This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dulles, Virginia within the United States which resides on the RIPE Network Coordination Centre network.
Registrant:
Whois Privacy Corp.
Registrar:
Internet Domain Service BS Corp
Server location:
Virginia, United States (US)
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.MaxSetup.X, PUP.MaxSetup.AA, PUP.MaxSetup.L, PUP.MaxSetup.i, PUP.MaxSetup.DD, PUP.installCore.MaxSetup (M), Adware.Generic.AT (M), PUP.installCore.Innovati (M), PUP.installCore.ISfreemi (M), PUP.installCore (M)
86.00%
avast!
Win32:PUP-gen [PUP], Win32:Adware-gen [Adw], Win32:Rootkit-gen [Rtk], Win32:Malware-gen, Win32:Adware-AWA [Adw], Win32:Adware-BDO [Adw]
46.00%
ESET NOD32
Win32/InstallCore.BY potentially unwanted application, Win32/InstallCore.ND potentially unwanted application, Win32/Injected.F trojan, Win32/Kryptik.BWJC trojan
42.00%
Dr.Web
Trojan.Packed.24524, Trojan.Packed.24400, Adware.InstallCore.80, Adware.InstallCore.122
40.00%
F-Prot
W32/InstallCore.R3.gen, W32/A-ea8e687b, W32/A-dbe1ec51, W32/InstallCore.R.gen, W32/InstallCore.R4.gen, W32/InstallCore.S.gen
40.00%
Emsisoft Anti-Malware
Gen:Variant.Adware.Strictor.49403, Gen:Variant.Zusy.90992, Gen:Variant.Strictor.49403, Gen:Variant.Adware.Strictor.71125, Gen:Variant.Adware.Strictor.40575, Adware.Generic.375682
38.00%
VIPRE Antivirus
Threat.5063361, InstallCore, Threat.4150696, Threat.4786018
34.00%
AVG
Adware Skodna.Generic_c.OX, Trojan horse Pakes_c, Trojan horse Pakes_c.CJAO, Could be an adware MultiBundle, Adware InstallCore.AX
32.00%
Malwarebytes
Trojan.Strictor, PUP.Optional.InstallCore, PUP.Optional.InstallCore.A
20.00%
Bitdefender
Gen:Variant.Adware.Strictor.49403, Gen:Variant.Zusy.90992, Gen:Variant.Strictor.49403, Gen:Variant.Adware.Strictor.40575
20.00%
Comodo Security
Application.Win32.InstallCore.H, TrojWare.Win32.InstallCore.MJLR, Application.Win32.Installcore.MJ, Application.Win32.Agent.AH
20.00%
Avira AntiVirus
ADWARE/InstallCore.Gen7
20.00%
G Data
Gen:Variant.Adware.Strictor.49403, Gen:Variant.Zusy.90992, Gen:Variant.Strictor.49403, Gen:Variant.Adware.Strictor.40575
20.00%
IKARUS anti.virus
AdWare.MultiBundle, Win32.SuspectCrc, AdWare.InstallCore, AdWare.CodecPerformer
20.00%
Norman
Gen:Variant.Zusy.90992, Gen:Variant.Adware.Strictor.71125, Gen:Variant.Adware.Strictor.40575, InstallCore.RBUR, Adware.Generic.375682
20.00%
The domain www.download-provider.org has been seen to resolve to the following 7 IP addresses.
hosted-by.leaseweb.com
December 26, 2013
File downloads found at URLs served by www.download-provider.org.
Latest 30 of 81 download URLs
URL:
http://www.download-provider.org/
SSL certificate subject:
CN=ssl278220.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated
SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
Web server:
cloudflare-nginx
Facebook:
Likes: 1
Shares: 6
Comments: 1
Statistics are for the previous month.
Related Domains