» download36.cdn.ilivid.com
Overview
Analysis
IPs Addresses (1)
Downloads (3)
Network (9)
Related Domains (8)

download36.cdn.ilivid.com

Domain Information

Server location:

Tel Aviv, Israel (IL)

ASN:

AS6461 MFNX MFN - Metromedia Fiber Network

Root domain:

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.Installer.BandooMedia, PUP.Bandoo.BandooMe.Installer (M), PUP.Bandoo (M)

100.00%

Malwarebytes

PUP.Optional.Bandoo

33.33%

F-Prot

W32/S-d6eb7b12

33.33%

Trend Micro House Call

Suspicious_GEN.F47V0117

33.33%

Clam AntiVirus

Win.Adware.Searchsuite-3

33.33%

Agnitum Outpost

PUA.Toolbar.SearchSuite

33.33%

Comodo Security

Application.Win32.SeaSuite.AKA

33.33%

Dr.Web

Adware.Bandoo.179

33.33%

VIPRE Antivirus

Threat.4150696

33.33%

Avira AntiVirus

Adware/SeaSuite.inze

33.33%

AhnLab V3 Security

PUP/Win32.Downloader

33.33%

McAfee

Artemis!C74CCA8E15ED

33.33%

ESET NOD32

Win32/iLivid.A potentially unwanted application

33.33%

Fortinet FortiGate

Riskware/ILivid

33.33%

AVG

Adware Generic_r

33.33%

The domain download36.cdn.ilivid.com has been seen to resolve to the following IP address.

94.31.0.27.IPYX-076665-ZYO.above.net

April 5, 2015

File downloads found at URLs served by download36.cdn.ilivid.com.

1 / 68 (PUP)

http://download36.cdn.ilivid.com/cdn/r/.../iLividSetup-r1734-n-bc.exe (217d4bfacdd0d5aff07be748c6437d3c)

1 / 68 (PUP)

http://download36.cdn.ilivid.com/cdn/r/.../iLividSetup-r25-n-bc.exe (4084429ad5bbf66cb3a7ddfe5d7553d3)

24 / 68 (PUP)

http://download36.cdn.ilivid.com/cdn/r/.../iLividSetup-r1734-n-bc.exe (957584ce6514c787445288d73b9b1252)

The following 9 files have been seen to comunicate with download36.cdn.ilivid.com in live environments.

TCP » 94.31.0.27:80

iLivid.exe (iLivid Download Manager by Bandoo Media)

TCP » 94.31.0.27:80

iLivid.exe (iLivid Download Manager by Bandoo Media Inc)

TCP » 94.31.0.27:80

iLivid.exe (iLivid Download Manager by Bandoo Media)

TCP » 94.31.0.27:80

iLivid.exe (iLivid Download Manager by Bandoo Media)

TCP » 94.31.0.27:80

TCP » 94.31.0.27:80

iLivid.exe (iLivid Download Manager by Bandoo Media)

TCP » 94.31.0.27:80

GoogleUpdate.exe (Google Update Services by Google lnc)

TCP » 94.31.0.27:80

iLivid.exe (iLivid Download Manager by Bandoo Media)

TCP » 94.31.0.27:80

ilivid.exe (iLivid by Bandoo Media)

Related Domains

downlaodvideo.net

downloadquick.net

downloadsetup.net

expresdownload.com

expressdownload.net

free-video-downloader.net

installspeed.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.