home

cdn.install.oibundles2.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain cdn.install.oibundles2.com is registered by proxy through GODADDY.COM, LLC and was originally registered in March of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Jose, California within the United States which resides on the CDNetworks Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
California, United States (US)

Create date:
Thursday, March 29, 2012

Expires date:
Wednesday, March 29, 2017

Updated date:
Monday, February 8, 2016

ASN:
AS36408 CDNETWORKSUS-02 CDNetworks Inc.

Root domain:
oibundles2.com

Whois:
4 oibundles2.com records

Scanner detections:
Detections  (60% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.betwikx.EE, PUP.BrowserSetter.N, PUP.ShetefSolutionsConsulting1998.O, PUP.ShetefSolutionsConsulting1998.M, PUP.ShetefSolutionsConsulting1998.N, PUP.Installer.BrandAffinityTechnologies.M, PUP.DealPly.C, PUP.custominstaller.Conduit.L, PUP.Optional.FreeCause.Z
68.42%

Trend Micro House Call
TROJ_GE.73AB5BC3, TROJ_GEN.RCBH1BP, TROJ_GEN.FCBCBLA, TROJ_SPNR.0BHN12, TROJ_GEN.RCBH1BJ, TROJ_FAKEALERT.BMH, TROJ_GEN.RCBH1KQ, ADW_IBRYTE
55.26%

Dr.Web
Adware.Shopper.297, Trojan.AVKill.23908, Trojan.MulDrop5.267, Trojan.AVKill.19520, Adware.Funmoods.1, Trojan.PWS.Siggen.36406, Adware.FreeCause.3
52.63%

ESET NOD32
Win32/Adware.Moonshle (variant), Win32/Amonetize, Win32/Agent.TXC, Win32/Toolbar.Funmoods (variant), Win32/Toolbar.CrossRider
47.37%

VIPRE Antivirus
Pinball Corporation, Trojan.Win32.Generic, Trojan.Win32.Generic!SB.0, Adware.Adpeak, GamePlayLabs, Sweetpacks/SweetIM, Babylon
36.84%

McAfee
Artemis!A066B331A620, Artemis!9DB0C28D55C1, Artemis!D58ECE42554D, Artemis!21AD8A07C37C, Artemis!7703B52FBBC2, Artemis!6D982AFCD658, Artemis!39E497A1D4D0, Artemis!11A6A5E4EF24, Artemis!4E3529F98374
31.58%

Boost by Reason
Adware.betwikx.EE, Adware.AdPeak.J, Optional.ExcellentApps.T, Optional.SweetIM.S, Adware.Installer.Babylon.K, PUP.FreeCause.Z, Trojan.Adw.PriceGong.S, Optional.DealPly.K, Adware.W3i.AA
28.95%

Malwarebytes
PUP.Optional.PricePeep.A, Trojan.Startpage, Adware.BrowserCompanion, PUP.215Apps, PUP.Optional.SweetIM, PUP.Optional.Babylon.A
26.32%

Comodo Security
UnclassifiedMalware, Heur.Suspicious, ApplicUnwnt
21.05%

MicroWorld eScan
Adware.PricePeep.A, Trojan.Generic.8374794, Dropped:Trojan.Generic.7847666, Trojan.Crypt, Trojan-Dropper.Agent, Win32/Adware.JIQDSWX
18.42%

avast!
Win32:Malware-gen, NSIS:Dropper-GM [Drp], Win32:Downloader-SZW [PUP], Win32:DealPly-A [PUP]
18.42%

Emsisoft Anti-Malware
Adware.PricePeep, Dropped:Trojan.Generic.7847666, Riskware.Win32.Toolbar.Babylon.AMN, Adware.Win32.PriceGong.AMN, Adware.Win32.FCVRETQ.AMN
15.79%

Avira AntiVirus
TR/Rogue.8374794, TR/Agent.578688.1, TR/Trash.Gen, TR/Agent.1513252, ADWARE/Yontoo.Gen2, ADWARE/Adware.Gen
15.79%

IKARUS anti.virus
Trojan.SuspectCRC, Trojan.Win32.Webprefix, Trojan-Ransom.Win32.Foreign, Trojan-Dropper.Agent, AdWare.Yontoo
15.79%

Panda Antivirus
Trj/CI.A, Generic Malware, Trj/Dtcontx.B, Suspicious file, Adware/Conduit
15.79%

The domain cdn.install.oibundles2.com has been seen to resolve to the following 6 IP addresses.

