The domain youtubedownloader.com registered by HOW Inc. was initially registered in July of 2006 through REALTIME REGISTER BV. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Francisco, California within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
REALTIME REGISTER BV
California, United States (US)
Tuesday, July 25, 2006
Wednesday, July 25, 2018
Wednesday, September 25, 2013
AS13335 CLOUDFLARENET - CloudFlare, Inc.
Detections (85% detected)
Win32/InstallCore.CF (variant), Win32/OpenCandy, Win32/OpenCandy (variant), Win32/OpenCandy.A potentially unsafe (variant)
PUP.ISfreemium.a, PUP.Tightrope, PUP.Installer.BonjoySoftware.X, Threat.Installer.BonjoySoftware, PUP.OpenCandy.How.Bundler (M), PUP.BonjoySoftware.Installer (M)
Adware.InstallCore.124, Adware.Somoto.1, Adware.OpenCandy.72, Adware.OpenCandy.139, Adware.Zugo.71, Adware.OpenCandy.144
InstallCore, DownloadAdmin, Opencandy
ADWARE/InstallCore.Gen7, APPL/Somoto.Gen2, ADWARE/Adware.Gen, W32/Virut.Gen
Trojan.Win32.OpenCandy, Trojan.Win32.Toolbar, Adware.Win32.OpenCandy
Win32.Troj.Generic.a.(kcloud), Win32.Troj.Generic.(kcloud), Win32.Virut.nd.53248
Artemis!B9F049D7247C, Artemis!61CC5EB8581F, Artemis!E8C3BC80F1D0, Artemis!33269FCBED24
PE:Malware.XPACK-LNR/Heur!1.5594, Trojan.Win32.Generic.14C08A42, PE:Win32.Virut.cl!1523074
Trend Micro House Call
Suspicious_GEN.F47V0108, Suspicious_GEN.F47V0305, TROJ_GEN.R0C1H07DH15
Win32.Application.DownloadAdmin, Win32.Virtob.Gen.12, Win32.Trojan.Agent.95WKEY
McAfee Web Gateway
K7 Gateway Antivirus
The domain youtubedownloader.com has been seen to resolve to the following 2 IP addresses.
File downloads found at URLs served by youtubedownloader.com.
The following file have been seen to comunicate with youtubedownloader.com in live environments.
“YouTube Downloader - Free YouTube Video Downloader”
SSL certificate subject:
CN=ssl2162.cloudflare.com, O="CloudFlare, Inc.", L=San Francisco, S=CA, C=US
SSL certificate issuer:
CN=GlobalSign Organization Validation CA - G2, O=GlobalSign nv-sa, C=BE
Statistics above are for the previous month of February 2017.