opendownloadmanager.com

GlobalDnsProvider.com Inc

Domain Information

The domain opendownloadmanager.com registered by GlobalDnsProvider.com Inc was initially registered in February of 2013 through TLDS, LLC DBA SRSPLUS. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Los Angeles, California within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Registrar:
TLDS, LLC DBA SRSPLUS

Server location:
California, United States (US)

Create date:
Sunday, February 17, 2013

Expires date:
Friday, February 17, 2017

Updated date:
Thursday, February 18, 2016

ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US

Scanner detections:
Detections  (89% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.INSTALLERTECHNOLOGYCO.F, PUP.Installer.INSTALLERTECHNOLOGYCO.J, PUP.Installer.InstallerTechCorp, PUP.InstallerTechCorp.Installer (M), PUP.INSTALLERTECHNOLOGYCO.Installer (M), PUP.HudsonExchangeGroup.Installer (M), PUP.Installer.DisplayT.Installer.Meta (M), PUP.HudsonEx.Installer (M), PUP.Installe.Installer (M), PUP.Air Software.AirSoftw.Bundler (M), PUP.Installer.Installer.Meta (M), PUP.INSTALLE.Installer (M), PUP (M), PUP.OpenDownloadManager (M)
95.35%

VIPRE Antivirus
InstallerTech, Threat.4786240, Marketscore.RelevantKnowledge
27.91%

Dr.Web
Adware.Downware.1441, Adware.Downware.1625, Adware.Downware.3736, Adware.Downware.9881, Adware.Downware.14087, Adware.Downware.14086
27.91%

Rising Antivirus
NS:PUF.SilenceInstaller!1.9DDF, NS:PUA.SilenceInstaller!1.9DDF
20.93%

Vba32 AntiVirus
BScope.Trojan-Spy.Zbot, suspected of Trojan.Downloader.gen.h
16.28%

McAfee Web Gateway
Heuristic.BehavesLike.Win32.Suspicious-PKR.G, Artemis, BehavesLike.Win32.AdwareSweet.gc, BehavesLike.Win32.BadFile.dc
13.95%

McAfee
Artemis!9989A1D57339, Artemis!089C9B0E65C2, Artemis!342E30297B5E, Artemis!4281ABB85EB8, Artemis!445D6FB8286C
11.63%

avast!
NSIS:Downloader-ZO [Drp], NSIS:Downloader-ABZ [PUP]
9.30%

herdProtect (fuzzy)
a variant of b72305efdc834baf849e8b91ce60b85adc1bf106, a variant of d2886c35cd1d2c9b5e194c35e22d82964f99aa47, a variant of 7f8e1f4b7577b47888ad3d987f73bb2695480ab2
9.30%

G Data
Win32.Application.ODM, Win32.Trojan.Agent.87B06C, Win32.Trojan.Agent.UEO7N4
6.98%

Trend Micro House Call
Suspicious_GEN.F47V0720, Suspicious_GEN.F47V0215, Suspici.39360A4E
6.98%

Sophos
Installer Technology Co
4.65%

Bkav FE
W32.Clod62d.Trojan, W32.HfsAdware
4.65%

ESET NOD32
Win32/Conduit.SearchProtect.AB potentially unwanted (variant)
4.65%

Avira AntiVirus
Adware/ODM.A
2.33%

The domain opendownloadmanager.com has been seen to resolve to the following 22 IP addresses.

February 19, 2016

November 7, 2015

November 7, 2015

November 7, 2015

November 7, 2015

November 7, 2015

August 27, 2015

August 27, 2015

August 27, 2015

August 27, 2015

August 27, 2015

May 3, 2015

May 3, 2015

May 3, 2015

May 3, 2015

May 3, 2015

March 27, 2014

March 27, 2014

March 27, 2014

March 27, 2014

March 27, 2014

December 27, 2013

File downloads found at URLs served by opendownloadmanager.com.

1 / 68      (PUP)

1 / 68      (Adware)

10 / 68    (Adware)

1 / 68      (PUP)

0 / 68

1 / 68      (Adware)

1 / 68      (PUP)

1 / 68      (Adware)

1 / 68      (Adware)
http://opendownloadmanager.com/.../Setup.exe  (8f75a0f7dda8c9ee99a9ca66985f6532)

1 / 68      (PUP)

URL:
http://opendownloadmanager.com/

Title:
“Open Download Manager”

SSL certificate subject:
CN=ssl347200.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
cloudflare-nginx

Facebook:
Shares:  14

Statistics above are for the previous month of May 2017.