youtubedownloader.com

HOW Inc.

Domain Information

The domain youtubedownloader.com registered by HOW Inc. was initially registered in July of 2006 through REALTIME REGISTER BV. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Francisco, California within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Remove Malware from youtubedownloader.com - Powered by Reason Core Security
Registrar:
REALTIME REGISTER BV

Server location:
California, United States (US)

Create date:
Tuesday, July 25, 2006

Expires date:
Wednesday, July 25, 2018

Updated date:
Wednesday, September 25, 2013

ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.

Scanner detections:
Detections  (85% detected)

Scan engine
Details
Detections

ESET NOD32
Win32/InstallCore.CF (variant), Win32/OpenCandy, Win32/OpenCandy (variant), Win32/OpenCandy.A potentially unsafe (variant)
76.92%

Reason Heuristics
PUP.ISfreemium.a, PUP.Tightrope, PUP.Installer.BonjoySoftware.X, Threat.Installer.BonjoySoftware, PUP.OpenCandy.How.Bundler (M), PUP.BonjoySoftware.Installer (M)
61.54%

Dr.Web
Adware.InstallCore.124, Adware.Somoto.1, Adware.OpenCandy.72, Adware.OpenCandy.139, Adware.Zugo.71, Adware.OpenCandy.144
61.54%

VIPRE Antivirus
InstallCore, DownloadAdmin, Opencandy
46.15%

Avira AntiVirus
ADWARE/InstallCore.Gen7, APPL/Somoto.Gen2, ADWARE/Adware.Gen, W32/Virut.Gen
38.46%

Baidu Antivirus
Trojan.Win32.OpenCandy, Trojan.Win32.Toolbar, Adware.Win32.OpenCandy
30.77%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), Win32.Troj.Generic.(kcloud), Win32.Virut.nd.53248
30.77%

McAfee
Artemis!B9F049D7247C, Artemis!61CC5EB8581F, Artemis!E8C3BC80F1D0, Artemis!33269FCBED24
30.77%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594, Trojan.Win32.Generic.14C08A42, PE:Win32.Virut.cl!1523074
23.08%

Trend Micro House Call
Suspicious_GEN.F47V0108, Suspicious_GEN.F47V0305, TROJ_GEN.R0C1H07DH15
23.08%

G Data
Win32.Application.DownloadAdmin, Win32.Virtob.Gen.12, Win32.Trojan.Agent.95WKEY
23.08%

McAfee Web Gateway
BehavesLike.Win32.Downloader.cc, Artemis
23.08%

Bkav FE
W32.Clod930.Trojan, W32.HfsAdware
15.38%

K7 Gateway Antivirus
Unwanted-Program
15.38%

Vba32 AntiVirus
Downware.InstallCore, Virus.Virut.06
15.38%

The domain youtubedownloader.com has been seen to resolve to the following 2 IP addresses.

February 3, 2014

February 3, 2014

File downloads found at URLs served by youtubedownloader.com.

7 / 68      (PUP)
http://youtubedownloader.com/download  (freeyoutubedownloaderoc.exe)

1 / 68      (Adware)
http://youtubedownloader.com/download  (freeyoutubedownloaderoc.exe)

3 / 68      (PUP)
http://youtubedownloader.com/download  (freeyoutubedownloaderoc.exe)

3 / 68      (PUP)

19 / 68    (Adware)
http://youtubedownloader.com/download  (freeyoutubedownloaderoc.exe)

6 / 68      (PUP)

19 / 68    (Adware)
http://youtubedownloader.com/update  (freeyoutubedownloaderoc.exe)

19 / 68    (Adware)
http://youtubedownloader.com/download  (freeyoutubedownloaderoc.exe)

11 / 68    (Adware)

4 / 68      (Adware)
http://youtubedownloader.com/download  (freeyoutubedownloaderoc.exe)

7 / 68      (PUP)

2 / 68      (inconclusive)

12 / 68    (Adware)
http://youtubedownloader.com/update  (freeyoutubedownloaderinstalleric.exe)

12 / 68    (Adware)
http://youtubedownloader.com/download  (freeyoutubedownloaderinstalleric.exe)

2 / 68      (inconclusive)

The following file have been seen to comunicate with youtubedownloader.com in live environments.

URL:
http://youtubedownloader.com/

Google Analytics:
UA-19260618

Title:
“YouTube Downloader - Free YouTube Video Downloader”

SSL certificate subject:
CN=ssl2162.cloudflare.com, O="CloudFlare, Inc.", L=San Francisco, S=CA, C=US

SSL certificate issuer:
CN=GlobalSign Organization Validation CA - G2, O=GlobalSign nv-sa, C=BE

Web server:
cloudflare-nginx (PHP/5.6.4)

Facebook:
Likes:  8,616
Shares:  22,379
Comments:  2,190

Twitter:
Shares:  2,119

Compete.com:
US visitors:  151,347

Statistics above are for the previous month of November 2016.

Remove Malware from youtubedownloader.com - Powered by Reason Core Security