home

cdn1.downloadcomms.com

Domain Information

Server location:
Massachusetts, United States (US)

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:
downloadcomms.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

MicroWorld eScan
Gen:Variant.Razy.12439
100.00%

ESET NOD32
Win32/DownloadAdmin.Q potentially unwanted (variant)
100.00%

Bitdefender
Gen:Variant.Razy.12439
100.00%

AegisLab AV Signature
Variant.Application.Bundler.DownloadAdmin
100.00%

Lavasoft Ad-Aware
Gen:Variant.Razy.12439
100.00%

F-Secure
Gen:Variant.Razy.12439
100.00%

Emsisoft Anti-Malware
Gen:Variant.Razy.12439
100.00%

Arcabit
Trojan.Razy.D3097
100.00%

G Data
Gen:Variant.Razy.12439
100.00%

IKARUS anti.virus
PUA.DownloadAdmin
100.00%

Qihoo 360 Security
HEUR/QVM10.1.Malware.Gen
100.00%

Reason Heuristics
PUP.DownloadAdmin (M)
100.00%

The domain cdn1.downloadcomms.com has been seen to resolve to the following 2 IP addresses.

23.15.8.89
a23-15-8-89.deploy.static.akamaitechnologies.com
July 7, 2016

23.15.8.33
a23-15-8-33.deploy.static.akamaitechnologies.com
July 7, 2016

File downloads found at URLs served by cdn1.downloadcomms.com.

12 / 68    (PUP)
http://cdn1.downloadcomms.com/dl-pure/1192061/.../?bc=1192061&checksum=29668327&filename=PSX BIOS(SCPH1001).zip.exe&cb=1450858216&usefilename=true&executable=1200659  (kodi-setup-54173039.exe)

The following 25 files have been seen to comunicate with cdn1.downloadcomms.com in live environments.

TCP » 23.15.8.89:80
Toolbar.exe (Toolbar Core by APN)

TCP » 23.15.8.33:80
PSANHost.exe (Cloud Antivirus Platform by Panda Security, S.L)

TCP » 23.15.8.33:80
iiipkpmjepgbogmcinbfndljcpelpoil.crx

TCP » 23.15.8.33:80
mkbhmdcccmdakmgaaejjjgllahmljpge.crx

TCP » 23.15.8.33:80
mkbhmdcccmdakmgaaejjjgllahmljpge.crx

TCP » 23.15.8.33:80
cpkkmkolojmcejeefhhnfijmlggbobam.crx

TCP » 23.15.8.33:80
cpkkmkolojmcejeefhhnfijmlggbobam.crx

TCP » 23.15.8.33:80
ljidjdddaoiogpbmniipclcppkoembao.crx

TCP » 23.15.8.33:80
adhpiademcfnoaninfbhahnilgnpoeaa.crx

TCP » 23.15.8.33:80
mkbhmdcccmdakmgaaejjjgllahmljpge.crx

TCP » 23.15.8.33:80
adhpiademcfnoaninfbhahnilgnpoeaa.crx

TCP » 23.15.8.33:80
cpkkmkolojmcejeefhhnfijmlggbobam.crx

TCP » 23.15.8.33:80
cpkkmkolojmcejeefhhnfijmlggbobam.crx

TCP » 23.15.8.89:80
avwebgrd.exe (Avira Product Family by Avira Operations GmbH & Co. KG)

TCP » 23.15.8.89:80
gdjeihkmglmapgifllngcdlaoeemaacf.crx

TCP » 23.15.8.89:80
olkpfcgompgkeceodpodleppkhdjoeom.crx

TCP » 23.15.8.89:80
olkpfcgompgkeceodpodleppkhdjoeom.crx

TCP » 23.15.8.89:80
ajjpgnlpolfpnebjjaciccmmjnmjfjkl.crx

TCP » 23.15.8.89:80
olkpfcgompgkeceodpodleppkhdjoeom.crx

TCP » 23.15.8.89:80
mkbhmdcccmdakmgaaejjjgllahmljpge.crx

 
Latest 20 of 25 files

akamaihd.net

byteno.com

chip.de

cosmicsign.info

download25.info

downloadmanager109.com

downloadmanager117.com

downloadmanager149.com

downloadmaster1.com

downloadnet1039.com

downloadnet1184.com

downloadnet1188.com

downloadnet1194.com

downloadnet224.com

downloadnet246.com

downloadnet253.com

downloadnet261.com

downloadnet276.com

downloadtrunk116.com

downloadtrunk118.com

fastdownload6.com

fastmirror6.net

filefly501.com

genuinememory.info

instagram.com

loaduplink.com

mirror1.info

mirror2.info

mirror6.net

mirror8.net

30 of 46 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.