home

br-cdn.windapp.net

Domain Information

Server location:
Washington, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:
windapp.net

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.NOSIBAY.Installer (M), PUP.EasyVpn (M), Adware.Downloader.GuideSty.Meta (M), PUP.DefenseM (M)
100.00%

The domain br-cdn.windapp.net has been seen to resolve to the following 53 IP addresses.

54.192.19.103
server-54-192-19-103.iad12.r.cloudfront.net
July 25, 2016

54.192.19.55
server-54-192-19-55.iad12.r.cloudfront.net
July 25, 2016

54.192.19.54
server-54-192-19-54.iad12.r.cloudfront.net
July 25, 2016

54.192.19.46
server-54-192-19-46.iad12.r.cloudfront.net
July 25, 2016

54.192.19.45
server-54-192-19-45.iad12.r.cloudfront.net
July 25, 2016

54.192.19.247
server-54-192-19-247.iad12.r.cloudfront.net
July 25, 2016

54.192.19.212
server-54-192-19-212.iad12.r.cloudfront.net
July 25, 2016

54.192.19.138
server-54-192-19-138.iad12.r.cloudfront.net
July 25, 2016

52.85.131.149
server-52-85-131-149.iad53.r.cloudfront.net
July 17, 2016

52.85.131.117
server-52-85-131-117.iad53.r.cloudfront.net
July 17, 2016

52.85.131.217
server-52-85-131-217.iad53.r.cloudfront.net
July 17, 2016

52.85.131.249
server-52-85-131-249.iad53.r.cloudfront.net
June 29, 2016

52.85.131.231
server-52-85-131-231.iad53.r.cloudfront.net
June 29, 2016

52.85.131.152
server-52-85-131-152.iad53.r.cloudfront.net
June 29, 2016

52.85.131.127
server-52-85-131-127.iad53.r.cloudfront.net
June 29, 2016

52.85.131.102
server-52-85-131-102.iad53.r.cloudfront.net
June 29, 2016

52.85.131.74
server-52-85-131-74.iad53.r.cloudfront.net
June 29, 2016

52.85.131.48
server-52-85-131-48.iad53.r.cloudfront.net
June 29, 2016

52.85.131.8
server-52-85-131-8.iad53.r.cloudfront.net
June 29, 2016

52.85.142.117
server-52-85-142-117.iad12.r.cloudfront.net
May 26, 2016

52.85.142.46
server-52-85-142-46.iad12.r.cloudfront.net
May 26, 2016

52.85.142.37
server-52-85-142-37.iad12.r.cloudfront.net
May 26, 2016

52.85.142.10
server-52-85-142-10.iad12.r.cloudfront.net
May 26, 2016

52.85.142.173
server-52-85-142-173.iad12.r.cloudfront.net
May 26, 2016

52.85.142.152
server-52-85-142-152.iad12.r.cloudfront.net
May 26, 2016

52.85.131.43
server-52-85-131-43.iad53.r.cloudfront.net
May 26, 2016

52.85.131.62
server-52-85-131-62.iad53.r.cloudfront.net
May 17, 2016

52.85.131.18
server-52-85-131-18.iad53.r.cloudfront.net
May 17, 2016

52.85.131.215
server-52-85-131-215.iad53.r.cloudfront.net
May 17, 2016

52.85.131.204
server-52-85-131-204.iad53.r.cloudfront.net
May 17, 2016

 
Showing 30 of 53 IP Addresses

File downloads found at URLs served by br-cdn.windapp.net.

1 / 68      (PUP)
http://br-cdn.windapp.net/setup/br/.../64644.WindApp.MON001.no.exe  (3d64087ef440f8642eb275cb5d8768ef)

1 / 68      (PUP)
http://br-cdn.windapp.net/setup/br/.../64644.WindApp.MON001.no.exe  (723466a16a2324b8c62e5b9492e8961b)

1 / 68      (PUP)
http://br-cdn.windapp.net/setup/br/.../64999.Selection_Tools.ALT001.exe  (83dfc6bf9d1d11a9f21462edbf6142ca)

1 / 68      (PUP)
http://br-cdn.windapp.net/setup/br/.../64476.AddonsUI.exe  (a53c01b0413d297ade095d125d2c0f29)

1 / 68      (PUP)
http://br-cdn.windapp.net/setup/br/.../64476.AddonsUI.exe  (a9efbce9588d3ab4b7195f42ccafd784)

1 / 68      (PUP)
http://br-cdn.windapp.net/setup/br/.../64476.AddonsUI.exe  (3ae53c8308f3ac49cc980237565c5bea)

1 / 68      (PUP)
http://br-cdn.windapp.net/setup/br/.../64476.AddonsUI.exe  (fcaea94938bfe343fc4a2ad039cce8de)

1 / 68      (PUP)
http://br-cdn.windapp.net/setup/br/.../64999.Selection_Tools.ALT001.exe  (ad675768ca8fcd053747ba4dc6a24f1a)

1 / 68      (PUP)
http://br-cdn.windapp.net/setup/br/.../64916.Selection_Tools.ALT001.exe  (6f44dac68dc908152157adbb7dbb05fd)

1 / 68      (PUP)
http://br-cdn.windapp.net/setup/br/.../64476.AddonsUI.exe  (c65f5243c5e9062dddd24afc23552784)

1 / 68      (PUP)
http://br-cdn.windapp.net/dld/update/2016_02_01/.../AddonsUI.exe  (c65f5243c5e9062dddd24afc23552784)

1 / 68      (PUP)
http://br-cdn.windapp.net/setup/br/.../64644.WindApp.MON001.no.exe  (6afac3aa3a5c2d80e860e17a3b1cc84f)

1 / 68      (PUP)
http://br-cdn.windapp.net/setup/br/.../64658.Selection_Tools.ALT001.no.exe  (5cfa775e43b56a9177f74216995bf56c)

1 / 68      (PUP)
http://br-cdn.windapp.net/downloader/br/BOO001/.../downloader.64470.exe  (bubble dock bsetup.exe)

The following 129 files have been seen to comunicate with br-cdn.windapp.net in live environments.

TCP » 54.192.19.212:80
cktSvc.exe (Uncheckit Module by EVANGEL TECHNOLOGY (HK) LIMITED)

TCP » 54.192.19.46:80
dam_ay.exe

TCP » 52.85.142.215:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.215:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.19.103:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.31:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.192.19.247:80
browser.exe (Browser)

TCP » 54.192.19.54:80
saber.exe

TCP » 54.192.19.54:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.145:443
ManyCam.exe (ManyCam Virtual Webcam by Visicom Media)

TCP » 54.192.19.247:80
tsvr.exe (Trend Service by Trend)

TCP » 52.85.142.10:80
mobogenieP2sp.exe (mobogenie by mobogenie.com)

TCP » 54.192.19.54:443
online-guardian-v2.0.9.exe

TCP » 54.192.19.212:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.145:80
browser.exe (Browser)

TCP » 54.192.19.55:80
yacqq.exe

TCP » 54.192.19.247:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.19.54:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.37:80
Mobogenie.exe (Mobogenie by Mobogenie.com)

TCP » 54.192.19.247:80
uvconverter.exe (TODO: <Product name> by TODO: <Company name>)

 
Latest 20 of 210 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.