home

download7.cdn.ilividnewtab.com

Domain Information

Server location:
Massachusetts, United States (US)

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:
ilividnewtab.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

avast!
Win32:Rootkit-gen [Rtk]
100.00%

Dr.Web
Adware.Bandoo.19
100.00%

Reason Heuristics
PUP.Optional.Installer.Y
100.00%

The domain download7.cdn.ilividnewtab.com has been seen to resolve to the following 2 IP addresses.

23.0.160.221
a23-0-160-221.deploy.static.akamaitechnologies.com
December 15, 2014

23.0.160.215
a23-0-160-215.deploy.static.akamaitechnologies.com
December 15, 2014

File downloads found at URLs served by download7.cdn.ilividnewtab.com.

3 / 68      (PUP)
http://download7.cdn.ilividnewtab.com/cdn/r/.../iLividAppSetup-r108-n-bc.exe  (ilividappsetup-r148-n-bc.exe)

The following 31 files have been seen to comunicate with download7.cdn.ilividnewtab.com in live environments.

TCP » 23.0.160.215:80
iTunes.exe (iTunes by Apple)

TCP » 23.0.160.215:80
efafpkfkimegociipjfecfpgagcppkjf.crx

TCP » 23.0.160.215:80
abjmmongnldnffjiiciiploahbeihoah.crx

TCP » 23.0.160.215:80
ojndgdfgamogmimbmhjjhkkbhbdpciim.crx

TCP » 23.0.160.215:80
nkcgcgdbdfmibjaodhihikinfpmmogfe.crx

TCP » 23.0.160.215:80
mocjmgdfpdokiapmabmkmedkeebfaojm.crx

TCP » 23.0.160.215:80
jepfebhiclafajkaljahgjgidpkbhflk.crx

TCP » 23.0.160.215:80
lejkbnlkamppphahjgfpmpaofjefkbfo.crx

TCP » 23.0.160.215:80
macpejfjpneigchdbhbigjepfombefga.crx

TCP » 23.0.160.215:80
gdncmogcfbkcgjdnlacgomaoeapalakb.crx

TCP » 23.0.160.215:80
ddmpeligffopofdbfldgnpaamhmapdif.crx

TCP » 23.0.160.215:80
bohddlnjobpeoikcdmkpnggfgjpbkiem.crx

TCP » 23.0.160.215:80
npgfkibkmennbfadphcpjejdpfaeaenh.crx

TCP » 23.0.160.215:80
ogiglaepmheikjmddcafhmjklepppnaa.crx

TCP » 23.0.160.215:80
hambiomgokbbaninkkcbfcgcfnjhoknd.crx

TCP » 23.0.160.215:80
gdidnibgconffodacokgochfmjkommmf.crx

TCP » 23.0.160.215:80
cnplcfcahccbobajbpjjniedjgpedkkn.crx

TCP » 23.0.160.221:80
Client.exe

TCP » 23.0.160.221:80
hlfogijfbmegbofmdbogbhpdljliijjj.crx

TCP » 23.0.160.221:80
lfjdbboifidomlkoecjbidokhhnjjbji.crx

 
Latest 20 of 31 files

99.com

altera.com

apple.com

blizzard.com

chip.eu

compressionfast.com

computerbild.de

downloadsetup.net

egginstall.com

enmasse-game.com

historicalfaster.com

ideainstall.com

imesh.com

intel.com

marvelheroes.com

microsoft.com

nvidia.com

oracle.com

plexrepo.com

quakelive.com

ripeready.com

roseinstall.com

symantec.com

tasteready.com

torchbrowser.com

watchguard.com

weather.com

windowsupdate.com

completeready.com

digitalrivercontent.net

30 of 39 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.