home

dbc.flvvideodownload.com

Bundlore LTD

Domain Information

The domain dbc.flvvideodownload.com registered by Bundlore LTD was initially registered in August of 2012 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Massachusetts, United States (US)

Create date:
Monday, August 20, 2012

Expires date:
Wednesday, August 20, 2014

Updated date:
Wednesday, August 21, 2013

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:
flvvideodownload.com

Whois:
1 flvvideodownload.com record

Scanner detections:
Detections  (86% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallX.Bundle, PUP.Bundlore.Q, PUP.Adknowledge.FileMonarch.Bundler (M), PUP.installCore.IronInstall.Installer (M)
100.00%

Trend Micro House Call
TROJ_GEN.F47V0824, TROJ_SPNR.28JP12, ADW_BUNDTRACK, TROJ_CLIKUG.A
66.67%

Quick Heal
Adware.Babylon (Not a Virus), TrojanDownloader.Badur.A5
66.67%

Avira AntiVirus
Adware/Bundlore.C, Adware/iBryte.bxng
66.67%

Bkav FE
W32.Clod2ce.Trojan, W32.HfsAdware
66.67%

K7 AntiVirus
Riskware , Unwanted-Program
66.67%

AVG
MultiBundle.H, Adware AdPlugin
66.67%

Norman
Bundlore.CERT, Gen:Variant.Application.Bundler.25, Gen:Variant.Application.Bundler.AdGazelle.2
66.67%

McAfee
GenericTRA-BJ!6E6FA0C56CD7, Trojan.Artemis!154D67201E86
66.67%

Comodo Security
TrojWare.Win32.Agent.iwb, Application.Win32.AgentCV.HWYE
66.67%

Rising Antivirus
PE:Trojan.Win32.Generic.1336005F!322306143, PE:Malware.iBryte!6.192B
66.67%

Malwarebytes
PUP.BundleInstaller.VG, PUP.Optional.OptimunInstaller
50.00%

Dr.Web
Adware.Downware.453, Adware.Downware.459, Trojan.DownLoader11.30617
50.00%

VIPRE Antivirus
Bundlore, Threat.4778314
50.00%

Trend Micro
TROJ_SPNR.28JP12, TROJ_GEN.R0CBC0EHM13, TROJ_CLIKUG.A
50.00%

The domain dbc.flvvideodownload.com has been seen to resolve to the following 4 IP addresses.

63.88.100.154
May 30, 2014

63.88.100.138
May 30, 2014

23.67.250.145
a23-67-250-145.deploy.static.akamaitechnologies.com
April 11, 2014

23.67.250.136
a23-67-250-136.deploy.static.akamaitechnologies.com
April 11, 2014

File downloads found at URLs served by dbc.flvvideodownload.com.

4 / 68      (PUP)
http://dbc.flvvideodownload.com/download/bin/.../setup.exe  (14b355195fe213b0095bf65df5ad90f0)

33 / 68    (Adware)
http://dbc.flvvideodownload.com/download/bin/.../video_downloader.exe  (be74e42570dd60a90d7f4fc13729454f)

0 / 68
http://dbc.flvvideodownload.com/download/bin/.../setup.exe  (ace42273ef3deaee1b63240569541eeb)

2 / 68      (PUP)
http://dbc.flvvideodownload.com/download/bin/.../setup.exe  (0472bd275d65b95c2efa92da7573ec21)

1 / 68      (Adware)
http://dbc.flvvideodownload.com/download/bin/.../setup.exe  (427b4ba7a96ee8196dc545922c91a152)

40 / 68    (Adware)
http://dbc.flvvideodownload.com/download/bin/.../setup.exe  (26cc2e0dc0baee3cf48b531c700b412f)

33 / 68    (Adware)
http://dbc.flvvideodownload.com/download/bin/.../setup.exe  (video_downloader.exe)

24 / 68    (Adware)
http://dbc.flvvideodownload.com/download/bin/.../video_downloader.exe  (be7c9b775e78f549dfb7a38e669f7a9c)

The following 371 files have been seen to comunicate with dbc.flvvideodownload.com in live environments.

TCP » 23.67.250.136:80
horizon-setup.exe

TCP » 23.67.250.136:80
setup.exe

TCP » 23.67.250.136:80
s6015.exe (III|I|XL by Installer Setup)

TCP » 23.67.250.136:80
hosts-codedownloader.exe (hosts by Irismedia)

TCP » 23.67.250.136:80
infonaut-setup-1.10.0.14.exe (Infonaut)

TCP » 23.67.250.136:80
wordsurfer-setup-1.10.0.19.exe (Word Surfer)

TCP » 23.67.250.136:80
slimcleanerplus.exe (SlimCleaner Plus by SlimWare Utilities)

TCP » 23.67.250.136:80
wordwizard-setup-1.10.0.24.exe (WordWizard)

TCP » 23.67.250.136:80
fmakebabnmabkgfbakajppdligcffbcc.crx

TCP » 23.67.250.136:80
ed9256a4.exe (SS)

TCP » 23.67.250.136:80
lghjagpdfaninlmjngfocnhaclannhfi.crx

TCP » 23.67.250.136:80
mkbhmdcccmdakmgaaejjjgllahmljpge.crx

TCP » 23.67.250.136:80
jdahknjgijmfjdiimmlahhnpcjjdmjik.crx

TCP » 23.67.250.136:80
nfbociaiijfcbohjcgfednlcmdgdafph.crx

TCP » 23.67.250.136:80
jpemnimkpdbciklpcpgfhcdeoblmdfpk.crx

TCP » 23.67.250.136:80
fdielecjhbahkadbfegjikkhfhkdgbem.crx

TCP » 23.67.250.136:80
obbbnginlkhognibkekkopkfhjcelkio.crx

TCP » 23.67.250.136:80
fcfenhgcgkodlgnjohkljmglclkjpoeb.crx

TCP » 63.88.100.138:80
iopnafmbkglllbbfegfgccgfnmgbghli.crx

TCP » 63.88.100.138:80
pnpbdjpnfoddiffejmciilgkphacgoeb.crx

 
Latest 20 of 371 files

URL:
http://dbc.flvvideodownload.com/

Web server:
Apache/2.2.3 (CentOS)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.