Open main menu
Home
Random
Recent changes
Special pages
Community portal
Preferences
About Wikipedia
Disclaimers
Incubator escapee wiki
Search
User menu
Talk
Dark mode
Contributions
Create account
Log in
Editing
CNET Download
Warning:
You are not logged in. Your IP address will be publicly visible if you make any edits. If you
log in
or
create an account
, your edits will be attributed to your username, along with other benefits.
Anti-spam check. Do
not
fill this in!
{{Short description|Internet download directory}} {{Infobox website | name = CNET Download | favicon = | logo = Download logo.svg | logo_size = 300px | screenshot = | caption = | collapsible = | url = {{URL|https://download.cnet.com/}} | commercial = Yes | ipv6 = No | type = [[Download]]s | registration = Optional | owner = [[Ziff Davis]] | author = [[CNET]] | launch_date = {{start date and age|1996|10|23}} | current_status = Active | revenue = }} '''CNET Download''' (originally '''Download.com''') is an [[Internet]] [[download]] directory [[website]] launched in 1996 as a part of [[CNET]]. Initially it resided on the domain ''download.com'', and then ''download.com.com'' for a while, and is now ''download.cnet.com''. The domain ''download.com'' attracted at least 113 million visitors annually by 2008 according to a [[Compete.com]] study.<ref>{{cite web |url=http://siteanalytics.compete.com/download.com?metric=uv |title=Download.com attracts over 100m visitors yearly |access-date=2008-05-15 |archive-url=https://web.archive.org/web/20110813045313/http://siteanalytics.compete.com/download.com/?metric=uv |archive-date=2011-08-13 |url-status=dead}}</ref> ==Overview== The offered content is available in four major categories: ''software'' (including Windows, Mac and mobile), ''music'', ''games'', and ''videos'', offered for download via [[File Transfer Protocol|FTP]] from Download.com's [[web server|servers]] or third-party servers. Videos are streams (at present) and music was all free [[MP3]] downloads, or occasionally [[digital rights management|rights-managed]] [[Windows Media Audio|WMAs]] or streams until it was replaced with [[last.fm]]. The Software section includes over 100,000 [[freeware]], [[shareware]], and try-first downloads. Downloads are often rated and reviewed by editors and contain a summary of the file from the software publisher. Registered users may also write reviews and rate the product. Software publishers are permitted to distribute their titles via CNET's Upload.com site for free, or for a fee structure that offers enhancements. Up until 2015 CNet used Spigot Inc to monetize the traffic to download.com. According to Sean Murphy, then a General Manager at CNet, "Spigot continues to be a great partner to Download.com, sharing our desire to balance customer experience with revenue."<ref>{{cite web |url=http://www.spigot.com/monetization/ |archive-url=https://web.archive.org/web/20150316234405/http://www.spigot.com/monetization/ |title=Search Extensions |access-date=May 4, 2015 |archive-date=March 16, 2015 |url-status=dead}}</ref> ==Malware distribution== In August 2011, Download.com introduced an installation manager called CNET TechTracker for delivering many of the software titles from its catalog.<ref>{{cite web |url=http://www.cnet.com/techtracker |title=Download App - Free download and software reviews - CNET Download.com |publisher=Cnet.com |access-date=2015-05-04}}</ref> This installer included trojans and [[bloatware]], such as [[toolbars]].<ref>{{cite web |url=https://www.extremetech.com/computing/93504-download-com-wraps-downloads-in-bloatware-lies-about-motivations |title=Download.com wraps downloads in bloatware, lies about motivations |publisher=ExtremeTech |access-date=2015-05-04}}</ref><ref>{{cite web |url=https://www.theinquirer.net/inquirer/news/2130382/cnet-accused-bundling-malware-downloads |archive-url=https://web.archive.org/web/20120107175731/http://www.theinquirer.net/inquirer/news/2130382/cnet-accused-bundling-malware-downloads |url-status=unfit |archive-date=January 7, 2012 |title=Cnet is accused of bundling malware with downloads |publisher=The Inquirer |date=December 6, 2011 |access-date=May 4, 2015 |first=Dave |last=Neal}}</ref><ref>{{cite web |url=https://www.tomsguide.com/us/CNET-CBS-Malware-Trojan-Nmap,news-13410.html |title=CNET Accused of Bundling Software Downloads with Trojans |publisher=Tom's Guide |date=December 7, 2011 |access-date=May 4, 2015 |first=Kevin |last=Parrish}}</ref> CNET admitted in their download FAQ that "a small number of security publishers have flagged the Installer as [[adware]] or a [[malware#Grayware|potentially unwanted application]]".