home

dde.s.bdirectdownload-about.com

Client Connect Ltd.

Domain Information

The domain dde.s.bdirectdownload-about.com registered by Client Connect Ltd. was initially registered in October of 2014 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Fort Myers, Florida within the United States which resides on the Akamai Technologies, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Florida, United States (US)

Create date:
Tuesday, October 28, 2014

Expires date:
Monday, January 1, 2018

Updated date:
Tuesday, January 6, 2015

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.,US

Root domain:
bdirectdownload-about.com

Whois:
1 bdirectdownload-about.com record

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Perion.Bundler.Conduit (M), PUP.Conduit.ClientCo.Installer (M)
100.00%

Bkav FE
W32.HfsAdware
50.00%

McAfee
Artemis!9C5C59C039C6
50.00%

Zillya! Antivirus
Adware.Agent.Win32.40487
50.00%

K7 AntiVirus
Trojan
50.00%

Trend Micro House Call
Suspicious_GEN.F47V0210
50.00%

avast!
Win32:Adware-BRM [PUP]
50.00%

Kaspersky
not-a-virus:WebToolbar.Win32.Agent
50.00%

NANO AntiVirus
Trojan.Win32.ClientConnect.deinfe
50.00%

Dr.Web
Adware.Conduit.87
50.00%

VIPRE Antivirus
Conduit
50.00%

AhnLab V3 Security
PUP/Win32.Toolbar
50.00%

G Data
Win32.Application.ClientConnectConduitDL
50.00%

Baidu Antivirus
PUA.Win32.ClientConnect
50.00%

ESET NOD32
Win32/ClientConnect.A potentially unwanted (variant)
50.00%

The domain dde.s.bdirectdownload-about.com has been seen to resolve to the following 4 IP addresses.

104.96.220.153
a104-96-220-153.deploy.static.akamaitechnologies.com
May 22, 2016

104.96.220.131
a104-96-220-131.deploy.static.akamaitechnologies.com
May 22, 2016

23.62.6.168
a23-62-6-168.deploy.static.akamaitechnologies.com
February 4, 2016

23.62.6.216
a23-62-6-216.deploy.static.akamaitechnologies.com
February 4, 2016

File downloads found at URLs served by dde.s.bdirectdownload-about.com.

1 / 68      (Adware)
http://dde.s.bdirectdownload-about.com/76/990/ct9908976/b3030679b12f4e6e8b9fe18c57d067d9/Downloads/Prod/SmallStub1.3.9.0.140504.01/.../IMVU.exe  (16eb97dc701b8d86890b6401d70857c0)

19 / 68    (Adware)
http://dde.s.bdirectdownload-about.com/36/942/ct9425736/9dd24fe94ffb4209b1f6d39e34f9bb38/Downloads/Prod/DDE1.4.0.5.150121.02/.../SweetPlayer.exe  (sweetplayer_tsv65nc5b.exe)

The following 37 files have been seen to comunicate with dde.s.bdirectdownload-about.com in live environments.

TCP » 104.96.220.131:80
plugin.exe

TCP » 104.96.220.131:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.96.220.153:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.96.220.131:443
whatsapptime.exe

TCP » 104.96.220.131:80
plugin.exe

TCP » 104.96.220.153:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.96.220.131:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.96.220.131:80
plugin.exe

TCP » 104.96.220.131:80
plugin.exe

TCP » 104.96.220.131:80
plugin.exe

TCP » 104.96.220.153:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 23.62.6.168:80
plugin.exe

TCP » 23.62.6.168:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.96.220.131:80
dgjdigbcaddhgodmcndpghmmheakkfgn.crx

TCP » 104.96.220.131:80
mkbhmdcccmdakmgaaejjjgllahmljpge.crx

TCP » 104.96.220.131:80
cbijdpillpmfkgloninghgpglbkkdomj.crx

TCP » 104.96.220.131:80
ngbmnkfdajmegijnmgpclinofpkpfncf.crx

TCP » 104.96.220.131:80
jjckghecjibfnjjmnogkbaaapcmmlbac.crx

TCP » 104.96.220.131:80
miljdkhjoggfgffnoobhmoejihgmgmja.crx

TCP » 104.96.220.131:80
dcbocnhhlbdpaaklnlcfkgblpfilljhm.crx

 
Latest 20 of 40 files

URL:
http://dde.s.bdirectdownload-about.com/

Web server:
Microsoft-IIS/7.5 (ASP.NET)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.