download.downloadd.co

Sherman Marketing LLC

Domain Information

The domain download.downloadd.co registered by Sherman Marketing LLC was initially registered in December of 2013 through NAMECHEAP, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the Digital Ocean, Inc. network.
Registrar:
NAMECHEAP, INC.

Server location:
New York, United States (US)

Create date:
Monday, December 30, 2013

Expires date:
Tuesday, December 29, 2015

Updated date:
Wednesday, February 10, 2016

ASN:
AS393406 DIGITALOCEAN-ASN-NY3 - Digital Ocean, Inc.,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.DownloadAssistant.X, PUP.Installer.DownloadManager.L, PUP.Installer.DownloadManager.M, PUP.DownloadManager.M, PUP.DownloadManager.K, PUP.DRD Ventures, PUP.Bundler.DRD Ventures, PUP.Air Software.DRD Ventures.Bundler (M), PUP.installCore.Webcellence.Installer (M), PUP.Air Software (M)
100.00%

VIPRE Antivirus
Threat.4782985, Threat.4150696
43.75%

ESET NOD32
Win32/DownloadAssistant.A potentially unwanted application
43.75%

G Data
Win32.Application.DownloadAssistant, Application.Bundler.FX, Gen:Variant.Application.Bundler.32, Gen:Variant.Application.Bundler.Graftor.171462
43.75%

AVG
Generic
43.75%

Bitdefender
Application.Bundler.FX, Gen:Variant.Application.Bundler.32, Gen:Variant.Application.Bundler.Graftor.171462, Gen:Variant.Application.Bundler.Jaik.5699
40.63%

F-Secure
Riskware.Gen:Variant.Application.Bundler
40.63%

MicroWorld eScan
Application.Bundler.FX, Gen:Variant.Application.Bundler.32, Gen:Variant.Application.Bundler.Graftor.171462, Gen:Variant.Application.Bundler.Jaik.5699
40.63%

Avira AntiVirus
TR/Trash.Gen, APPL/Downloader.Gen
40.63%

Emsisoft Anti-Malware
Gen:Variant.Application.Bundler.32, Gen:Variant.Application.Bundler.Graftor.171462, Gen:Variant.Application.Bundler.Jaik.5699
40.63%

Lavasoft Ad-Aware
Gen:Variant.Application.Bundler.32, Gen:Variant.Application.Bundler.Graftor.171462, Gen:Variant.Application.Bundler.Jaik.5699
37.50%

Dr.Web
Adware.Conduit.170, Trojan.DownLoader12.10663, Trojan.DownLoader12.11420, Trojan.DownLoader12.14838, Trojan.DownLoader12.11416
34.38%

NANO AntiVirus
Riskware.Win32.Conduit.dhhkky, Trojan.Win32.ZPACK.dmubjo, Trojan.Win32.ZPACK.dlnoxx, Trojan.Win32.DownLoader12.dncixg, Trojan.Win32.DownloadAssistant.dmjgez
34.38%

Panda Antivirus
Trj/Genetic.gen, Generic Suspicious
34.38%

Zillya! Antivirus
Backdoor.Klon.Win32.1246, Adware.AirAdInstaller.Win32.792, Adware.AirAdInstaller.Win32.821, Backdoor.PePatch.Win32.64042
28.13%

The domain download.downloadd.co has been seen to resolve to the following 2 IP addresses.

ec2-52-22-183-58.compute-1.amazonaws.com
February 11, 2016

useast.gtdlrfwd.com
January 9, 2015

File downloads found at URLs served by download.downloadd.co.

The following 14 files have been seen to comunicate with download.downloadd.co in live environments.

URL:
http://download.downloadd.co/

Google Analytics:
UA-12529737

Title:
“downloadd.co - domain expired”