dde.de.drive-files-b.com

Perion Network Ltd.

Domain Information

The domain dde.de.drive-files-b.com registered by Client Connect Ltd. was initially registered in May of 2013 through GODADDY.COM, LLC. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Dallas, Texas within the United States which resides on the Akamai Technologies, Inc. network. The domain is associated with the publisher Perion Network Ltd. who is located in Tel Aviv, Israel.
Remove Malware from dde.de.drive-files-b.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Texas, United States (US)

Create date:
Sunday, May 05, 2013

Expires date:
Sunday, January 01, 2017

Updated date:
Tuesday, January 06, 2015

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.,US

Root domain:

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (92% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Perion.V, PUP.Perion.S, PUP.Installer.ClientConnect.M, PUP.Perion.W, PUP.Installer.ClientConnect.q, PUP.Perion.Q, PUP.Installer.ClientConnect.V, PUP.Conduit.T, PUP.Installer.ClientConnect.T, PUP.Perion.U, PUP.Perion.Bundler.Conduit.Installer (M), PUP.Perion.Bundler (M), PUP.Perion.Bundler.Conduit (M), PUP.Conduit.ClientConnect.Installer (M)
97.92%

VIPRE Antivirus
InstallCore.b, Conduit, Threat.4786236, Trojan.Win32.Generic
85.42%

Dr.Web
Win32.Sector.21, Adware.Downware.1895, Adware.Conduit.96, Adware.Conduit.33, Adware.Conduit.87, Trojan.PWS.Stealer.13174
79.17%

ESET NOD32
Win32/Toolbar.Conduit.AE, Win32/Toolbar.Conduit.AB (variant), Win32/ClientConnect (variant)
75.00%

Trend Micro House Call
TROJ_GEN.F47V0411, TROJ_GEN.F47V0428, TROJ_GEN.F47V0501, TROJ_GEN.F47V0515, TROJ_GEN.F47V0514, TROJ_GEN.F47V0605, TROJ_GEN.F47V0529, TROJ_GEN.F47V0405, Suspicious_GEN.F47V0730
62.50%

Malwarebytes
PUP.Optional.Conduit, PUP.Optional.Conduit.A, PUP.Optional.ClientConnect
60.42%

Fortinet FortiGate
Riskware/Toolbar_Conduit, Riskware/ClientConnect
60.42%

Baidu Antivirus
Adware.Win32.Conduit, Trojan.Win32.ClientConnect, HackTool.Win32.Conduit, PUA.Win32.ClientConnect, Adware.Win32.Toolbar
58.33%

avast!
Win32:Adware-BRM [PUP], Win32:Adware-gen [Adw]
43.75%

McAfee
Artemis!60D468FC1B0B, Artemis!CEEE8F53140F, Artemis!BD88B09C2E17, Artemis!74EF2ADE6D4C, Artemis!03F12B59B173, Artemis!D6D29DEC6655, Artemis!DDC71D42BD65, Artemis!3A0F1E199498, Artemis!F495B716CC83, Artemis!D22DB6BB7474, Artemis!5A29C5B0AF97, Artemis!C55054EB90CA, Artemis!B9FC7A245D0B, Artemis!D4F890068A40, Artemis!BB8114981373, Artemis!5DE3F1B0209C, Artemis!FA03BF09835E
37.50%

McAfee Web Gateway
Artemis!60D468FC1B0B, Artemis!CEEE8F53140F, Artemis!BD88B09C2E17, Artemis!74EF2ADE6D4C, Artemis!PUP , Artemis!D6D29DEC6655
37.50%

AVG
Generic, MalSign.Generic
37.50%

Kaspersky
not-a-virus:WebToolbar.Win32.Agent, not-a-virus:WebToolbar.Win32.Perinet, not-a-virus:Downloader.NSIS.Agent
35.42%

K7 Gateway Antivirus
Trojan , Unwanted-Program
33.33%

K7 AntiVirus
Trojan , Unwanted-Program
33.33%

The domain dde.de.drive-files-b.com has been seen to resolve to the following 54 IP addresses.

a23-0-160-88.deploy.static.akamaitechnologies.com
February 10, 2016

a23-0-160-99.deploy.static.akamaitechnologies.com
February 1, 2016

a23-0-160-89.deploy.static.akamaitechnologies.com
February 1, 2016

February 1, 2016

February 1, 2016

a23-62-236-35.deploy.static.akamaitechnologies.com
May 4, 2015

a23-62-236-8.deploy.static.akamaitechnologies.com
May 4, 2015

a23-67-243-24.deploy.static.akamaitechnologies.com
May 3, 2015

a23-67-243-25.deploy.static.akamaitechnologies.com
May 3, 2015

a23-3-13-192.deploy.static.akamaitechnologies.com
April 29, 2015

a23-3-13-59.deploy.static.akamaitechnologies.com
December 1, 2014

a23-3-13-43.deploy.static.akamaitechnologies.com
December 1, 2014

a23-62-6-161.deploy.static.akamaitechnologies.com
October 9, 2014

a184-50-228-155.deploy.static.akamaitechnologies.com
September 5, 2014

a184-50-228-179.deploy.static.akamaitechnologies.com
September 5, 2014

September 4, 2014

September 4, 2014

a204-2-179-25.deploy.akamaitechnologies.com
September 4, 2014

a204-2-179-64.deploy.akamaitechnologies.com
September 4, 2014

September 4, 2014

September 4, 2014

a96-6-113-153.deploy.akamaitechnologies.com
September 3, 2014

a96-6-113-193.deploy.akamaitechnologies.com
September 3, 2014

a23-0-160-66.deploy.static.akamaitechnologies.com
September 3, 2014

a184-26-143-144.deploy.static.akamaitechnologies.com
September 2, 2014

a184-26-143-184.deploy.static.akamaitechnologies.com
September 2, 2014

September 2, 2014

September 2, 2014

a23-0-160-48.deploy.static.akamaitechnologies.com
September 2, 2014

a23-0-160-25.deploy.static.akamaitechnologies.com
September 2, 2014

 
Showing 30 of 54 IP Addresses

File downloads found at URLs served by dde.de.drive-files-b.com.

 
Latest 30 of 318 download URLs

The following 169 files have been seen to comunicate with dde.de.drive-files-b.com in live environments.

 
Latest 20 of 199 files

URL:
http://dde.de.drive-files-b.com/

Web server:
Microsoft-IIS/7.5 (ASP.NET)

Remove Malware from dde.de.drive-files-b.com - Powered by Reason Core Security