web server:
cloudflare-nginx

Facebook:
Likes:  117
Shares:  84
Comments:  36

Twitter:
Shares:  13

Quantcast US:
Rank:  227,998

Statistics above are for the previous month of March 2024.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.