The domain ddd.downloadviddownloader.com registered by Bundlore LTD was initially registered in October of 2012 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Registrar:
GODADDY.COM, LLC
Server location:
Massachusetts, United States (US)
Create date:
Wednesday, October 17, 2012
Expires date:
Friday, October 17, 2014
Updated date:
Friday, October 18, 2013
ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.
Scanner detections:
Detections (80% detected)
Scan engine
Details
Detections
Dr.Web
Adware.Downware.830, Adware.InstallCore.125, Adware.InstallCore.122, Adware.InstallCore.72, Adware.Downware.925, Adware.Downware.10825
100.00%
VIPRE Antivirus
Bundlore, InstallCore, Click run software
100.00%
Reason Heuristics
PUP.Installer.Bundlore.F, PUP.Clickrunsoftware.Q, PUP.Installer.Bundlore.Q, PUP.Bundlore.httpwwwvgrabber.Bundler (M)
80.00%
Malwarebytes
PUP.Optional.Bundlore.A, PUP.Optional.InstallCore, PUP.BundleInstaller.VG
60.00%
Trend Micro House Call
TROJ_GEN.F47V0406, TROJ_GEN.R0CBC0OIP13, ADW_BUNDTRACK
60.00%
ESET NOD32
Win32/TrojanDownloader.Adload.NMV, Win32/InstallCore.AY (variant), Win32/Adware.Bundlore
60.00%
Fortinet FortiGate
W32/Adload.NMV!tr.dldr, Riskware/InstallCore, W32/Toolbar.FUNMOODS
60.00%
AVG
Adware Skodna.Bundle, InstallCore, AdInstaller.Bundlor
60.00%
Comodo Security
ApplicUnwnt.Win32.InstallCore.D, Application.Win32.ClickRun.A, TrojWare.Win32.Agent.iwb
60.00%
Avira AntiVirus
ADWARE/InstallCore.Gen7, APPL/Downloader.Gen6, Adware/Bundlore.C
60.00%
Vba32 AntiVirus
Downware.InstallCore, BScope.Malware-Cryptor.InstallCore.2691, suspected of Trojan.Downloader.gen.h
60.00%
Rising Antivirus
PE:Malware.InstallCore!6.4, PE:Malware.XPACK-LNR/Heur!1.5594, PE:Trojan.Win32.Generic.1336005F!322306143
60.00%
Panda Antivirus
PUP/MultiToolbar.A, PUP/Conduit.A
60.00%
Bkav FE
W32.DealPly.b.Adware, W32.HfsAdware
40.00%
K7 AntiVirus
Adware , Riskware
40.00%
The domain ddd.downloadviddownloader.com has been seen to resolve to the following 5 IP addresses.
a23-0-160-34.deploy.static.akamaitechnologies.com
December 17, 2014
a23-0-160-81.deploy.static.akamaitechnologies.com
December 17, 2014
a23-0-160-59.deploy.static.akamaitechnologies.com
December 17, 2014
a23-67-250-112.deploy.static.akamaitechnologies.com
June 21, 2014
a23-67-250-136.deploy.static.akamaitechnologies.com
June 21, 2014
File downloads found at URLs served by ddd.downloadviddownloader.com.
The following 95 files have been seen to comunicate with ddd.downloadviddownloader.com in live environments.
URL:
http://ddd.downloadviddownloader.com/
Web server:
Apache/2.2.3 (CentOS) (PHP/5.3.26)