<ref>{{Cite web |url=https://buzzcreed.com/ |title=CNET Download Installer |access-date=2019-05-18 |archive-date=2019-05-18 |archive-url=https://web.archive.org/web/20190518124326/https://buzzcreed.com/ |url-status=dead }}</ref> In December 2011, [[Gordon Lyon]], writing under his pseudonym ''Fyodor'' wrote of his strong dislike of the installation manager and the bundled software. His post was very popular on social networks, and was reported by a few dozen media. The main problem is the confusion between the content offered on Download.com<ref>{{cite web |url=https://krebsonsecurity.com/2011/12/download-com-bundling-toolbars-trojans/ |title=Download.com Bundling Toolbars, Trojans? |author=Brian Krebs |author-link=Brian Krebs |work=Krebs on security |date=2011-12-06 |access-date=2015-05-04}}</ref><ref name=insecure>{{cite web |url=http://insecure.org/news/download-com-fiasco.html#exec |title=Download.com Caught Adding Malware to Nmap & Other Software |date=2012-06-27 |quote=we suggest avoiding CNET Download.com entirely |author=Gordon Lyon |author-link=Gordon Lyon |access-date=2015-05-04}}</ref> and the software offered by the original authors; the accusations included deception as well as copyright and trademark violation.<ref name=insecure /> In 2014, [[The Register]] and [[United States Computer Emergency Readiness Team|US-CERT]] warned that via download.com's "[[bloatware|foistware]]", an "attacker may be able to download and execute arbitrary code".<ref>{{cite web |url=https://www.theregister.co.uk/2014/07/08/download_wrappers_spruiked_vulnerable_avg_tool_cert_us_warns/ |title=Insecure AVG search tool shoved down users' throats, says US CERT |quote=Sneaky 'foistware' downloads install things you never asked for |date=2014-07-08 |author=Darren Pauli |publisher=The Register |access-date=2015-05-04}}</ref> In 2015, research by [[:Emsisoft]] suggested that all free download portals bundled their downloads with potentially unwanted software, and that Download.com was the worst offender.<ref>{{cite web |url=http://blog.emsisoft.com/2015/03/11/mind-the-pup-top-download-portals-to-avoid/ |title=Mind the PUP: Top download portals to avoid |publisher=EMSISOFT |date=March 11, 2015 |access-date=May 4, 2015}}</ref> A study done by How-To Geek in 2015 revealed that Download.com was packaging malware inside their installers. The test was done in a [[virtual machine]] where the testers downloaded the Top 10 apps. These all contained crapware/malware; one example was the KMPlayer installer, which installed a [[rogue antivirus]] named 'Pro PC Cleaner' and attempted to execute <code>WajamPage.exe</code>. Some downloads, specifically YTD, were completely blocked by [[Avast Software|Avast.]]<ref>{{cite web |url=https://www.howtogeek.com/198622/heres-what-happens-when-you-install-the-top-10-download.com-apps/ |title=Here's What Happens When You Install The Top 10 Download.com Apps |date=2015-01-11 |author=Lowell Heddings |publisher=How-To Geek |access-date=June 20, 2015}}</ref> Another study done by How-To Geek in 2015 revealed that Download.com was installing fake [[public key certificate|SSL certificates]] inside their installers, similar to the [[Lenovo]] [[Superfish]] certificate. These fake certificates can completely compromise SSL encryption and allow [[man-in-the-middle attack]]s.<ref>{{cite web |url=https://www.howtogeek.com/210265/download.com-and-others-bundle-superfish-style-https-breaking-adware/ |title=Download.com and Others Bundle Superfish-Style HTTPS Breaking Adware |date=2015-02-23 |author=Lowell Heddings |publisher=How-To Geek |access-date=January 6, 2016}}</ref> However, in July 2016, How-To Geek discovered that Download.com no longer included adware/malware in its downloads and that its Installer program had been discontinued.<ref>{{cite web |url=https://www.howtogeek.com/264592/download.com-has-finally-stopped-bundling-crapware/ |title=Download.com Has Finally Stopped Bundling Crapware |date=2016-07-27 |author=Chris Hoffman |publisher=How-To Geek |access-date=August 8, 2016}}</ref> ==References== {{Reflist}} {{Red Ventures}} [[Category:CNET]] [[Category:Adware]] [[Category:American music websites]] [[Category:Download websites]] [[Category:File hosting]] [[Category:Free music download websites]] [[Category:Internet properties established in 1996]]
Edit summary
(Briefly describe your changes)
By publishing changes, you agree to the
Terms of Use
, and you irrevocably agree to release your contribution under the
CC BY-SA 4.0 License
and the
GFDL
. You agree that a hyperlink or URL is sufficient attribution under the Creative Commons license.
Cancel
Editing help
(opens in new window)
Pages transcluded onto the current version of this page
(
help
)
:
Template:Cite web
(
edit
)
Template:Infobox website
(
edit
)
Template:Red Ventures
(
edit
)
Template:Reflist
(
edit
)
Template:Short description
(
edit
)