files.1download.io

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:

Scanner detections:
Detections  (90% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Air Software, PUP.Bundler.Vittalia, Threat.Air Software.Bundler, PUP.Vittalia.Bundler, PUP.Vittalia.InstallHelper.Installer (M), PUP.Air Software.DownloadAssistant.Bundler (M), PUP.DownloadAssistant.Bundler.Installer.Meta (M), PUP.Vittalia.InstallH.Installer (M), PUP.Air Software.Download.Bundler (M), PUP.Vittalia (M), PUP.Air Software (M)
97.22%

ESET NOD32
Win32/DownloadAssistant.A potentially unwanted application, Detection.Undefined, Win32/DownloadAssistant.B potentially unwanted application
36.11%

Dr.Web
Trojan.DownLoader12.16985, Trojan.Vittalia.13, Trojan.Vittalia.17, Trojan.DownLoader12.14838, Trojan.Vittalia.18, Trojan.Vittalia.30
30.56%

AVG
Generic, Potentially harmful program DownloadAssistant.A
30.56%

NANO AntiVirus
Trojan.Win32.DownLoader12.dncixg, Trojan.Win32.Vittalia.dqfrig
27.78%

Lavasoft Ad-Aware
Gen:Variant.Application.Bundler.Jaik.5699, Gen:Variant.Application.Bundler.AirInstaller.5
25.00%

Emsisoft Anti-Malware
Gen:Variant.Application.Bundler.Jaik.5699, Gen:Variant.Application.Bundler.AirInstaller
25.00%

F-Secure
Riskware.Gen:Variant.Application.Bundler
25.00%

VIPRE Antivirus
Threat.4782985
25.00%

MicroWorld eScan
Gen:Variant.Application.Bundler.Jaik.5699, Gen:Variant.Application.Bundler.AirInstaller.5
25.00%

Malwarebytes
PUP.Optional.DownloadAssistant, PUP.Optional.BundleInstaller.A, PUP.Optional.InstallHelper.C
25.00%

Bitdefender
Gen:Variant.Application.Bundler.Jaik.5699, Gen:Variant.Application.Bundler.AirInstaller.5
25.00%

G Data
Gen:Variant.Application.Bundler.Jaik.5699, Gen:Variant.Application.Bundler.AirInstaller
25.00%

Panda Antivirus
Generic Suspicious, Trj/Genetic.gen
25.00%

avast!
Win32:Dropper-gen [Drp], Win32:Adware-CKN [PUP], Win32:Adware-CKF [PUP], Win32:Adware-CKC [PUP]
25.00%

The domain files.1download.io has been seen to resolve to the following IP address.

ec2-54-68-129-119.us-west-2.compute.amazonaws.com
May 15, 2015

File downloads found at URLs served by files.1download.io.

1 / 68      (Adware)

1 / 68      (Adware)

0 / 68
http://files.1download.io/appsv1/.../JavaSetup8u40.exe  (0ed6fd8b4046871e2921c9e3d09343fb)

1 / 68
http://files.1download.io/appsv1/.../winrar-x64-521.exe  (9b6f7231533f04b75f3b3c86cb9d0117)

0 / 68

0 / 68

 
Latest 30 of 39 download URLs

The following file have been seen to comunicate with files.1download.io in live environments.