ed9e146562554cc3a39e63457830ee2d.branch-h-drive.com

Client Connect Ltd.

Domain Information

The domain ed9e146562554cc3a39e63457830ee2d.branch-h-drive.com registered by Client Connect Ltd. was initially registered in May of 2013 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Mateo, California within the United States which resides on the Conduit USA, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
California, United States (US)

Create date:
Sunday, May 5, 2013

Expires date:
Sunday, January 1, 2017

Updated date:
Tuesday, January 6, 2015

ASN:
AS56473 CONDUIT-NL Conduit Connect B.V.

Root domain:

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.ClientConnect.P, PUP.Conduit.ClientConnect.Installer (M), PUP.Conduit.ClientCo.Installer (M)
100.00%

Malwarebytes
PUP.Optional.ClientConnect
28.57%

VIPRE Antivirus
Conduit
28.57%

K7 AntiVirus
Unwanted-Program
28.57%

NANO AntiVirus
Riskware.Win32.Conduit.dbqqxi
28.57%

Total Defense
Win32/Tnega.ALHeNWC
28.57%

avast!
Win32:Adware-BRM [PUP]
28.57%

Kaspersky
not-a-virus:WebToolbar.Win32.Agent
28.57%

Agnitum Outpost
PUA.Toolbar.Conduit
28.57%

Dr.Web
Trojan.PWS.Stealer.13174
28.57%

Zillya! Antivirus
Adware.Agent.Win32.9634
28.57%

G Data
Win32.Application.Conduit
28.57%

ESET NOD32
Win32/ClientConnect (variant)
28.57%

Fortinet FortiGate
Riskware/Agent, Riskware/Toolbar_Conduit
28.57%

AVG
Generic
28.57%

The domain ed9e146562554cc3a39e63457830ee2d.branch-h-drive.com has been seen to resolve to the following IP address.

November 10, 2014

File downloads found at URLs served by ed9e146562554cc3a39e63457830ee2d.branch-h-drive.com.

URL:
http://ed9e146562554cc3a39e63457830ee2d.branch-h-drive.com/

Web server:
Microsoft-IIS/7.5 (ASP.NET)