home

www.download-provider.org

Whois Privacy Corp.

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dulles, Virginia within the United States which resides on the RIPE Network Coordination Centre network.
Registrar:
Internet Domain Service BS Corp

Server location:
Virginia, United States (US)

Root domain:
download-provider.org

Whois:
3 download-provider.org records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.MaxSetup.X, PUP.MaxSetup.AA, PUP.MaxSetup.L, PUP.MaxSetup.i, PUP.MaxSetup.DD, PUP.installCore.MaxSetup (M), Adware.Generic.AT (M), PUP.installCore.Innovati (M), PUP.installCore.ISfreemi (M), PUP.installCore (M)
86.00%

avast!
Win32:PUP-gen [PUP], Win32:Adware-gen [Adw], Win32:Rootkit-gen [Rtk], Win32:Malware-gen, Win32:Adware-AWA [Adw], Win32:Adware-BDO [Adw]
46.00%

ESET NOD32
Win32/InstallCore.BY potentially unwanted application, Win32/InstallCore.ND potentially unwanted application, Win32/Injected.F trojan, Win32/Kryptik.BWJC trojan
42.00%

Dr.Web
Trojan.Packed.24524, Trojan.Packed.24400, Adware.InstallCore.80, Adware.InstallCore.122
40.00%

F-Prot
W32/InstallCore.R3.gen, W32/A-ea8e687b, W32/A-dbe1ec51, W32/InstallCore.R.gen, W32/InstallCore.R4.gen, W32/InstallCore.S.gen
40.00%

Emsisoft Anti-Malware
Gen:Variant.Adware.Strictor.49403, Gen:Variant.Zusy.90992, Gen:Variant.Strictor.49403, Gen:Variant.Adware.Strictor.71125, Gen:Variant.Adware.Strictor.40575, Adware.Generic.375682
38.00%

VIPRE Antivirus
Threat.5063361, InstallCore, Threat.4150696, Threat.4786018
34.00%

AVG
Adware Skodna.Generic_c.OX, Trojan horse Pakes_c, Trojan horse Pakes_c.CJAO, Could be an adware MultiBundle, Adware InstallCore.AX
32.00%

Malwarebytes
Trojan.Strictor, PUP.Optional.InstallCore, PUP.Optional.InstallCore.A
20.00%

Bitdefender
Gen:Variant.Adware.Strictor.49403, Gen:Variant.Zusy.90992, Gen:Variant.Strictor.49403, Gen:Variant.Adware.Strictor.40575
20.00%

Comodo Security
Application.Win32.InstallCore.H, TrojWare.Win32.InstallCore.MJLR, Application.Win32.Installcore.MJ, Application.Win32.Agent.AH
20.00%

Avira AntiVirus
ADWARE/InstallCore.Gen7
20.00%

G Data
Gen:Variant.Adware.Strictor.49403, Gen:Variant.Zusy.90992, Gen:Variant.Strictor.49403, Gen:Variant.Adware.Strictor.40575
20.00%

IKARUS anti.virus
AdWare.MultiBundle, Win32.SuspectCrc, AdWare.InstallCore, AdWare.CodecPerformer
20.00%

Norman
Gen:Variant.Zusy.90992, Gen:Variant.Adware.Strictor.71125, Gen:Variant.Adware.Strictor.40575, InstallCore.RBUR, Adware.Generic.375682
20.00%

The domain www.download-provider.org has been seen to resolve to the following 7 IP addresses.

104.25.51.13
January 27, 2016

104.25.50.13
January 27, 2016

198.41.249.170
January 17, 2014

162.159.240.171
January 17, 2014

141.101.127.236
January 4, 2014

108.162.200.237
January 4, 2014

94.75.211.235
hosted-by.leaseweb.com
December 26, 2013

File downloads found at URLs served by www.download-provider.org.

