» www.worthdownload.com
Overview
Analysis
IPs Addresses (15)
Downloads (147)
Network (23)
Website Detail

www.worthdownload.com

GoNameSales.com

Domain Information

The domain www.worthdownload.com registered by GoNameSales.com was initially registered in October of 2014 through Moniker Online Services. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Sankt Ingbert, Saarland within Germany which resides on the RIPE Network Coordination Centre network.

Registrant:

GoNameSales.com

Registrar:

GONAME-TN.COM, INC.

Server location:

Saarland, Germany (DE)

Create date:

Sunday, October 19, 2014

Expires date:

Monday, October 19, 2015

Updated date:

Sunday, October 19, 2014

ASN:

AS196763 KEY-SYSTEMS-AS Key-Systems GmbH,DE

Root domain:

worthdownload.com

Whois:

5 worthdownload.com records

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.Installer.ShetefSolutionsConsulting1998.?, PUP.Installer.ShetefSolutionsConsulting1998.v, PUP.Installer.Amonetizeltd.i, PUP.Installer.Amonetizeltd.V, PUP.Installer.Amonetizeltd.?

100.00%

Malwarebytes

PUP.Optional.InstallMonetizer, PUP.Optional.Amonetize.A

100.00%

ESET NOD32

Win32/Amonetize (variant)

100.00%

Dr.Web

Adware.Downware.1575, Adware.Downware.1528

92.86%

Avira AntiVirus

ADWARE/Adware.Gen2

92.86%

IKARUS anti.virus

not-a-virus:Downloader.Win32.Agent, Win32.Malware, Trojan.SuspectCRC

71.43%

VIPRE Antivirus

Amonetize, Conduit

71.43%

McAfee

Artemis!53597284E965, Artemis!3492E93A345F, Artemis!17945562CC68, Artemis!CD1FFC3696D4, Artemis!A892424AD6E1, Artemis!2C3F79C3CEF5, Artemis!9026520E9EF5, Artemis!2A82B348D96C

64.29%

avast!

Win32:Dropper-gen [Drp], Win32:Rootkit-gen [Rtk], Win32:Malware-gen, Win32:Amonetize-R [PUP], Win32:Amonetize-Q [PUP]

57.14%

Sophos

Generic PUA EN, Amonetize

57.14%

Trend Micro House Call

TROJ_GEN.F47V1203, TROJ_GEN.F47V1125, TROJ_GEN.F47V1017, TROJ_GEN.F47V1011, TROJ_GEN.F47V1103, TROJ_GEN.F47V1105, TROJ_GEN.F47V1114

57.14%

G Data

Win32.Trojan.Agent.V3ANE4, Win32.Trojan.Agent.OXERD6, Win32.Trojan.Agent.3F5QSY, Win32.Application.Amonetize, Gen:Variant.Application.Bundler.Amonetize.10

50.00%

Comodo Security

ApplicUnwnt

50.00%

AhnLab V3 Security

PUP/Win32.Amonetiz

42.86%

Bkav FE

W32.Clod086.Trojan, W32.Clodc4e.Trojan, W32.Clodbbc.Trojan, W32.Clod54f.Trojan, W32.Clod652.Trojan

35.71%

The domain www.worthdownload.com has been seen to resolve to the following 15 IP addresses.

91.195.241.72

custip-2072.sedoparking.com

May 3, 2015

208.73.211.96

December 1, 2014

109.234.109.82

September 5, 2014

109.234.109.76

ns1.expirationwarning.net

September 4, 2014

209.222.14.3

209.222.14.3.choopa.net

September 2, 2014

50.17.209.45

ec2-50-17-209-45.compute-1.amazonaws.com

May 30, 2014

107.20.210.63

ec2-107-20-210-63.compute-1.amazonaws.com

May 30, 2014

23.21.228.251

ec2-23-21-228-251.compute-1.amazonaws.com

May 30, 2014

50.17.206.16

ec2-50-17-206-16.compute-1.amazonaws.com

May 30, 2014

54.235.68.127

ec2-54-235-68-127.compute-1.amazonaws.com

April 11, 2014

107.21.115.114

ec2-107-21-115-114.compute-1.amazonaws.com

April 11, 2014

54.235.189.159

ec2-54-235-189-159.compute-1.amazonaws.com

April 4, 2014

54.225.132.130

ec2-54-225-132-130.compute-1.amazonaws.com

March 14, 2014

23.23.96.46

ec2-23-23-96-46.compute-1.amazonaws.com

February 2, 2014

54.225.181.84

ec2-54-225-181-84.compute-1.amazonaws.com

February 2, 2014

File downloads found at URLs served by www.worthdownload.com.

