The domain download.cdn.installspeed.com registered by NameFind LLC was initially registered in June of 2014 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dallas, Texas within the United States which resides on the Akamai Technologies, Inc. network.
Registrar:
GODADDY.COM, LLC
Server location:
Texas, United States (US)
Create date:
Tuesday, June 10, 2014
Expires date:
Friday, June 10, 2016
Updated date:
Thursday, April 7, 2016
Google Safe Browsing:
unwanted
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Optional.Installer.V, PUP.Optional.Installer.W, (M), PUP.Bandoo.Installer, PUP.Bandoo.BandooMedia.Installer (M), Win32.Generic, PUP.Bandoo.BandooMe.Installer (M), PUP.Bandoo (M)
100.00%
Malwarebytes
PUP.Optional.Bandoo
30.56%
VIPRE Antivirus
iLivid, Threat.5059975, Threat.4150696
30.56%
Baidu Antivirus
Adware.Win32.iLivid
30.56%
Dr.Web
Adware.Bandoo.13, Adware.Bandoo.19, Adware.Bandoo.194
27.78%
IKARUS anti.virus
PUA.Bandoo, PUA.SearchSuite, PUA.iLivid, PUA.Soffer
27.78%
AVG
Generic, Adware Generic_r.VQ
27.78%
McAfee
Artemis!9556A78BB7AC, Artemis!C242B5A5B592, Artemis!B6A829DFA975, Artemis!875998794E2E, Artemis!430BA1894F53, Artemis!7EFD1599C665
25.00%
Kaspersky
not-a-virus:WebToolbar.Win64.SearchSuite, not-a-virus:WebToolbar.Win32.SearchSuite
25.00%
Trend Micro House Call
Suspicious_GEN.F47V0617, Suspicious_GEN.F47V0717, Suspicious_GEN.F47V0723, Suspicious_GEN.F47V0731, Suspicious_GEN.F47V0221
22.22%
ESET NOD32
Win32/iLivid (variant)
16.67%
Fortinet FortiGate
Riskware/Win64_SearchSuite, Riskware/SearchSuite, Riskware/ILivid
16.67%
avast!
Win32:Malware-gen, Win32:Rootkit-gen [Rtk], Toolbar-U [PUP], GenMaliciousA-DXW [PUP]
16.67%
Avira AntiVirus
APPL/Downloader.Gen, PUA/iLivid.Gen, PUA/SeaSuite.inze
16.67%
Panda Antivirus
Trj/Chgt.C, PUP/iLivid, Generic Suspicious
13.89%
The domain download.cdn.installspeed.com has been seen to resolve to the following 26 IP addresses.
a23-74-8-200.deploy.static.akamaitechnologies.com
June 18, 2015
a23-74-8-210.deploy.static.akamaitechnologies.com
June 18, 2015
a96-6-113-19.deploy.akamaitechnologies.com
May 4, 2015
a96-6-113-32.deploy.akamaitechnologies.com
May 4, 2015
a23-0-160-222.deploy.static.akamaitechnologies.com
May 4, 2015
a23-0-160-200.deploy.static.akamaitechnologies.com
May 4, 2015
a23-62-7-154.deploy.static.akamaitechnologies.com
December 1, 2014
a23-62-7-169.deploy.static.akamaitechnologies.com
December 1, 2014
a184-29-106-138.deploy.static.akamaitechnologies.com
November 29, 2014
a184-29-106-112.deploy.static.akamaitechnologies.com
November 29, 2014
a23-0-160-73.deploy.static.akamaitechnologies.com
September 7, 2014
a23-0-160-67.deploy.static.akamaitechnologies.com
September 7, 2014
a23-0-160-35.deploy.static.akamaitechnologies.com
September 7, 2014
a23-62-6-80.deploy.static.akamaitechnologies.com
September 6, 2014
a23-62-6-64.deploy.static.akamaitechnologies.com
September 6, 2014
a23-62-6-98.deploy.static.akamaitechnologies.com
September 5, 2014
a23-62-6-123.deploy.static.akamaitechnologies.com
September 5, 2014
a23-62-6-152.deploy.static.akamaitechnologies.com
September 5, 2014
a23-62-6-57.deploy.static.akamaitechnologies.com
September 2, 2014
a23-62-6-90.deploy.static.akamaitechnologies.com
September 2, 2014
a23-62-6-88.deploy.static.akamaitechnologies.com
September 2, 2014
a23-62-6-83.deploy.static.akamaitechnologies.com
September 2, 2014
a23-62-6-75.deploy.static.akamaitechnologies.com
September 2, 2014
a23-62-6-74.deploy.static.akamaitechnologies.com
September 2, 2014
File downloads found at URLs served by download.cdn.installspeed.com.
The following 497 files have been seen to comunicate with download.cdn.installspeed.com in live environments.
URL:
http://download.cdn.installspeed.com/