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:eat pray love vip3r.html?server=us  (eat pray love vip3r.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:flirting with forty.html?server=us  (flirting with forty.exe)

5 / 68      (Adware)
http://www.download-provider.org/.../download-k:gigaware usb stereo headset with microphone driver.html?server=us  (gigaware usb stereo headset with microph.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:my gun is quick.html?server=it  (my gun is quick.exe)

7 / 68      (PUP)
http://www.download-provider.org/.../download-k:Irdeto emulator.html?server=us  (irdeto emulator.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:nuvvu nenu prema telugu movie subtitles download.html?server=us  (nuvvu nenu prema telugu movie subtitles.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:Keygen quarkxpress 9 validation code keygen .html?server=us  (keygen quarkxpress 9 validation code key.exe)

6 / 68      (Adware)
http://www.download-provider.org/.../download-2713008.html?server=us  (avatar dvd9 rk - retail pal - audio eng-.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:fanaa hindi blu ray english subtitle.html?server=us  (fanaa hindi blu ray english subtitle.exe)

1 / 68      (Adware)
http://www.download-provider.org/download-k:baby blanket knit patterns.html?server=us  (baby blanket knit patterns.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:solidworks 2011 activation crack keygen.html?server=us  (solidworks 2011 activation crack keygen.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:Numerati v1.0.2.html?server=us  (numerati v1.0.2.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:subtitle indonesia kungfu fighter 2013.html?server=us  (subtitle indonesia kungfu fighter 2013.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:palace 2 eng sub.html?server=us  (palace 2 eng sub.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:47 ronin sinhala subtitle.html?server=us  (47 ronin sinhala subtitle.exe)

6 / 68      (Adware)
http://www.download-provider.org/.../download-k:Iw5mp_ceg.exe crack MW3 .html?server=us  (iw5mp ceg.exe crack mw3.exe)

10 / 68    (Adware)
http://www.download-provider.org/.../download-k:Adobe Acrobat 6.0 Professional keygen.html?server=us  (adobe acrobat 6.0 professional keygen.exe)

6 / 68      (Adware)
http://www.download-provider.org/.../download-k:Sonic.Academy.How.To.Make.Techno.In.Ableton.Live.Tutorial.1.cd.html?server=us  (sonic.academy.how.to.make.techno.in.able.exe)

8 / 68      (Adware)
http://www.download-provider.org/.../download-k:farming simulator.html?server=us  (farming simulator.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:7 minutos spanish.html?server=us  (7 minutos spanish.exe)

9 / 68      (PUP)
http://www.download-provider.org/.../download-k:vivah hindi movie with english subtitles.html?server=us  (vivah hindi movie with english subtitles.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:Symantec.Ghost.Solution.Suite.1.0.1.cd.html?server=us  (symantec.ghost.solution.suite.1.0.1.cd.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:download indonesia subtitle hormones full.html?server=us  (download indonesia subtitle hormones ful.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:revolver subtitle indonesia.html?server=us  (revolver subtitle indonesia.exe)

8 / 68      (PUP)
http://www.download-provider.org/.../download-k:WaterCAD v8 XM 64 bits.html?server=us  (watercad v8 xm 64 bits.exe)

17 / 68    (PUP)
http://www.download-provider.org/.../download-k:js0group dll catia v5r20 crack only.html?server=us  (js0group dll catia v5r20 crack only.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:7zip.exe.html?server=us  (7zip.exe.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-5986633.html?server=us  (connectify hotspot pro v3.7.1 build 2548.exe)

6 / 68      (PUP)
http://www.download-provider.org/.../download-k:thuppaki tamil movie sinhala sub.html?server=us  (thuppaki tamil movie sinhala sub.exe)

1 / 68      (Adware)
http://www.download-provider.org/.../download-k:Cryptigo P7mViewer v4.0.16.1284.html?server=us  (cryptigo p7mviewer v4.0.16.1284.exe)

 
Latest 30 of 81 download URLs

URL:
http://www.download-provider.org/

SSL certificate subject:
CN=ssl278220.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
cloudflare-nginx

Facebook:
Likes:  1
Shares:  6
Comments:  1

Statistics are for the previous month.

lounge-radio.com

media-crawler.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.