www.downloadwiz.com

Air Software  (via a Proxy Registrant)

Domain Information

The domain www.downloadwiz.com is registered by proxy through ENOM, INC. and was originally registered in September of 2004. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Phoenix, Arizona within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below). The domain is associated with the publisher Air Software who is located in Victoria, British Columbia in Canada.
Registrar:
ENOM, INC.

Server location:
Arizona, United States (US)

Create date:
Monday, September 13, 2004

Expires date:
Tuesday, September 13, 2016

Updated date:
Friday, August 14, 2015

ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US

Root domain:

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Reason Heuristics
DownloadManager.AirSoftware.F, PUP.Installer.Mindadmedia.F, PUP.Installer.DownloadManager.T, PUP.Air Software.AirSoftware.Bundler (M), PUP.Air Software.DownloadManager.Bundler (M), PUP.Air Software.AirSoftw.Bundler (M), PUP.Yontoo.InstallV.Installer (M), PUP.Bundlore.Bundler (M), PUP.Adknowledge (M), PUP.Air Software (M)
100.00%

K7 Gateway Antivirus
Unwanted-Program
36.67%

Dr.Web
Adware.Downware.1138, Trojan.SMSSend.4766, Adware.Downware.1676, Trojan.SMSSend.4871, Adware.Downware.1167, Trojan.SMSSend.4819
36.67%

VIPRE Antivirus
Threat.4782985, Iminent, OutBrowse, Threat.4150696
36.67%

K7 AntiVirus
Adware , Unwanted-Program
33.33%

Sophos
AirInstaller, DomainIQ pay-per install, PUA 'AirInstaller'
33.33%

Avira AntiVirus
Adware/AirInst.1174, ADWARE/Adware.Gen, ADWARE/Adware.Gen7
33.33%

Rising Antivirus
PE:PUF.Airinstall!1.9C4C
33.33%

AVG
Adware Generic_r, Skodna.Downloader
33.33%

Malwarebytes
PUP.Optional.AirInstaller, PUP.Optional.OutBrowse, PUP.Optional.AirAdInstaller
30.00%

F-Prot
W32/AirInstall.A.gen, W32/AirInstall.A8.gen, W32/A-8c0ea402
30.00%

Comodo Security
Application.Win32.AirAdInstaller.A, Application.Win32.AirAdInstaller.B
30.00%

G Data
Win32.Adware.Airadinstaller
30.00%

IKARUS anti.virus
AdWare.Airinstall, PUA.AirAdInstaller
30.00%

NANO AntiVirus
Riskware.Win32.Downware.cwfgel, Riskware.Win32.AirAdInstaller.cwdmqw, Riskware.Win32.AirAdInstaller.cwanhi, Riskware.Win32.Downware.dlnwug
30.00%

The domain www.downloadwiz.com has been seen to resolve to the following 8 IP addresses.

December 15, 2015

December 15, 2015

August 11, 2015

August 11, 2015

February 6, 2014

February 6, 2014

July 25, 2013

July 25, 2013

File downloads found at URLs served by www.downloadwiz.com.

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

25 / 68    (Adware)

1 / 68      (Adware)

32 / 68    (Adware)

URL:
http://www.downloadwiz.com/

Google Analytics:
UA-63702079

Title:
“DownloadWiz | Download the Latest Free Software”

SSL certificate subject:
CN=sni108462.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
cloudflare-nginx

Facebook:
Likes:  2,325
Shares:  1
Comments:  24

Statistics are for the previous month.