download.cdn.bandoo.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain download.cdn.bandoo.com is registered by proxy through GODADDY.COM, LLC and was originally registered in April of 2000. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Massachusetts, United States (US)

Create date:
Tuesday, April 18, 2000

Expires date:
Tuesday, April 18, 2017

Updated date:
Wednesday, March 09, 2016

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.DiscordiaLimited.I, PUP.Optional.Installer.I, PUP.Optional.Installer.L, PUP.Optional.Installer.Bandoo, Threat.Installer.Bandoo, PUP.Discordia.Installer (M), Win32.Generic
100.00%

Dr.Web
Adware.Bandoo.1, Trojan.PWS.Siggen.29193, Adware.Bandoo.8, Adware.Bandoo.15, Adware.Bandoo.251, Adware.Bandoo.280, Adware.Bandoo.15
32.65%

Trend Micro House Call
TROJ_NSOFTONLY_000000a.TOMA, HV_ZYX_CH160114.UVPA, TROJ_GEN.RCBOHHT, TROJ_GEN.F47V0801, TROJ_GEN.USA21HO, HV_ZYX_BK0846DB.TOMC, HV_ZYX_BK0842D0.TOMC
30.61%

ESET NOD32
Win32/Toolbar.SearchSuite, Win32/Adware.Bandoo.AC (variant), Win32/Toolbar.SearchSuite potentially unwanted
28.57%

VIPRE Antivirus
Trojan.Win32.Generic
18.37%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), Win32.Troj.Agent.zz.(kcloud)
18.37%

Baidu Antivirus
Trojan.Win32.Adware, PUA.Win32.Toolbar.SearchSuite
18.37%

McAfee Web Gateway
Artemis!D3DCA112CF08, Artemis!A9FDAB1DA5C7, BehavesLike.Win32.Suspicious.tc
18.37%

McAfee
Artemis!D3DCA112CF08, Artemis!A9FDAB1DA5C7, Trojan.Artemis!9D16BE36B35D
16.33%

AVG
Bandoo
16.33%

Bkav FE
W32.HfsAdware
16.33%

herdProtect (fuzzy)
a variant of ad6c8057c29fcb66c1c55e75243c7c0e0e7cfae5, a variant of 4e32aac8bf63d6e7540177cd3dea6a2c41561e8b, a variant of 5504b93825dff217766cb83854260a40b66defbd
12.24%

Fortinet FortiGate
Riskware/Bandoo, W32/Toolbar.SEARCHSUITE
12.24%

Norman
Bandoo.H
10.20%

avast!
Adware-gen [Adw], Win32:Adware-gen [Adw]
8.16%

The domain download.cdn.bandoo.com has been seen to resolve to the following 6 IP addresses.

July 31, 2014

July 31, 2014

a23-67-250-147.deploy.static.akamaitechnologies.com
April 16, 2014

a23-67-250-88.deploy.static.akamaitechnologies.com
April 16, 2014

a23-67-243-75.deploy.static.akamaitechnologies.com
March 3, 2014

a23-67-243-67.deploy.static.akamaitechnologies.com
March 3, 2014

File downloads found at URLs served by download.cdn.bandoo.com.

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV7.exe  (9453a466d15f51a0a7a83ca92707abc1)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/6/r/.../BandooV6.exe  (6c75660432debc101161a587483fabe2)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV6.exe  (3a2bd257a426135abcd5c4fdad857434)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV6.exe  (ceb901e28e30f3dc3351e9b463e49a66)

4 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/2/r/.../BandooV8.exe  (789c4264c0318129378a1cee4a090ee8)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV7.exe  (0a5138f176a1c45cb49e3e0b8b943ecf)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV8.exe  (12bffce453fe777b21ee55eff48e590d)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/6/r/.../BandooV7.exe  (dce2e291fe216f5102b2797de64e42d7)

7 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/2/r/.../BandooV7.exe  (a3a9243701a7ef96f0ea043ca9d836b4)

9 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV6.exe  (43a5affa002c8d4a00898b541c75f1b6)

7 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV7.exe  (19ea7a2fb294875d28f1d522f03b8081)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/3/r/.../BandooV6.exe  (b3fce41e46639e1cc6bcb87e88b108e7)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV8.exe  (2eef31a6275b63dd257dafa534b688db)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV7.exe  (da319379a41a5b100e612e1436e2f79b)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV8.exe  (81d449fd7ddd43121eba1ebc75107b65)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV7.exe  (22916ee898831ab6aec06e87d79c88b1)

11 / 68    (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV6.exe  (479c9301bbbbc75e738fa8b923d86276)

4 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV7.exe  (4bdd9f83ce092753c00f8991e98fa6e0)

13 / 68    (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV8.exe  (969a2a5c8bd3f131a7ff235c8490396d)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/3/r/.../BandooV7.exe  (90d0820c9eeb5437e362f79f94212256)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/2/r/.../BandooV6.exe  (6def734b9f9cb23c5287944582c49759)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV7.exe  (dfa54428cb0cd65ab1e796896aa496a4)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV8.exe  (22946d647f219aa951909cc947837d21)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/6/r/.../BandooV6.exe  (3be658e78be7fc0578b01abe682a7141)

4 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/6/r/.../BandooV6.exe  (cdf91614de773bcfa41dec4d500f3362)

1 / 68      (PUP)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/2/r/.../BandooV6.exe  (cab5c88856595544888fa940f6c77bb1)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/6/r/.../BandooV6.exe  (dbc78b71f43b9e1b6a137df4a265829f)

8 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV7.exe  (58b48581bd765eb4aa2af7321ba7925f)

 
Latest 30 of 65 download URLs

The following 55 files have been seen to comunicate with download.cdn.bandoo.com in live environments.

 
Latest 20 of 56 files