youtubedownloader.com

HOW Inc.

Domain Information

The domain youtubedownloader.com registered by HOW Inc. was initially registered in July of 2006 through REALTIME REGISTER BV. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Phoenix, Arizona within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Registrar:
REALTIME REGISTER BV

Server location:
Arizona, United States (US)

Create date:
Tuesday, July 25, 2006

Expires date:
Wednesday, July 25, 2018

Updated date:
Wednesday, September 25, 2013

ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US

Scanner detections:
Detections  (82% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.ISfreemium.a, PUP.How.FYTDownloader.Bundler.Installer.Meta (M), PUP.Tightrope, PUP.Installer.BonjoySoftware.X, Threat.Installer.BonjoySoftware, PUP.BonjoySoftware.Installer (M), Threat.Win.Reputation.IMP, PUP.Vitzo (M), PUP.BonjoySo.Installer (M), PUP.Vitzo.Installer (M)
83.33%

ESET NOD32
Win32/InstallCore.CF (variant), Win32/OpenCandy, Win32/OpenCandy (variant), Win32/OpenCandy.A potentially unsafe (variant)
50.00%

Dr.Web
Adware.InstallCore.124, Adware.Somoto.1, Adware.OpenCandy.72, Adware.OpenCandy.139, Adware.Zugo.71, Adware.OpenCandy.144
41.67%

VIPRE Antivirus
InstallCore, DownloadAdmin, Opencandy
33.33%

Avira AntiVirus
ADWARE/InstallCore.Gen7, APPL/Somoto.Gen2, ADWARE/Adware.Gen, W32/Virut.Gen, PUA/OpenCandy.Gen
25.00%

Baidu Antivirus
Trojan.Win32.OpenCandy, Trojan.Win32.Toolbar, Adware.Win32.OpenCandy
20.83%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), Win32.Troj.Generic.(kcloud), Win32.Virut.nd.53248
20.83%

McAfee
Artemis!B9F049D7247C, Artemis!61CC5EB8581F, Artemis!E8C3BC80F1D0, Artemis!33269FCBED24, Artemis!9AD99FED4AEB
20.83%

Trend Micro House Call
TROJ_GEN.F47V0725, Suspicious_GEN.F47V0108, Suspicious_GEN.F47V0305, TROJ_GEN.R0C1H07DH15
16.67%

McAfee Web Gateway
BehavesLike.Win32.Downloader.cc, Artemis
16.67%

AVG
Generic
16.67%

Bkav FE
W32.Clod930.Trojan, W32.HfsAdware
12.50%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594, Trojan.Win32.Generic.14C08A42, PE:Win32.Virut.cl!1523074
12.50%

K7 Gateway Antivirus
Unwanted-Program
12.50%

G Data
Win32.Application.DownloadAdmin, Win32.Virtob.Gen.12, Win32.Trojan.Agent.95WKEY
12.50%

The domain youtubedownloader.com has been seen to resolve to the following 4 IP addresses.

February 28, 2016

February 28, 2016

February 3, 2014

February 3, 2014

File downloads found at URLs served by youtubedownloader.com.

0 / 68
http://youtubedownloader.com/download  (freeyoutubedownloaderoc.exe)

12 / 68    (PUP)

0 / 68
https://youtubedownloader.com/  (youtubedownloader_com.htm)

3 / 68      (PUP)

The following file have been seen to comunicate with youtubedownloader.com in live environments.

URL:
http://youtubedownloader.com/

Google Analytics:
UA-19260618

Title:
“Free YouTube Downloader & Converter for MP3 music and HD MP4 video”

Description:
“Free YouTube Downloader offers the fastest and easiest way to download video or music from YouTube! With support for Full HD and 4k video at 60fps”

SSL certificate subject:
CN=ssl276652.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
cloudflare-nginx (W3 Total Cache/0.9.4.1)

Facebook:
Likes:  9,516
Shares:  23,779
Comments:  2,190

Compete.com:
US visitors:  151,347

Statistics above are for the previous month of September 2017.