The domain download.cdn.aztecbe.com is registered by proxy through GODADDY.COM, LLC and was originally registered in October of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dulles, Virginia within the United States which resides on the Limelight Networks, Inc. network.
Registrant:
Domains By Proxy, LLC
Registrar:
GODADDY.COM, LLC
Server location:
Virginia, United States (US)
Create date:
Tuesday, October 1, 2013
Expires date:
Monday, October 1, 2018
Updated date:
Tuesday, October 1, 2013
ASN:
AS22822 LLNW-AS Limelight Networks, INC. proxy AS object
Scanner detections:
Detections (96% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.AZTECMEDIAINC.U, PUP.APN.Installer.U, PUP.APN.Installer.H, PUP.Installer.Aztec Media, Threat.Installer.Aztec Media, PUP.APN.Aztec Media.Installer (M)
96.15%
Kaspersky
Virus.Win32.Virut, not-a-virus:WebToolbar.Win64.SearchSuite
84.62%
G Data
Win32.Virtob.Gen.12, Win32.Application.AztecSystemK, Win32.Application.Searchsuite
84.62%
Qihoo 360 Security
Malware.QVM19.Gen, HEUR/Malware.QVM06.Gen, Win32/Virus.WebToolbar.d3d, HEUR/QVM42.0.Malware.Gen, HEUR/QVM30.1.Malware.Gen
80.77%
F-Secure
Win32.Virtob.Gen.12, Gen:Variant.Adware.Strictor.68055, Gen:Variant.Adware.Jatif.77, Adware.Linkey.B, Adware.Bandoo.C, Gen:Variant.Adware.SearchSuite
76.92%
IKARUS anti.virus
Email-Worm.Win32.Runouce, PUA.Toolbar.SearchSuite, not-a-virus:WebToolbar.SearchSuite, AdWare.Bandoo
76.92%
Malwarebytes
PUP.Optional.Linkey.A, PUP.Optional.AztecMedia.A
76.92%
avast!
Win32:Vitro, Win32:PUP-gen [PUP], Win32:Adware-gen [Adw]
73.08%
Sophos
W32/Scribble-B, SearchSuite, PUA 'SearchSuite' (of type Adware), Generic PUA MC, Generic PUA OL, Generic PUA HO, Generic PUA HD
73.08%
Panda Antivirus
W32/Sality.AO, Trj/Chgt.C, Trj/Chgt.E, Trj/Chgt.N, Generic Suspicious, PUP/Linkey
69.23%
Avira AntiVirus
W32/Chir.B, Adware/Agent.SearchSuite.U, PUA/SeaSuite.Gen
65.38%
Dr.Web
Win32.Virut.56, Adware.Toolbar.246, Adware.Bandoo, Adware.Bandoo.283
61.54%
McAfee
W32/Chir.gen!remnants, Artemis!9F63CE02DDAB, Artemis!A917BA248DDF, Artemis!8AB4430597F6, Artemis!9475C3314FAB, Artemis!1CA478AD05C5
61.54%
Trend Micro House Call
PE_VIRUX.A-3, Suspicious_GEN.F47V0619, Suspicious_GEN.F47V0801, Suspicious_GEN.F47V0806, Suspicious_GEN.F47V0805, Suspicious_GEN.F47V1117
61.54%
F-Prot
W32/Virut.AI, W32/SearchSuite.A.gen, W32/S-a316f7dc
57.69%
The domain download.cdn.aztecbe.com has been seen to resolve to the following 15 IP addresses.
cdn-208-111-160-6.iad.llnw.net
April 7, 2016
cdn-208-111-161-254.iad.llnw.net
April 7, 2016
a23-220-148-34.deploy.static.akamaitechnologies.com
March 4, 2016
a23-0-160-98.deploy.static.akamaitechnologies.com
February 28, 2016
a23-0-160-97.deploy.static.akamaitechnologies.com
February 28, 2016
a23-15-7-114.deploy.static.akamaitechnologies.com
February 28, 2016
a23-15-7-98.deploy.static.akamaitechnologies.com
February 28, 2016
a184-51-126-33.deploy.static.akamaitechnologies.com
February 4, 2016
a184-51-126-35.deploy.static.akamaitechnologies.com
February 4, 2016
a23-220-148-58.deploy.static.akamaitechnologies.com
February 3, 2016
a23-220-148-32.deploy.static.akamaitechnologies.com
February 3, 2016
a184-51-126-112.deploy.static.akamaitechnologies.com
January 5, 2016
a184-51-126-82.deploy.static.akamaitechnologies.com
January 5, 2016
a23-0-160-66.deploy.static.akamaitechnologies.com
September 15, 2014
a23-0-160-33.deploy.static.akamaitechnologies.com
September 15, 2014
File downloads found at URLs served by download.cdn.aztecbe.com.
The following 286 files have been seen to comunicate with download.cdn.aztecbe.com in live environments.
URL:
http://download.cdn.aztecbe.com/