www.down4load.com

Free Downloader

Domain Information

The domain www.down4load.com registered by Free Downloader was initially registered in May of 2013 through DOMAIN.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Manassas, Virginia within the United States which resides on the Leaseweb USA, Inc. network.
Remove Malware from www.down4load.com - Powered by Reason Core Security
Registrar:
DOMAIN.COM, LLC

Server location:
Virginia, United States (US)

Create date:
Friday, May 31, 2013

Expires date:
Tuesday, May 31, 2016

Updated date:
Saturday, August 08, 2015

ASN:
AS30633 LEASEWEB-US - Leaseweb USA, Inc.,US

Root domain:

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (86% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.ExtendedSetup.L, PUP.MaxSetup.L, PUP.Installer.MaxSetup.L, PUP.MaxSetup.M, PUP.MaxSetup.Q, PUP.STMSetup.G, PUP.WorldSetup.L, PUP.STMSetup.M, PUP.STMSetup.L, PUP.ironSource, Threat.Installer.MaxSetup, PUP.installCore.STMSetup.Installer (M), PUP.installCore.MaxSetup (M), PUP.installCore.ISfreemium (M)
82.35%

VIPRE Antivirus
InstallCore.b, Threat.4788237, Threat.4837543, Threat.5063361, Threat.4786018
67.65%

Dr.Web
Trojan.Packed.24524, Trojan.MulDrop5.10078, Trojan.Packed.25266
64.71%

Malwarebytes
PUP.Optional.MaxSetup, PUP.Optional.InstallCore, PUP.Optional.Freemium.A, PUP.Optional.InstallCore.A
61.76%

Sophos
Install Core Click run software, PUA 'Install Core Click run software'
58.82%

Avira AntiVirus
Adware/InstallCore.A.178, ADWARE/InstallCore.Gen7, ADWARE/InstallCore.Gen9, Adware/InstallCore.asike, Adware/InstallCore.ahd.1
52.94%

AVG
MalSign.InstallC, MalSign.InstallCore, Trojan horse Ransomer.DBB, Generic
47.06%

ESET NOD32
Win32/InstallCore.LB (variant), Win32/InstallCore.MJ (variant), Win32/InstallCore.DK (variant), Win32/InstallCore.BY (variant)
44.12%

Comodo Security
Application.Win32.Installcore.MXT, Application.Win32.Agent.AP, Application.Win32.Installcore.WS, Application.Win32.Installcore.GGET, Application.Win32.Agent.AH
41.18%

G Data
Win32.Application.InstallCore
38.24%

K7 AntiVirus
Unwanted-Program
38.24%

K7 Gateway Antivirus
Unwanted-Program
35.29%

Qihoo 360 Security
Malware.QVM06.Gen, Win32/Virus.Adware.94c, HEUR/Malware.QVM20.Gen
29.41%

Vba32 AntiVirus
Downware.InstallCore
29.41%

McAfee Web Gateway
Artemis!415629593568, Artemis!1023B029E6A8, Artemis!896308AE98E5, BehavesLike.Win32.CryptInno.jc, BehavesLike.Win32.Sality.jc
26.47%

The domain www.down4load.com has been seen to resolve to the following 3 IP addresses.

108.61.24.23.constant.com
August 11, 2015

108.61.140.19.choopa.net
August 17, 2014

down4load.com
January 10, 2014

File downloads found at URLs served by www.down4load.com.

12 / 68    (PUP)

1 / 68      (Adware)

3 / 68      (PUP)
http://www.down4load.com/en/downloads/.../Open-Office.exe  (066d09c4841b4a96803295d233628e1c)

23 / 68    (Adware)

1 / 68      (Adware)
http://www.down4load.com/en/downloads/.../Avast_Setup.exe  (c7744eea7c339356d1c40c2f53f756f2)

17 / 68    (Adware)
http://www.down4load.com/en/downloads/.../FlashPlayer.exe  (01e8b6e5219dff2e44c199f6978f2a64)

17 / 68    (Adware)
http://www.down4load.com/en/downloads/.../Movie-Maker.exe  (8b2f198fcc80dd599af277da07b4cac1)

23 / 68    (PUP)
http://www.down4load.com/fr/downloads/.../FlashPlayer.exe  (896308ae98e594c48abb548c0be34580)

17 / 68    (Adware)
http://www.down4load.com/fr/downloads/.../Movie-Maker.exe  (11c94b93d67f1ba7c5454b1c11254a35)

1 / 68      (Adware)
http://www.down4load.com/de/downloads/.../WinRAR.exe  (d91fb2a06ae2eb845720e776d565a18e)

9 / 68      (Adware)
http://www.down4load.com/de/downloads/.../Open-Office.exe  (f357700a50f6d429d235da42502bb276)

0 / 68

11 / 68    (Adware)

10 / 68    (Adware)
http://www.down4load.com/en/downloads/.../AdobeReader.exe  (306b8484e728d9230a7702fcc50ce568)

URL:
http://www.down4load.com/

Google Analytics:
UA-40230645

Title:
“down4load.com - The latest software for free”

Description:
“Get the latest versions of famous software products for free.”

Web server:
Apache (Phusion Passenger 4.0.59)

Facebook:
Shares:  1

Statistics are for the previous month.

Remove Malware from www.down4load.com - Powered by Reason Core Security