home

download.cdn.bandoo.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain download.cdn.bandoo.com is registered by proxy through GODADDY.COM, LLC and was originally registered in April of 2000. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Massachusetts, United States (US)

Create date:
Tuesday, April 18, 2000

Expires date:
Tuesday, April 18, 2017

Updated date:
Wednesday, March 9, 2016

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:
bandoo.com

Whois:
4 bandoo.com records

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.DiscordiaLimited.I, PUP.Optional.Installer.I, PUP.Optional.Installer.L, PUP.Optional.Installer.Bandoo, Threat.Installer.Bandoo, PUP.Discordia.Installer (M), Win32.Generic
100.00%

Dr.Web
Adware.Bandoo.1, Trojan.PWS.Siggen.29193, Adware.Bandoo.8, Adware.Bandoo.15, Adware.Bandoo.251, Adware.Bandoo.280, Adware.Bandoo.15
32.65%

Trend Micro House Call
TROJ_NSOFTONLY_000000a.TOMA, HV_ZYX_CH160114.UVPA, TROJ_GEN.RCBOHHT, TROJ_GEN.F47V0801, TROJ_GEN.USA21HO, HV_ZYX_BK0846DB.TOMC, HV_ZYX_BK0842D0.TOMC
30.61%

ESET NOD32
Win32/Toolbar.SearchSuite, Win32/Adware.Bandoo.AC (variant), Win32/Toolbar.SearchSuite potentially unwanted
28.57%

VIPRE Antivirus
Trojan.Win32.Generic
18.37%

Baidu Antivirus
Trojan.Win32.Adware, PUA.Win32.Toolbar.SearchSuite
18.37%

McAfee
Artemis!D3DCA112CF08, Artemis!A9FDAB1DA5C7, Trojan.Artemis!9D16BE36B35D
16.33%

AVG
Bandoo
16.33%

Bkav FE
W32.HfsAdware
16.33%

herdProtect (fuzzy)
a variant of ad6c8057c29fcb66c1c55e75243c7c0e0e7cfae5, a variant of 4e32aac8bf63d6e7540177cd3dea6a2c41561e8b, a variant of 5504b93825dff217766cb83854260a40b66defbd
12.24%

Fortinet FortiGate
Riskware/Bandoo, W32/Toolbar.SEARCHSUITE
12.24%

Norman
Bandoo.H
10.20%

avast!
Adware-gen [Adw], Win32:Adware-gen [Adw]
8.16%

MicroWorld eScan
Win32/Toolbar.SearchSuite
6.12%

Emsisoft Anti-Malware
Riskware.Win32.Toolbar.SearchSuite.AMN
6.12%

The domain download.cdn.bandoo.com has been seen to resolve to the following 6 IP addresses.

209.48.37.115
July 31, 2014

209.48.37.179
July 31, 2014

23.67.250.147
a23-67-250-147.deploy.static.akamaitechnologies.com
April 16, 2014

23.67.250.88
a23-67-250-88.deploy.static.akamaitechnologies.com
April 16, 2014

23.67.243.75
a23-67-243-75.deploy.static.akamaitechnologies.com
March 3, 2014

23.67.243.67
a23-67-243-67.deploy.static.akamaitechnologies.com
March 3, 2014

File downloads found at URLs served by download.cdn.bandoo.com.

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV7.exe  (9453a466d15f51a0a7a83ca92707abc1)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/6/r/.../BandooV6.exe  (6c75660432debc101161a587483fabe2)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV6.exe  (3a2bd257a426135abcd5c4fdad857434)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV6.exe  (ceb901e28e30f3dc3351e9b463e49a66)

4 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/2/r/.../BandooV8.exe  (789c4264c0318129378a1cee4a090ee8)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV7.exe  (0a5138f176a1c45cb49e3e0b8b943ecf)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV8.exe  (12bffce453fe777b21ee55eff48e590d)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/6/r/.../BandooV7.exe  (dce2e291fe216f5102b2797de64e42d7)

6 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/2/r/.../BandooV7.exe  (a3a9243701a7ef96f0ea043ca9d836b4)

