home

cdn.lpe88.com

ID Domain Privacy Network - iDDP.Net

Domain Information

The domain cdn.lpe88.com registered by ID Domain Privacy Network - iDDP.Net was initially registered in September of 2014 through 1 API GMBH. Currently this domain has been known to host various forms of malware. The hosted servers are located in Canyon Lake, Texas within the United States which resides on the BitGravity, Inc. network.
Registrar:
1 API GMBH

Server location:
Texas, United States (US)

Create date:
Friday, September 12, 2014

Expires date:
Tuesday, September 12, 2017

Updated date:
Tuesday, August 11, 2015

ASN:
AS40009 BITGRAVITY - BitGravity, Inc.,US

Root domain:
lpe88.com

Whois:
1 lpe88.com record

Scanner detections:
Malware distribution  (67% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP
100.00%

Dr.Web
Trojan.DownLoader13.6370
50.00%

The domain cdn.lpe88.com has been seen to resolve to the following 3 IP addresses.

174.35.73.91
May 25, 2016

174.35.73.139
May 25, 2016

64.185.181.238
pc-b.bitgravity.com
February 8, 2016

File downloads found at URLs served by cdn.lpe88.com.

0 / 68
http://cdn.lpe88.com/setup.exe  (963493ee6214151ae92de0bd683dd69b)

1 / 68      (Malware)
http://cdn.lpe88.com/setup.exe  (2d6e0ed6ccc0452191b54b646b761eb8)

2 / 68      (Malware)
http://cdn.lpe88.com/setup.exe  (d6317895a68488ed1fdc4c1208de2497)

2 / 68      (Malware)
http://cdn.lpe88.com/.../setup.exe  (d6317895a68488ed1fdc4c1208de2497)

The following 99 files have been seen to comunicate with cdn.lpe88.com in live environments.

TCP » 64.185.181.238:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 64.185.181.238:80
winguard_x64.exe

TCP » 64.185.181.238:80
operasetup.exe (Opera Installer by Opera Software)

TCP » 64.185.181.238:80
operasetup.exe (Opera Installer by Opera Software)

TCP » 64.185.181.238:80
operasetup.exe (Opera Installer by Opera Software)

TCP » 64.185.181.238:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 64.185.181.238:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 64.185.181.238:443
citrio.exe (Citrio by CatalinaGroup)

TCP » 64.185.181.238:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 64.185.181.238:80
rmup.exe

TCP » 174.35.73.139:80
1468567241.exe

TCP » 64.185.181.238:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 64.185.181.238:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 174.35.73.139:80
smelled.exe (Smelled)

TCP » 64.185.181.238:443
SoftMaster.exe

TCP » 64.185.181.238:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 64.185.181.238:443
PCMaster.exe

TCP » 174.35.73.91:80
new_chrome.exe (1stBrowser by The 1stBrowser Authors)

TCP » 64.185.181.238:80
PCMaster.exe

TCP » 64.185.181.238:80
whatsapptime.exe

 
Latest 20 of 134 files

URL:
http://cdn.lpe88.com/

Web server:
v/2.8.1/2.8.1/v4iad1-www

appscion.com

beeapi.net

cambridgesoft.com

cdnga.net

clara-labs.com

dragonnest.eu

dragonspropheteurope.com

fxsolutions.com

gpotato.eu

image-gmkt.com

iminent.com

joymax.com

kmplayer.com

maxrevinstaller.com

moborobo.com

netgear.com

paretologic.com

qq.com

sienappnetwork.com

wondershare.it

dlsite.com

evolis.com

fxpro.co.uk

fxpro.com

lmcdn.fr

wondershare.es

zend.com

bitgravity.com

crw128.com

e1club.com

30 of 47 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.