www.oneclickdownloader.info

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain www.oneclickdownloader.info is registered by proxy through GoDaddy.com, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Zurich, Zurich within Switzerland which resides on the RIPE Network Coordination Centre network.
Remove Malware from www.oneclickdownloader.info - Powered by Reason Core Security
Registrar:
GoDaddy.com, LLC

Server location:
Zurich, Switzerland (CH)

ASN:
AS19905 NEUSTAR-AS6 - NeuStar, Inc.,US

Scanner detections:
Detections  (95% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.TerraFirmaInternetConsulting.EE, PUP.TerraFirmaInternetConsulting.k, PUP.TerraFirmaInternetConsulting.o, PUP.TerraFirmaInternetConsulting.FF, PUP.TerraFirmaInternetConsulting.x, PUP.TerraFirmaInternetConsulting.q, PUP.TerraFirmaInternetConsulting.S, PUP.Installer.TerraFirmaInternetConsulting, PUP.TerraFirmaInternetConsulting.Installer (M)
95.24%

Dr.Web
Win32.Sector.21, Adware.Downware.861, infected with Trojan.DownLoader6.57616, Threat.Undefined, Adware.Downware.527
61.90%

NANO AntiVirus
Riskware.Nsis.Downware.yrefc, Riskware.Nsis.Downware.czyjkl
57.14%

avast!
NSIS:Oneclick-Z [PUP], Downloader-UHI [PUP], PUP-gen [PUP]
57.14%

SUPERAntiSpyware
PUP.BundleInstaller
57.14%

Comodo Security
Application.Win32.Downware.G
57.14%

VIPRE Antivirus
Iminent, Threat.4784938, Threat.4150696
57.14%

Trend Micro House Call
HV_1CLICKDOWNLOAD_BK084800.TOMC, HV_1CLICKDOWNLOAD_BK083E74.TOMC, HV_ZYX_CA2341D2.TOMC, HV_1CLICKDOWNLOAD_BK083E7C.TOMC
52.38%

Sophos
1 Click Downloader, PUA '1 Click Downloader' (of type Adware), Adware.1 Click Downloader
52.38%

Avira AntiVirus
W32/Sality.AT, ADWARE/Adware.Gen6
47.62%

ESET NOD32
Win32/Adware.1ClickDownload.G application
33.33%

McAfee
Adware-SweetIM, Program.Adware-SweetIM
28.57%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
28.57%

K7 Gateway Antivirus
Adware
28.57%

McAfee Web Gateway
BehavesLike.Win32.AdwareSweet.cc, BehavesLike.Win32.AdwareSweet.dc
23.81%

The domain www.oneclickdownloader.info has been seen to resolve to the following 4 IP addresses.

March 1, 2015

August 12, 2014

April 6, 2014

March 20, 2014

File downloads found at URLs served by www.oneclickdownloader.info.

The following 3 files have been seen to comunicate with www.oneclickdownloader.info in live environments.

URL:
http://www.oneclickdownloader.info/

Title:
“oneclickdownloader.info”

Web server:
Apache

Remove Malware from www.oneclickdownloader.info - Powered by Reason Core Security