downloadmee.com

Whois Privacy Corp.

Domain Information

The domain downloadmee.com registered by Whois Privacy Corp. was initially registered in February of 2014 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dublin, Dublin City within Ireland which resides on the Amazon Technologies Inc. network.
Registrar:
INTERNET DOMAIN SERVICE BS CORP

Server location:
Dublin City, Ireland (IE)

Create date:
Wednesday, February 5, 2014

Expires date:
Sunday, February 5, 2017

Updated date:
Saturday, February 6, 2016

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

MicroWorld eScan
Gen:Variant.Application.Bundler.AirInstaller.1, Gen:Variant.Adware.Strictor.77177, Gen:Variant.Application.Jatif.103, Gen:Variant.Adware.Kazy.556217
90.00%

Bitdefender
Gen:Variant.Application.Bundler.AirInstaller.1, Gen:Variant.Adware.Strictor.77177, Gen:Variant.Application.Jatif.103, Gen:Variant.Adware.Kazy.556217
90.00%

Lavasoft Ad-Aware
Gen:Variant.Application.Bundler.AirInstaller.1, Gen:Variant.Adware.Strictor.77177, Gen:Variant.Application.Jatif.103, Gen:Variant.Adware.Kazy.556217
90.00%

AhnLab V3 Security
PUP/Win32.Amonetiz
90.00%

G Data
Gen:Variant.Application.Bundler.AirInstaller, Gen:Variant.Adware.Strictor.77177, Gen:Variant.Application.Jatif.103, Gen:Variant.Adware.Kazy.556217
90.00%

Bkav FE
HW32.Packed, W32.HfsAdware
80.00%

F-Secure
Gen:Variant.Application.Bundler, Gen:Variant.Adware.Strictor.77177, Gen:Variant.Application.Jatif, Gen:Variant.Adware.Kazy.556217
80.00%

Avira AntiVirus
TR/Crypt.XPACK.Gen, ADWARE/Adware.Gen4, ADWARE/Adware.Gen2, TR/Crypt.XPACK.Gen3
80.00%

Kaspersky
not-a-virus:AdWare.Win32.Amonetize, not-a-virus:HEUR:AdWare.Win32.Generic
80.00%

Qihoo 360 Security
HEUR/QVM10.1.Malware.Gen, Win32/Trojan.f79, HEUR/QVM19.1.Malware.Gen, HEUR/QVM16.0.Malware.Gen
80.00%

Malwarebytes
PUP.Optional.Amonetize
70.00%

NANO AntiVirus
Trojan.Win32.Amonetize.dnjxrs, Riskware.Win32.Amonetize.domexk, Riskware.Win32.Amonetize.dqmvjd, Riskware.Win32.Amonetize.doukvl
70.00%

Sophos
Generic PUA CL, Generic PUA PC, Generic PUA GH, Generic PUA KE, Generic PUA AM, Generic PUA IH, Generic PUA AE (PUA)
70.00%

McAfee
GenericR-CXP!E63A990F207D, GenericR-CXP!ECD4A82E2041, Artemis!4BD1FCBDDF74, Artemis!6776ED0285B2, Artemis!359E1CFB3CA8, RDN/Generic PUP.x!c2m
70.00%

ESET NOD32
Win32/Amonetize.DE potentially unwanted (variant), Win32/Amonetize.EA potentially unwanted (variant), Win32/Amonetize.EG potentially unwanted (variant)
70.00%

The domain downloadmee.com has been seen to resolve to the following 3 IP addresses.

ns1.ibspark.com
February 13, 2016

May 5, 2015

May 5, 2015

File downloads found at URLs served by downloadmee.com.

27 / 68    (PUP)

33 / 68    (PUP)

25 / 68    (PUP)

1 / 68      (Malware)

28 / 68    (PUP)
http://downloadmee.com/download.php?id=yewryk&title=  (installeraxp__7934_il106790.exe)

30 / 68    (PUP)

11 / 68    (PUP)

15 / 68    (PUP)

25 / 68    (Adware)

21 / 68    (Adware)

The following 142 files have been seen to comunicate with downloadmee.com in live environments.

 
Latest 20 of 154 files

URL:
http://downloadmee.com/

Google Analytics:
UA-48689684

Title:
“downloadmee.com”

Web server:
nginx

30 of 618 related domains