15 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3516&instid[appname]=sparks tpobaw xvid.avi.mp4_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=sparks tpobaw xvid.avi.mp4&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-10-06T13:23:25.226983 00:00&parameter=sparks tpobaw xvid.avi.mp4&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-10-06T13:23:25.226983 00:00&parameter=sparks tpobaw xvid.avi.mp4&ti1=500000&ti2=0&ti3=2013-10-06T13:23:25.226983 00:00 (superman batman apocalypse 2010 dvdrip.xvid.avi.mp4__3516_i94109536_il1757300.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3038&instid[appname]=Planes.2013.BDRip.X264 SPARKS.mkv_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=Planes.2013.BDRip.X264 SPARKS.mkv&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-11-19T23:32:45.573919 00:00&parameter=Planes.2013.BDRip.X264 SPARKS.mkv&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-11-19T23:32:45.573919 00:00&parameter=Planes.2013.BDRip.X264 SPARKS.mkv&ti1=500000&ti2=0&ti3=2013-11-19T23:32:45.573919 00:00 (eset nod32 antivirus 6 clé activation license 2013.rar__3515_i141505014_il1093614.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3515&instid[appname]=The.Purge.2013.720p.BluRay.x264 SPARKS.flv_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=The.Purge.2013.720p.BluRay.x264 SPARKS.flv&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-11-28T23:58:58.329553 00:00&parameter=The.Purge.2013.720p.BluRay.x264 SPARKS.flv&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-11-28T23:58:58.329553 00:00&parameter=The.Purge.2013.720p.BluRay.x264 SPARKS.flv&ti1=500000&ti2=0&ti3=2013-11-28T23:58:58.329553 00:00 (gladaitor1 jsc sport full hd by sat s.com.rar__3516_i161892186_il5029388.exe)

7 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3038&instid[appname]=Breaking.Bad.ENG.S02x03.Bit.By.A.Dead.Bee.fuN.avi.flv_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=Breaking.Bad.ENG.S02x03.Bit.By.A.Dead.Bee.fuN.avi.flv&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-10-13T21:54:43.980835 00:00&parameter=Breaking.Bad.ENG.S02x03.Bit.By.A.Dead.Bee.fuN.avi.flv&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-10-13T21:54:43.980835 00:00&parameter=Breaking.Bad.ENG.S02x03.Bit.By.A.Dead.Bee.fuN.avi.flv&ti1=500000&ti2=0&ti3=2013-10-13T21:54:43.980835 00:00 (setup__2738_il4190458.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3515&instid[appname]=The.Vampire.Diaries.S05E04.480p.HDTV.x264 mSD.mkv_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=The.Vampire.Diaries.S05E04.480p.HDTV.x264 mSD.mkv&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=1200000&ti2=0&ti3=2013-12-01T08:17:36.166458 00:00&parameter=The.Vampire.Diaries.S05E04.480p.HDTV.x264 mSD.mkv&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=1200000&ti2=0&ti3=2013-12-01T08:17:36.166458 00:00&parameter=The.Vampire.Diaries.S05E04.480p.HDTV.x264 mSD.mkv&ti1=1200000&ti2=0&ti3=2013-12-01T08:17:36.166458 00:00 (gladaitor1 jsc sport full hd by sat s.com.rar__3516_i161892186_il5029388.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3038&instid[appname]=The.Vampire.Diaries.S05E04.480p.HDTV.x264 mSD.mkv_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=The.Vampire.Diaries.S05E04.480p.HDTV.x264 mSD.mkv&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=1200000&ti2=0&ti3=2013-12-01T08:17:36.166458 00:00&parameter=The.Vampire.Diaries.S05E04.480p.HDTV.x264 mSD.mkv&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=1200000&ti2=0&ti3=2013-12-01T08:17:36.166458 00:00&parameter=The.Vampire.Diaries.S05E04.480p.HDTV.x264 mSD.mkv&ti1=1200000&ti2=0&ti3=2013-12-01T08:17:36.166458 00:00 (gladaitor1 jsc sport full hd by sat s.com.rar__3516_i161892186_il5029388.exe)

