home

go34down.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain go34down.com is registered by proxy through GODADDY.COM, LLC and was originally registered in July of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Haarlem, Noord-Holland within Netherlands which resides on the RIPE Network Coordination Centre network.
Registrar:
GODADDY.COM, LLC

Server location:
Noord-Holland, Netherlands (NL)

Create date:
Monday, July 1, 2013

Expires date:
Friday, July 1, 2016

Updated date:
Thursday, July 2, 2015

ASN:
AS30633 LEASEWEB-US - Leaseweb USA, Inc.,US

Whois:
3 go34down.com records

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Somoto.p, PUP.Somoto.I, PUP.SomotoIsrael.I, PUP.Somoto.Bundler (M), Adware.Somoto.Installer.Meta (M), PUP.Somoto.SomotoIsrael.Bundler (M), PUP.Somoto.SomotoIs.Bundler (M), PUP.Somoto (M)
87.50%

ESET NOD32
Win32/DownWare, Win32/Somoto, Win32/Somoto.Q potentially unwanted, Win32/DownWare.L potentially unwanted
20.83%

Baidu Antivirus
Adware.Win32.DownWare, Adware.Win32.Somoto, PUA.Win32.DownWare
20.83%

Sophos
Generic PUA IM, Somoto BetterInstaller, Generic PUA FD
18.75%

Qihoo 360 Security
Win32/Application.5d6, Win32/Virus.Downloader.942, Win32/Virus.Downloader.192, Win32/Application.074, Win32/Trojan.Multi.daf
18.75%

Kaspersky
not-a-virus:Downloader.NSIS.Agent, not-a-virus:Downloader.Win32.Agent, Trojan.Win32.Badur, not-a-virus:AdWare.Win32.Agent
16.67%

Dr.Web
Adware.Somoto.17, Trojan.Packed.28357, Trojan.MulDrop4.11744, Trojan.DownLoader12.24492, Trojan.Packed.27732
16.67%

McAfee
RDN/Generic PUP.x!c2e, RDN/Generic PUP.x!cj3, Artemis!522CA56F9C83, Artemis!7B07071549BB, Artemis!F3C14BCA37B3, Artemis!A737D6D2BC80
14.58%

VIPRE Antivirus
Trojan.Win32.Generic
14.58%

AVG
AdInstaller.Somoto, Generic, Downloader
14.58%

K7 AntiVirus
Trojan , Unwanted-Program , Adware
12.50%

avast!
Win32:PUP-gen [PUP], Win32:Malware-gen, Win32:Somoto-R [PUP], Win32:Somoto-O [PUP]
12.50%

Panda Antivirus
PUP/MultiToolbar.A, Generic Suspicious, Trj/CI.A, Trj/Chgt.E
12.50%

AhnLab V3 Security
Win-PUP/Somoto, Win-AppCare/Somoto.236920.B, PUP/Win32.Somoto
10.42%

MicroWorld eScan
Application.Bundler.Somoto.I, Application.Bundler.Somoto.J
8.33%

The domain go34down.com has been seen to resolve to the following IP address.

212.7.200.83
April 13, 2014

File downloads found at URLs served by go34down.com.

1 / 68      (Adware)
http://go34down.com/.../-Divergent-SPARKS-HebSub_downloader-IeZuosCBI.exe  (e79a0da73182c0a7c8c86249972809f7)

1 / 68      (Adware)
http://go34down.com/.../ANDROPALACE_downloader-I9QK17UQA.exe  (bf1e8928d450dbace053fdb3b1468e36)

27 / 68    (Adware)
http://go34down.com/.../HugeFiles_downloader-9NF7XTEy.exe  (00000000)

1 / 68      (PUP)
http://go34down.com/.../HugeFiles_downloader-2Q0Ay2fB.exe  (9562ea578f5519c02be41af931f22ff2)

1 / 68      (Adware)
http://go34down.com/.../Gcchng32_downloader-eGV4PQax.exe  (8071a093360bb9d7b1992a60351615e3)

1 / 68      (Adware)
http://go34down.com/.../HugeFiles_downloader-I6PcQyRkC.exe  (b06b1f2adcd50c7041ee863ca9ac019d)

