The domain www.downloadwiz.com is registered by proxy through ENOM, INC. and was originally registered in September of 2004. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Phoenix, Arizona within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below). The domain is associated with the publisher Air Software who is located in Victoria, British Columbia in Canada.
Arizona, United States (US)
Monday, September 13, 2004
Tuesday, September 13, 2016
Friday, August 14, 2015
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US
Detections (90% detected)
DownloadManager.AirSoftware.F, PUP.Installer.Mindadmedia.F, PUP.Installer.DownloadManager.T, PUP.Air Software.AirSoftware.Bundler (M), PUP.Air Software.DownloadManager.Bundler (M)
PUP.Optional.AirInstaller, PUP.Optional.OutBrowse, PUP.Optional.AirAdInstaller
K7 Gateway Antivirus
Adware.Downware.1138, Trojan.SMSSend.4766, Adware.Downware.1676, Trojan.SMSSend.4871, Adware.Downware.1167, Trojan.SMSSend.4819
Threat.4782985, Iminent, OutBrowse, Threat.4150696
Adware , Unwanted-Program
AirInstaller, DomainIQ pay-per install, PUA 'AirInstaller'
PUA.AirAd, Adware.Agent, PUA.OutBrowse
Adware Generic_r, Skodna.Downloader
W32/AirInstall.A.gen, W32/AirInstall.A8.gen, W32/A-8c0ea402
The domain www.downloadwiz.com has been seen to resolve to the following 8 IP addresses.
File downloads found at URLs served by www.downloadwiz.com.
“DownloadWiz | Download the Latest Free Software”
SSL certificate subject:
CN=sni108462.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated
SSL certificate issuer:
CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
Statistics are for the previous month.