7 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3038&instid[appname]=girl.code.104.hdtv.x264 sys.mp4.flv_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=girl.code.104.hdtv.x264 sys.mp4.flv&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-10-16T23:59:11.902199 00:00&parameter=girl.code.104.hdtv.x264 sys.mp4.flv&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-10-16T23:59:11.902199 00:00&parameter=girl.code.104.hdtv.x264 sys.mp4.flv&ti1=500000&ti2=0&ti3=2013-10-16T23:59:11.902199 00:00 (setup__2738_il4190458.exe)

23 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3038&instid[appname]=Fahrenheit 911.mp4_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=Fahrenheit 911.mp4&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-11-12T05:24:34.845347 00:00&parameter=Fahrenheit 911.mp4&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-11-12T05:24:34.845347 00:00&parameter=Fahrenheit 911.mp4&ti1=500000&ti2=0&ti3=2013-11-12T05:24:34.845347 00:00 (john newman full album__3038_i127678646_il4966579.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3038&instid[appname]=sugar rush barely alive remix.mp3_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=sugar rush barely alive remix.mp3&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=1135000&ti2=1&ti3=2013-11-28T05:54:40.025177 00:00&parameter=sugar rush barely alive remix.mp3&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=1135000&ti2=1&ti3=2013-11-28T05:54:40.025177 00:00&parameter=sugar rush barely alive remix.mp3&ti1=1135000&ti2=1&ti3=2013-11-28T05:54:40.025177 00:00 (gladaitor1 jsc sport full hd by sat s.com.rar__3516_i161892186_il5029388.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3516&instid[appname]=sugar rush barely alive remix.mp3_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=sugar rush barely alive remix.mp3&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=1135000&ti2=1&ti3=2013-11-28T05:54:40.025177 00:00&parameter=sugar rush barely alive remix.mp3&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=1135000&ti2=1&ti3=2013-11-28T05:54:40.025177 00:00&parameter=sugar rush barely alive remix.mp3&ti1=1135000&ti2=1&ti3=2013-11-28T05:54:40.025177 00:00 (gladaitor1 jsc sport full hd by sat s.com.rar__3516_i161892186_il5029388.exe)

15 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3516&instid[appname]=luck.s01e03.dvdrip.xvid reward.avi.mp4_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=luck.s01e03.dvdrip.xvid reward.avi.mp4&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-10-27T17:47:43.761259 00:00&parameter=luck.s01e03.dvdrip.xvid reward.avi.mp4&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-10-27T17:47:43.761259 00:00&parameter=luck.s01e03.dvdrip.xvid reward.avi.mp4&ti1=500000&ti2=0&ti3=2013-10-27T17:47:43.761259 00:00 (eastbound.and.down.s04e03.hdtv.x264 killers.mp4__3516_i111909758_il1306580.exe)

9 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3039&instid[appname]=luck.s01e02.dvdrip.xvid reward.avi.mp4_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=luck.s01e02.dvdrip.xvid reward.avi.mp4&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-10-26T17:44:51.554490 00:00&parameter=luck.s01e02.dvdrip.xvid reward.avi.mp4&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-10-26T17:44:51.554490 00:00&parameter=luck.s01e02.dvdrip.xvid reward.avi.mp4&ti1=500000&ti2=0&ti3=2013-10-26T17:44:51.554490 00:00 (crkveni font__3515_i108131266_il369632.exe)

7 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3039&instid[appname]= asdasdas.flv.mp4_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix= asdasdas.flv.mp4&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-10-16T17:39:38.920393 00:00&parameter= asdasdas.flv.mp4&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-10-16T17:39:38.920393 00:00&parameter= asdasdas.flv.mp4&ti1=500000&ti2=0&ti3=2013-10-16T17:39:38.920393 00:00 (setup__2738_il4190458.exe)

