home

cdn.cleandownloadcase.com

Domain Information

Server location:
Dublin City, Ireland (IE)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.

Root domain:
cleandownloadcase.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore.BornToBeNetConsulting.Installer (M), PUP.installCore.BornToBe.Installer (M)
100.00%

ESET NOD32
Win32/InstallCore.ZR potentially unwanted application
20.00%

Bkav FE
W32.HfsAdware
20.00%

Dr.Web
Trojan.InstallCore.550
20.00%

Avira AntiVirus
PUA/InstallCore.IL
20.00%

AVG
InstallCore
20.00%

Qihoo 360 Security
Win32/Virus.dbc
20.00%

K7 AntiVirus
Adware
20.00%

G Data
Win32.Application.InstallCore.EG
20.00%

Baidu Antivirus
Adware.Win32.InstallCore
20.00%

Panda Antivirus
PUP/Multitoolbar
20.00%

Malwarebytes
PUP.Optional.InstallCore.A
20.00%

VIPRE Antivirus
Threat.4150696
20.00%

The domain cdn.cleandownloadcase.com has been seen to resolve to the following 3 IP addresses.

54.72.9.51
ec2-54-72-9-51.eu-west-1.compute.amazonaws.com
June 21, 2016

52.25.167.148
ec2-52-25-167-148.us-west-2.compute.amazonaws.com
May 17, 2016

54.191.172.222
ec2-54-191-172-222.us-west-2.compute.amazonaws.com
February 29, 2016

File downloads found at URLs served by cdn.cleandownloadcase.com.

1 / 68      (PUP)
http://cdn.cleandownloadcase.com/c?x=4YZObj4cVoGsUGYFtfH/.../0MC0tLe6q3W8ws4rq5R6r42dEzW7UK6f1hVqii0kF geQaoZk9KN1Qo4YLv5eVgLEX2Z6LunYaqYOCLX7bitLpRaNyp91FEFxPnetwrje&downloadAs=Malavida_Download_Manager.exe  (75a4a7bffa3d035196dcb240690f151d)

1 / 68      (PUP)
http://cdn.cleandownloadcase.com/c?x=cPjOblqnFcLSDB05U 2fshWzvMFszqs k3RzlsFXJtI=&c=0UI2rN9QYKLwVKnuCm1WLxTXXgy8acSDcJvBCRhDVvOR7A16rdGMeQRrtlmPccuTtY81xLqMqBPSIEZ0y8hqfFvj3ydq1Y3Vv7KhPcxd Pv3ho14VaueFqBnQXwHdUgs&downloadAs=Malavida_Download_Manager.exe  (66f0e00b4eca8823c73e494203780593)

1 / 68      (PUP)
http://cdn.cleandownloadcase.com/c?x=fawit8/G7A3cqR/6E1Cba/CDJh9IX6WlQQzaRfZSGww=&c=jwnxbI7mLw9lPF9vra3vLQ43H59PrhWdAjLYbERlXzul/3ixI6/Cgg8osiohLPm67XlMvFooPrLjGL/.../4g515ykRFnNXPpz3pZZpuFGVoy2v2ewoYEQMjl7&downloadAs=Malavida_Download_Manager.exe  (fd889cc1297815b11b6d75254a5b05dc)

1 / 68      (PUP)
http://cdn.cleandownloadcase.com/.../ANYJg2HS X0yYW67PeMFjc1EaZfZAv RkiSERT0sHLfQdHCanGRM0xhO mKSSBbjpysI2bfnZIZey05Xp1APK30SBSMJkbFAWYDfWTVrtF2kvdeZ0&downloadAs=Malavida_Download_Manager.exe  (eb01b2c7a7a380e62d553dd1ff0c9f4f)

1 / 68      (PUP)
http://cdn.cleandownloadcase.com/.../Tvw51YHX3wMPZQEKNvzsRHjGtdMioQs3iytt0RvxRAhOzYDMuIyNw7dDsmwl5WMeoXPojijRaljJKglXxJPgzQ8d7F20SxyXKwhHv8cotU8Qjr&downloadAs=Malavida_Download_Manager.exe  (fd889cc1297815b11b6d75254a5b05dc)

13 / 68    (PUP)
http://cdn.cleandownloadcase.com/c?x=ENVW8mLIPoBzveCWKFnARUa4Yk0EcgJ/a6sVvNO lrs=&c=BzWEdn0 QZ6/.../rOWRncP2niKG1ENXZAiHiv Jl76ib6tckvoi0OhFrrdyzQAuOOIev cBBNxodBlDmfVaq7I2YIvCjJ6xsrl3UDf9vqiF&downloadAs=Malavida_Download_Manager.exe  (eec42ba30d9acb28a0215e72df5d695e)

The following 215 files have been seen to comunicate with cdn.cleandownloadcase.com in live environments.

TCP » 54.72.9.51:80
toolbarupdaterservice.exe

TCP » 54.72.9.51:80
hdnInstaller.exe (hdnInstaller)

TCP » 54.72.9.51:80
onedrvup.exe

TCP » 54.72.9.51:80
hdnInstaller.exe (hdnInstaller)

TCP » 54.72.9.51:80
247843.ftf (Optimizer Pro v3.2 by PC Utilities Software Limited)

TCP » 54.72.9.51:80
1799877.exe

TCP » 54.72.9.51:80
IEError.exe (IEError)

TCP » 54.72.9.51:80
install_flashplayer14x32_x64md_aaa_aih.exe (bon joueur)

TCP » 54.72.9.51:80
optimizerproinstaller.exe (Optimizer Pro v3.2 by PCUtilities Software Limited)

TCP » 54.72.9.51:80
charles.exe (by Apple)

TCP » 54.72.9.51:80
onedrv.exe

TCP » 54.72.9.51:80
IEError.exe (IEError)

TCP » 54.72.9.51:80
updater27793.exe (CouponDropDown Plugin by Innovative Apps)

TCP » 54.72.9.51:80
install_flashplayer16x33_masp_aaa_aih.exe (by Apple)

TCP » 54.72.9.51:80
toolbarupdaterservice.exe

TCP » 54.72.9.51:80
hdnInstaller.exe (hdnInstaller)

TCP » 54.72.9.51:80
g.jpg

TCP » 54.72.9.51:80
smlb.jpg

TCP » 54.72.9.51:80
smlb.jpg

TCP » 54.72.9.51:80
hqghumeaylnlf.exe (Optimizer Pro v3.2 by PC Utilities Software Limited)

 
Latest 20 of 219 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.