8 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV6.exe  (43a5affa002c8d4a00898b541c75f1b6)

6 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV7.exe  (19ea7a2fb294875d28f1d522f03b8081)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/3/r/.../BandooV6.exe  (b3fce41e46639e1cc6bcb87e88b108e7)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV8.exe  (2eef31a6275b63dd257dafa534b688db)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV7.exe  (da319379a41a5b100e612e1436e2f79b)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV8.exe  (81d449fd7ddd43121eba1ebc75107b65)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV7.exe  (22916ee898831ab6aec06e87d79c88b1)

10 / 68    (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV6.exe  (479c9301bbbbc75e738fa8b923d86276)

4 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV7.exe  (4bdd9f83ce092753c00f8991e98fa6e0)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/2/r/.../BandooV8.exe  (f_00002b)

12 / 68    (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV8.exe  (969a2a5c8bd3f131a7ff235c8490396d)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/3/r/.../BandooV7.exe  (90d0820c9eeb5437e362f79f94212256)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/2/r/.../BandooV6.exe  (6def734b9f9cb23c5287944582c49759)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV7.exe  (dfa54428cb0cd65ab1e796896aa496a4)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/5/r/.../BandooV8.exe  (22946d647f219aa951909cc947837d21)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/6/r/.../BandooV6.exe  (3be658e78be7fc0578b01abe682a7141)

2 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/6/r/.../BandooV6.exe  (cdf91614de773bcfa41dec4d500f3362)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/.../r/.../BandooV6.exe  (c3c7750c4d94dd8967c3859f58809daa)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/2/r/.../BandooV6.exe  (cab5c88856595544888fa940f6c77bb1)

1 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/6/r/.../BandooV6.exe  (dbc78b71f43b9e1b6a137df4a265829f)

7 / 68      (PUP)
http://download.cdn.bandoo.com/cdn/o/1/r/.../BandooV7.exe  (58b48581bd765eb4aa2af7321ba7925f)

 
Latest 30 of 65 download URLs

The following 55 files have been seen to comunicate with download.cdn.bandoo.com in live environments.

TCP » 23.67.250.88:80
comcastantispyservice.exe

TCP » 23.67.243.67:80
okbdcdmpkkncigegdkhhhamjblgjbfja.crx

TCP » 23.67.243.67:80
goipcfdihomaoojgckmhigcogbnpncaf.crx

TCP » 23.67.243.67:80
loepaecnehfgonejbbblmobcfmcafbfe.crx

TCP » 23.67.243.67:80
goipcfdihomaoojgckmhigcogbnpncaf.crx

TCP » 23.67.243.67:80
gehopipcndgcjbpghociaffphlijanjh.crx

TCP » 23.67.243.67:80
emhapionkecmcdgbaacacgpnjjenkoin.crx

TCP » 23.67.243.67:80
mmdjofodhfehmplibjbafaebmbmpdghb.crx

TCP » 23.67.243.67:80
gfobfpiehkpkbbgoegognlidaagnhhhk.crx

TCP » 23.67.243.67:80
hhilmhncbjigfhmipgedaindfhhgfngg.crx

TCP » 23.67.243.67:80
jdahkihbbdcgemedmlihpomhidhlpmid.crx

TCP » 23.67.243.67:80
kcjpmhjpnnobibhoacakjobmnfhppdld.crx

TCP » 23.67.243.67:80
okbdcdmpkkncigegdkhhhamjblgjbfja.crx

TCP » 23.67.243.67:80
garrys mod.exe

TCP » 23.67.243.67:80
infonaut-setup-1.10.0.14.exe (Infonaut)

TCP » 23.67.243.67:80
hotspot-shield-3.42.exe

TCP » 23.67.243.67:80
installer_english_-_telugu_dictionary_symbian_english.exe

TCP » 23.67.243.67:80
javaupdate-setup.exe

TCP » 23.67.243.67:80
file.exe (Installation)

TCP » 23.67.243.67:80
ultimatezipcracker-setup.exe

 
Latest 20 of 56 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.