9 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3515&instid[appname]=homeland.s02e01.hdtv.x264 evolve e81f4.mp4_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=homeland.s02e01.hdtv.x264 evolve e81f4.mp4&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-10-04T17:49:41.165607 00:00&parameter=homeland.s02e01.hdtv.x264 evolve e81f4.mp4&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-10-04T17:49:41.165607 00:00&parameter=homeland.s02e01.hdtv.x264 evolve e81f4.mp4&ti1=500000&ti2=0&ti3=2013-10-04T17:49:41.165607 00:00 (setup__3915_il1152925.exe)

7 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3515&instid[appname]=Pitch Perfect 2012 Brrip.mkv.mp4.flv_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=Pitch Perfect 2012 Brrip.mkv.mp4.flv&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-10-15T00:31:58.876058 00:00&parameter=Pitch Perfect 2012 Brrip.mkv.mp4.flv&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-10-15T00:31:58.876058 00:00&parameter=Pitch Perfect 2012 Brrip.mkv.mp4.flv&ti1=500000&ti2=0&ti3=2013-10-15T00:31:58.876058 00:00 (setup__2738_il4190458.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3039&instid[appname]=artbeats Electric Arcs HD_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=artbeats Electric Arcs HD&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=700000&ti2=0&ti3=2013-11-07T09:19:32.797082 00:00&parameter=artbeats Electric Arcs HD&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=700000&ti2=0&ti3=2013-11-07T09:19:32.797082 00:00&parameter=artbeats Electric Arcs HD&ti1=700000&ti2=0&ti3=2013-11-07T09:19:32.797082 00:00 (artlantis studio 4.1.7 windows 64 bit 32 bit.rar__3039_i121833025_il3424769.exe)

16 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3515&instid[appname]=Breaking.Bad.S01E04.DVDRip.XviD ORPHEUS.avi.mp4_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=Breaking.Bad.S01E04.DVDRip.XviD ORPHEUS.avi.mp4&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-12-05T01:14:08.470821 00:00&parameter=Breaking.Bad.S01E04.DVDRip.XviD ORPHEUS.avi.mp4&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-12-05T01:14:08.470821 00:00&parameter=Breaking.Bad.S01E04.DVDRip.XviD ORPHEUS.avi.mp4&ti1=500000&ti2=0&ti3=2013-12-05T01:14:08.470821 00:00 (grasu xxl feat ami deja vu__3515_i168818161_il6172674.exe)

10 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3516&instid[appname]=haven.s04e07.hdtv.x264 2hd.mp4_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=haven.s04e07.hdtv.x264 2hd.mp4&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-11-02T16:16:01.396457 00:00&parameter=haven.s04e07.hdtv.x264 2hd.mp4&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-11-02T16:16:01.396457 00:00&parameter=haven.s04e07.hdtv.x264 2hd.mp4&ti1=500000&ti2=0&ti3=2013-11-02T16:16:01.396457 00:00 (hit zones wot__3039_i114915889_il2054808.exe)

23 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3515&instid[appname]=Batman Death Wish 2012 HD 1080p .mp4_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=Batman Death Wish 2012 HD 1080p .mp4&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-11-11T03:45:07.938250 00:00&parameter=Batman Death Wish 2012 HD 1080p .mp4&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-11-11T03:45:07.938250 00:00&parameter=Batman Death Wish 2012 HD 1080p .mp4&ti1=500000&ti2=0&ti3=2013-11-11T03:45:07.938250 00:00 (john newman full album__3038_i127678646_il4966579.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3515&instid[appname]=The Sopranos Season 3 Episode 01 Mr. Ruggerio s Neighborhood.avi.flv_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=The Sopranos Season 3 Episode 01 Mr. Ruggerio s Neighborhood.avi.flv&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-11-26T19:23:49.537815 00:00&parameter=The Sopranos Season 3 Episode 01 Mr. Ruggerio s Neighborhood.avi.flv&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-11-26T19:23:49.537815 00:00&parameter=The Sopranos Season 3 Episode 01 Mr. Ruggerio s Neighborhood.avi.flv&ti1=500000&ti2=0&ti3=2013-11-26T19:23:49.537815 0 (gladaitor1 jsc sport full hd by sat s.com.rar__3516_i161892186_il5029388.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3516&instid[appname]=The Sopranos Season 3 Episode 01 Mr. Ruggerio s Neighborhood.avi.flv_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=The Sopranos Season 3 Episode 01 Mr. Ruggerio s Neighborhood.avi.flv&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-11-26T19:23:49.537815 00:00&parameter=The Sopranos Season 3 Episode 01 Mr. Ruggerio s Neighborhood.avi.flv&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-11-26T19:23:49.537815 00:00&parameter=The Sopranos Season 3 Episode 01 Mr. Ruggerio s Neighborhood.avi.flv&ti1=500000&ti2=0&ti3=2013-11-26T19:23:49.537815 0 (gladaitor1 jsc sport full hd by sat s.com.rar__3516_i161892186_il5029388.exe)