1 / 68      (Adware)
http://go34down.com/.../WWE_12_www_downloader-2SuHl1c1.exe  (112f37ce7e7b7b30db921f182a941c8d)

1 / 68      (Adware)
http://go34down.com/.../HugeFiles_downloader-IdylioZoA.exe  (32475e3767c0595b7b62dc8f97deaa09)

1 / 68      (Adware)
http://go34down.com/.../HugeFiles_downloader-I5ZxTEfqK.exe  (f81e026959e1b707a2c06fa5739f1309)

1 / 68      (Adware)
http://go34down.com/.../DSGi_NISNETBOOK_17_downloader-I3LNWm8Ud.exe  (00000000)

1 / 68      (Adware)
http://go34down.com/.../The_Expendables_3-2014-_downloader-I9qjj2vc8.exe  (eb674b01d8cf5178b571f51e96db9fbd)

1 / 68      (Adware)
http://go34down.com/.../HugeFiles_downloader-aOZZgpHu.exe  (4fefdad39b2a804c2f48dd2d502444bb)

1 / 68      (Adware)
http://go34down.com/.../iryu_downloader-1PewqLKe.exe  (e21fb7d2098fee318a64cb7267c6fa1a)

12 / 68    (Adware)
http://go34down.com/.../HugeFiles_downloader-QdNq0BmdW.exe  (00000000)

12 / 68    (Adware)
http://go34down.com/.../HugeFiles_downloader-Q2DI3apYc.exe  (filedownloadedsuccessfully_downloader-n295rn8sp.exe)

1 / 68      (Adware)
http://go34down.com/.../6666666_downloader-9mhz5Liz.exe  (30b8f89c29575f0b646b5934326c0c25)

1 / 68      (Adware)
http://go34down.com/.../HugeFiles_downloader-Ic4TMPajQ.exe  (21249368089146da565a8e88ed2a3834)

1 / 68      (Adware)
http://go34down.com/.../Game_of_Thrones_S04E01_OneClickTVshows_downloader-I8XPV1uMQ.exe  (726350627b0e6e5739da91d7ec137f7d)

1 / 68      (Malware)
http://go34down.com/dwnld/.../HD CODEC setup101.exe  (35c78d79f508f789d6c06cadacbf01b1)

1 / 68      (Adware)
http://go34down.com/.../www-tvd-518_downloader-0GhROc6s.exe  (c8d4eaecb1f4a61692ecbc4b9ba7d405)

1 / 68      (Adware)
http://go34down.com/.../KON2_downloader-7vKmXgCX.exe  (a99a7c8df4f31fb52b0888f017066efe)

15 / 68    (Adware)
http://go34down.com/.../HugeFiles_downloader-Q7RxNXq6K.exe  (00000000)

1 / 68      (Adware)
http://go34down.com/.../luana_model_01-10_downloader-6LNjVdVt.exe  (7defc59a34a81f635811b321a885b7d0)

1 / 68      (Adware)
http://go34down.com/.../suits-mrs_downloader-IbmoZLmBw.exe  (b8e3b411fb9cfa60878be3b1136bd295)

3 / 68      (PUP)
http://go34down.com/dwnld/h/.../ganool.exe  (8915d435beed3c0fad0f160787137ca1)

1 / 68      (Adware)
http://go34down.com/.../Family_Guy_Season_downloader-I5ut8GPWD.exe  (775059c1a9e6560d55efa05bc9dd5b79)

1 / 68      (PUP)
http://go34down.com/.../HugeFiles_downloader-I7XoOcmCt.exe  (filedownloadedsuccessfully_downloader-nejnawkzf.exe)

1 / 68      (Adware)
http://go34down.com/.../How_To_Train_Your_Dragon_2__downloader-I21PiIaGQ.exe  (bf68b286188d9d45116f6bc99427c73e)

1 / 68      (Adware)
http://go34down.com/.../Arrow_downloader-6Xfc6Xj6.exe  (119190d943d8268a6a2c736958361ec5)

12 / 68    (Adware)
http://go34down.com/.../HugeFiles_downloader-Qb3kD4GLz.exe  (filedownloadedsuccessfully_downloader-n295rn8sp.exe)

 
Latest 30 of 69 download URLs

URL:
http://go34down.com/

Web server:
Apache

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.