www.idownloadsnow.com

George Memphis

Domain Information

The domain www.idownloadsnow.com registered by George Memphis was initially registered in January of 2014 through WILD WEST DOMAINS, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Terrebonne, Quebec within Canada which resides on the GloboTech Communications network.
Remove Malware from www.idownloadsnow.com - Powered by Reason Core Security
Registrar:
WILD WEST DOMAINS, LLC

Server location:
Quebec, Canada (CA)

Create date:
Thursday, January 09, 2014

Expires date:
Saturday, January 09, 2016

Updated date:
Monday, May 04, 2015

ASN:
AS36666 GTCOMM - GloboTech Communications,CA

Root domain:

Scanner detections:
Detections  (83% detected)

Scan engine
Details
Detections

Trend Micro House Call
TROJ_GE.DAB0F271, TROJ_GEN.F47V1219, Suspicious_GEN.F47V1113, Suspicious_GEN.F47V1125, TROJ_GEN.R047H07BF15
83.33%

Dr.Web
Tool.InstallToolbar.129, Adware.Toolbar.272, Adware.Toolbar.283
83.33%

ESET NOD32
Win32/Toolbar.Visicom (variant), Win32/Toolbar.Visicom.A potentially unwanted (variant)
83.33%

Reason Heuristics
PUP.ZGameToolbarInstaller.VisicomMedia.M, PUP.DLSecureToolbarInstaller.VisicomMedia.P
83.33%

McAfee
Artemis!00B6A8C35C6A, Artemis!407DF097C21F, Artemis!AB7A0A813215, Artemis!51720125B35F
66.67%

McAfee Web Gateway
Heuristic.BehavesLike.Win32.Suspicious-PKR.O, Artemis
66.67%

Malwarebytes
PUP.Optional.DLSecure.A
50.00%

Agnitum Outpost
PUA.Toolbar.Visicom, PUA.Toolbar.Agent
50.00%

Fortinet FortiGate
Riskware/Visicom, Riskware/Agent
50.00%

K7 Gateway Antivirus
Trojan , DoS-Trojan
33.33%

K7 AntiVirus
Trojan , Unwanted-Program
33.33%

Sophos
Generic PUA CG, Generic PUA LM
33.33%

VIPRE Antivirus
Trojan.Win32.Generic!SB.0
16.67%

Zillya! Antivirus
Adware.Agent.Win32.43878
16.67%

Kaspersky
not-a-virus:WebToolbar.Win32.Agent
16.67%

The domain www.idownloadsnow.com has been seen to resolve to the following IP address.

May 31, 2014

File downloads found at URLs served by www.idownloadsnow.com.

3 / 68      (inconclusive)
http://www.idownloadsnow.com/.../dlsecureTb_1.0.1.5.exe  (957c4181a922b7405a0d92b794387572)

20 / 68    (PUP)
http://www.idownloadsnow.com/.../dlsecureTb_1.0.4.1.exe  (51720125b35fc99fc54fe3d534326cf9)

9 / 68      (PUP)
http://www.idownloadsnow.com/.../dlsecureTb_1.0.1.5.exe  (ab7a0a813215575d287c738ac8cc8a84)

4 / 68      (PUP)
http://www.idownloadsnow.com/.../dlsecureTb_1.0.0.2.exe  (8fad8d914514025e79b99a7cc8e4bf60)

9 / 68      (PUP)
http://www.idownloadsnow.com/.../dlsecureTb_1.0.1.3.exe  (407df097c21f4b6f2bb63858f8562cd2)

9 / 68      (PUP)
http://www.idownloadsnow.com/.../z_downloader.exe  (00b6a8c35c6a868d53b29cfec94da42e)

URL:
http://www.idownloadsnow.com/

Title:
“#1 Search Engine - idownloadsnow”

Web server:
nginx/1.9.2 (PHP/5.5.9-1ubuntu4.9)

Facebook:
Shares:  1

Quantcast US:
Rank:  48,981

Statistics are for the previous month.

Remove Malware from www.idownloadsnow.com - Powered by Reason Core Security