9 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3038&instid[appname]=Ghost In The Shell 1995.avi.mp4_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=Ghost In The Shell 1995.avi.mp4&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-10-27T04:30:51.745004 00:00&parameter=Ghost In The Shell 1995.avi.mp4&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-10-27T04:30:51.745004 00:00&parameter=Ghost In The Shell 1995.avi.mp4&ti1=500000&ti2=0&ti3=2013-10-27T04:30:51.745004 00:00 (crkveni font__3515_i108131266_il369632.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3516&instid[appname]=xjz survey remover permission key free_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=xjz survey remover permission key free&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=1240000&ti2=0&ti3=2013-11-27T20:34:40.517242 00:00&parameter=xjz survey remover permission key free&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=1240000&ti2=0&ti3=2013-11-27T20:34:40.517242 00:00&parameter=xjz survey remover permission key free&ti1=1240000&ti2=0&ti3=2013-11-27T20:34:40.517242 00:00 (gladaitor1 jsc sport full hd by sat s.com.rar__3516_i161892186_il5029388.exe)

13 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3515&instid[appname]=top.of.the.lake.s01e02.hdtv.x264 2hd.mp4_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=top.of.the.lake.s01e02.hdtv.x264 2hd.mp4&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-10-18T21:25:35.036649 00:00&parameter=top.of.the.lake.s01e02.hdtv.x264 2hd.mp4&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-10-18T21:25:35.036649 00:00&parameter=top.of.the.lake.s01e02.hdtv.x264 2hd.mp4&ti1=500000&ti2=0&ti3=2013-10-18T21:25:35.036649 00:00 (appdev windows phone 7 development using vs 2010 torrents__2789_i102287290_il4525297.exe)

10 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3516&instid[appname]=Hand Shop Pack Font Free Download_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=Hand Shop Pack Font Free Download&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=945000&ti2=0&ti3=2013-11-02T13:07:28.806398 00:00&parameter=Hand Shop Pack Font Free Download&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=945000&ti2=0&ti3=2013-11-02T13:07:28.806398 00:00&parameter=Hand Shop Pack Font Free Download&ti1=945000&ti2=0&ti3=2013-11-02T13:07:28.806398 00:00 (hit zones wot__3039_i114915889_il2054808.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3516&instid[appname]=Cole Swindell Hey Yall_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=Cole Swindell Hey Yall&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=940000&ti2=0&ti3=2013-11-29T19:41:09.886127 00:00&parameter=Cole Swindell Hey Yall&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=940000&ti2=0&ti3=2013-11-29T19:41:09.886127 00:00&parameter=Cole Swindell Hey Yall&ti1=940000&ti2=0&ti3=2013-11-29T19:41:09.886127 00:00 (gladaitor1 jsc sport full hd by sat s.com.rar__3516_i161892186_il5029388.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3516&instid[appname]=Cole Swindell Hey Yall_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=Cole Swindell Hey Yall&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=940000&ti2=0&ti3=2013-11-29T19:40:16.181620 00:00&parameter=Cole Swindell Hey Yall&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=940000&ti2=0&ti3=2013-11-29T19:40:16.181620 00:00&parameter=Cole Swindell Hey Yall&ti1=940000&ti2=0&ti3=2013-11-29T19:40:16.181620 00:00 (gladaitor1 jsc sport full hd by sat s.com.rar__3516_i161892186_il5029388.exe)

16 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3516&instid[appname]=locnville dreamcatcher_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=locnville dreamcatcher&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=1135000&ti2=2&ti3=2013-12-04T16:04:51.334171 00:00&parameter=locnville dreamcatcher&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=1135000&ti2=2&ti3=2013-12-04T16:04:51.334171 00:00&parameter=locnville dreamcatcher&ti1=1135000&ti2=2&ti3=2013-12-04T16:04:51.334171 00:00 (grasu xxl feat ami deja vu__3515_i168818161_il6172674.exe)

