www.download.fi

Domain Information

This domain is owned and operated by AfterDawn.
Server location:
Virginia, United States (US)

ASN:
AS30633 LEASEWEB-US - Leaseweb USA, Inc.

Root domain:

Registered by:

Scanner detections:
Adware distribution

Scan engine
Details
Detections

ESET NOD32
Win32/InstallMonetizer.AF, Win32/OpenCandy (variant), Win32/OpenCandy.A potentially unsafe (variant), Win32/OpenCandy.C potentially unsafe (variant)
44.44%

Reason Heuristics
PUP.InstallMonetizer.Bundle (M), PUP.OpenCandy.Installer (L), PUP.Bundle.Toolbar (M)
44.44%

Antiy Labs AVL
Trojan/Win32.TSGeneric, Trojan/Win32.Agent
33.33%

avast!
Win32:Evo-gen [Susp]
22.22%

Fortinet FortiGate
Riskware/OpenCandy
22.22%

Trend Micro House Call
Suspicious_GEN.F47V0413
22.22%

G Data
Win32.Application.Dealply
22.22%

Dr.Web
Adware.Toolbar.576
22.22%

Rising Antivirus
PE:Trojan.Win32.SpeedingUpMyPC.a!1075357520
22.22%

Baidu Antivirus
Adware.Win32.OpenCandy
22.22%

ESET NOD32
Detection.Undefined, Win32/Bundled.Toolbar.Google.D potentially unsafe application
22.22%

Emsisoft Anti-Malware
Gen:Variant.Graftor.66610
11.11%

McAfee Web Gateway
Heuristic.BehavesLike.Win32.ModifiedUPX.C
11.11%

Clam AntiVirus
Win.Trojan.Agent-953871
11.11%

Avira AntiVirus
TR/Patched.Gen
11.11%

The domain www.download.fi has been seen to resolve to the following 2 IP addresses.

varnish.afterdawn.net
February 5, 2014

varnish-us.afterdawn.net
February 2, 2014

File downloads found at URLs served by www.download.fi.

 
Latest 30 of 454 download URLs

The following 3 files have been seen to comunicate with www.download.fi in live environments.