The domain www.download-office.com is registered by proxy through ENOM, INC. and was originally registered in May of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
New York, United States (US)
Tuesday, May 08, 2012
Monday, May 08, 2017
Thursday, June 11, 2015
AS13335 CLOUDFLARENET - CloudFlare, Inc.
Detections (95% detected)
PUP.Installer.DownloadManager.M, PUP.Installer.DownloadManager.F, PUP.Air Software.DownloadManager.Bundler (M), PUP.Air Software.Download.Bundler (M), PUP.Air Software (M)
Trojan.SMSSend.4790, Trojan.SMSSend.4902, Trojan.SMSSend.4979, Adware.Downware.1470
K7 Gateway Antivirus
Win32:Malware-gen, Win32:PUP-gen [PUP], Win32:Installer-L [PUP]
Unwanted-Program , Adware
Win32/AirAdInstaller.A potentially unwanted application
The domain www.download-office.com has been seen to resolve to the following 6 IP addresses.
March 3, 2014
File downloads found at URLs served by www.download-office.com.
The following file have been seen to comunicate with www.download-office.com in live environments.
“Free Office Software: OfficeNow”
SSL certificate subject:
CN=ssl278878.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated
SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
Statistics are for the previous month.