home

5d54ef5bf50742148a02ad8e25b892e3.branch-pathdrivek.com

Client Connect Ltd.

Domain Information

The domain 5d54ef5bf50742148a02ad8e25b892e3.branch-pathdrivek.com registered by Client Connect Ltd. was initially registered in May of 2013 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Mateo, California within the United States which resides on the Conduit USA, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
California, United States (US)

Create date:
Sunday, May 5, 2013

Expires date:
Thursday, May 5, 2016

Updated date:
Wednesday, January 1, 2014

ASN:
AS56473 CONDUIT-NL Conduit Connect B.V.

Root domain:
branch-pathdrivek.com

Whois:
1 branch-pathdrivek.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

McAfee
Artemis!AA333DF23510, Artemis!9ECC2E70C25B, Artemis!B19EDECC1504, Artemis!98F943050B40, Artemis!F6FF4DF8E4AD, Artemis!25084F7B6F67
100.00%

Dr.Web
Adware.Conduit.27, Adware.Conduit.87
100.00%

VIPRE Antivirus
Conduit
100.00%

Reason Heuristics
PUP.ClientConnect.W
100.00%

Trend Micro House Call
TROJ_GEN.F47V0427, TROJ_GEN.F47V0508, TROJ_GEN.F47V0609, Suspicious_GEN.F47V0723, Suspicious_GEN.F47V0912
83.33%

ESET NOD32
Win32/Toolbar.Conduit.AE, Win32/ClientConnect (variant)
83.33%

Baidu Antivirus
Adware.Win32.Conduit, Trojan.Win32.ClientConnect, PUA.Win32.ClientConnect, Adware.Win32.Toolbar
83.33%

AVG
Generic
83.33%

Fortinet FortiGate
Riskware/Toolbar_Conduit, Riskware/ClientConnect
66.67%

avast!
Win32:Adware-BRM [PUP]
66.67%

Malwarebytes
PUP.Optional.Conduit, PUP.Optional.ClientConnect
50.00%

IKARUS anti.virus
PUA.Toolbar.Conduit, PUA.ClientConnect
33.33%

Rising Antivirus
PE:Trojan.Win32.Generic.170CCD9A!386715034
16.67%

MicroWorld eScan
Gen:Variant.Strictor.63226
16.67%

K7 AntiVirus
Trojan
16.67%

The domain 5d54ef5bf50742148a02ad8e25b892e3.branch-pathdrivek.com has been seen to resolve to the following IP address.

199.101.114.77
May 30, 2014

File downloads found at URLs served by 5d54ef5bf50742148a02ad8e25b892e3.branch-pathdrivek.com.

19 / 68    (Adware)
http://5d54ef5bf50742148a02ad8e25b892e3.branch-pathdrivek.com/Default.ashx?EnvironmentID=1&sessiontracking=true  (beginconvert_tsv4d0l6i.exe)

11 / 68    (Adware)
http://5d54ef5bf50742148a02ad8e25b892e3.branch-pathdrivek.com/Default.ashx?EnvironmentID=1&sessiontracking=true  (beginconvert_tsa27ynhc.exe)

9 / 68      (Adware)
http://5d54ef5bf50742148a02ad8e25b892e3.branch-pathdrivek.com/Default.ashx?EnvironmentID=1&sessiontracking=true  (beginconvert_tsv3auybj.exe)

10 / 68    (Adware)
http://5d54ef5bf50742148a02ad8e25b892e3.branch-pathdrivek.com/Default.ashx?EnvironmentID=1&sessiontracking=true  (beginconvert_tsv29h7m3.exe)

10 / 68    (Adware)
http://5d54ef5bf50742148a02ad8e25b892e3.branch-pathdrivek.com/Default.ashx?EnvironmentID=1&sessiontracking=true  (beginconvert_tsv39xgk0.exe)

7 / 68      (Adware)
http://5d54ef5bf50742148a02ad8e25b892e3.branch-pathdrivek.com/Default.ashx?EnvironmentID=1&sessiontracking=true  (beginconvert_tsv181rg9.exe)

URL:
http://5d54ef5bf50742148a02ad8e25b892e3.branch-pathdrivek.com/

Web server:
Microsoft-IIS/8.5 (ASP.NET)

adirectdownload-about.com

bondemand-about.com

branch-h-drive.com

cdirectdownload-about.com

conduit-services.com

dmccint.com

eondemand-about.com

istoragedownload-about.com

jstoragedownload-about.com

mirorserver-k-drive.com

serverfiles-drivek.com

setuping-onlinedrive.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.