10 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=3516&instid[appname]=1364873667 bates.motel.s01e03.hdtv.x264 2hd.mp4.flv_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=1364873667 bates.motel.s01e03.hdtv.x264 2hd.mp4.flv&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500000&ti2=0&ti3=2013-11-01T11:12:50.464612 00:00&parameter=1364873667 bates.motel.s01e03.hdtv.x264 2hd.mp4.flv&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500000&ti2=0&ti3=2013-11-01T11:12:50.464612 00:00&parameter=1364873667 bates.motel.s01e03.hdtv.x264 2hd.mp4.flv&ti1=500000&ti2=0&ti3=2013-11-01T11:12:50.464612 00:00 (hit zones wot__3039_i114915889_il2054808.exe)

12 / 68 (Adware)

http://www.worthdownload.com/download.php?version=1.1.5.98&campid=2789&instid[appname]=yes man book pdf torrent download_Downloader&instid[appsetupurl]=http://download.aminst.net/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.aminst.net/d1/logo150x150.png&prefix=yes man book pdf torrent download&instid[thankyoupage]=http://download.aminst.net/.../thank_you.php?ti1=500&ti2=2013-11-20T21:59:35 00:00&ti3=&parameter=yes man book pdf torrent download&instid[interrupted]=http://download.aminst.net/.../interrupted.php?ti1=500&ti2=2013-11-20T21:59:35 00:00&ti3=&parameter=yes man book pdf torrent download&ti1=500&ti2=2013-11-20T21:59:35 00:00&ti3= (eset nod32 antivirus 6 clé activation license 2013.rar__3515_i141505014_il1093614.exe)

Latest 30 of 147 download URLs

The following 23 files have been seen to comunicate with www.worthdownload.com in live environments.

TCP » 91.195.241.72:80

UCBrowser.exe (UC Browser by UCWeb)

TCP » 91.195.241.72:80

UCBrowser.exe (UC Browser by UCWeb)

TCP » 209.222.14.3:80

bitcomet_x64.exe (BitComet 64-bit by www.BitComet.com)

TCP » 107.20.210.63:80

magiciso maker v54251 spanish__3039_i1081707458_il1646000.exe

TCP » 107.20.210.63:80

gta 5 pc installer__5247_il384.exe

TCP » 209.222.14.3:80

tunnel.exe (by Microsoft)

TCP » 209.222.14.3:80

PEG2.exe (PE GUARD 2 by OHTIC.com)

TCP » 209.222.14.3:6969

QQDownload.exe (by Tencent Technology (Shenzhen) Company Limited)

TCP » 209.222.14.3:80

quicktime.crx

TCP » 23.21.228.251:80

pes.201__7214_il332.exe

TCP » 23.23.96.46:80

flashplayersetup__3873_i264147895_il3.exe (Installer by Amônétízé)

TCP » 23.23.96.46:80

setup__4615.exe (Installer)

TCP » 50.17.206.16:80

Google.Chrome__2309_il52306.exe

TCP » 50.17.206.16:80

Client.exe

TCP » 50.17.206.16:80

Client.exe

TCP » 50.17.206.16:80

file.downloader__9581_il263.exe

TCP » 50.17.209.45:80

pes.201__7214_il332.exe

TCP » 50.17.209.45:80

Client.exe

TCP » 50.17.209.45:80

afirst.exe

TCP » 54.225.181.84:80

EagleGet.exe (EagleGet Downloader by EagleGet.com)

Latest 20 of 24 files

URL:

http://www.worthdownload.com/

Title:

“worthdownload.com - This website is for sale! - worthdownload Resources and Information.”

Title (8/1/2014):

“ERRP | Expired Registration Recovery Policy”

Title (12/1/2014):

“worthdownload.com”

Description:

“This website is for sale! worthdownload.com is your first and best source for all of the information you’re looking for. From general topics to more of what you would expect to find here, worthdownload.com has it all. We hope you find what you a...”

Web server:

nginx (PHP/5.3.3-7+squeeze25)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.