174.35.22.151
November 16, 2013

174.35.22.135
November 16, 2013

174.35.22.55
November 16, 2013

174.35.22.49
November 16, 2013

174.35.10.11
November 16, 2013

174.35.10.203
November 16, 2013

File downloads found at URLs served by cdn.install.oibundles2.com.

1 / 68      (PUP)
http://cdn.install.oibundles2.com/bundles/.../Toolbar_production_100815.exe  (927a4240012a20f1081997610f03a2f9)

10 / 68    (Adware)
http://cdn.install.oibundles2.com/bundles/.../dp.exe  (c341fe87d7714655245b7bd8e13edb45)

9 / 68      (PUP)
http://cdn.install.oibundles2.com/bundles/.../check_offer_rp.dll  (0c29b7c7546f87dd7e20e119b0c4063b)

6 / 68      (PUP)
http://cdn.install.oibundles2.com/bundles/.../embededstub.exe  (1ebef54645f3fb38e17cf3de583be1de)

0 / 68
http://cdn.install.oibundles2.com/bundles/.../AbiWord.exe  (5d04d875f415062f8babd49656ff7d3a)

6 / 68      (PUP)
http://cdn.install.oibundles2.com/Installer.BrowseForChange.exe  (7b9ae5e77a5c2918af431ed78aadf3f0)

2 / 68      (Adware)
http://cdn.install.oibundles2.com/bundles/.../fliptoast.app.13430.fliptoast.exe  (3722ee26d4998f262c0158a2055cc6fb)

8 / 68      (Adware)
http://cdn.install.oibundles2.com/bundles/.../ezLooker-S-Setup_Suite1.exe  (ec133e6855e312c4bc851fa8e57d19a4)

0 / 68
http://cdn.install.oibundles2.com/bundles/.../silent_FileZilla_15-02-2012-setup.exe  (ad77f58781f0e08e24da863e1f91c34a)

5 / 68      (Adware)
http://cdn.install.oibundles2.com/bundles/.../dealply1US.exe  (9e162c9b1d0a67c8dbf6384fcec7a51d)

0 / 68
http://cdn.install.oibundles2.com/bundles/.../setup-pscombined-adk-1.0-x86x64.exe  (fc5d803b408325fb08dc13972dc58ac6)

5 / 68      (PUP)
http://cdn.install.oibundles2.com/bundles/.../Installer.BrowseForChange.exe  (b5411fad38e739de80205f64084b1e90)

4 / 68      (PUP)
http://cdn.install.oibundles2.com/bundles/.../7zip_setup.exe  (4e3529f98374c06f4b6169c279f3f445)

7 / 68      (Adware)
http://cdn.install.oibundles2.com/bundles/.../PriceGong_20120322.exe  (040277ce97d36d5335742b9157179c95)

1 / 68      (PUP)
http://cdn.install.oibundles2.com/bundles/.../Fantapper.exe  (Fantapper.sfx.exe)

0 / 68
http://cdn.install.oibundles2.com/bundles/.../freedownloadmanager-lite.exe  (f4f4175fb66a46b567cc206246ddcea2)

8 / 68      (Adware)
http://cdn.install.oibundles2.com/bundles/.../PageRage-Silent-b2.exe  (3ef790983b89d8b4b2499b0a4da8026e)

7 / 68      (Adware)
http://cdn.install.oibundles2.com/bundles/.../jetmp3.exe  (6400ee4c3e0e033cd9fed31805828a44)

18 / 68    (Adware)
http://cdn.install.oibundles2.com/bundles/.../IminentSetup_fr.exe  (74691f0c0575d8eff6cada8884b0260e)

5 / 68      (PUP)
http://cdn.install.oibundles2.com/bundles/.../WeatherBugSetup.exe  (11a6a5e4ef247bd96835905a61c85d56)

9 / 68      (Adware)
http://cdn.install.oibundles2.com/bundles/.../FantapperSetup.exe  (f21b2d0a8b72f02c9f130aec99fceaae)

0 / 68
http://cdn.install.oibundles2.com/bundles/.../aol_toolbar.exe  (aa57f27fb0585fd5882f83eff0fd0445)

2 / 68      (PUP)
http://cdn.install.oibundles2.com/bundles/.../Toolbar_production_100884.exe  (37f349b69b4ef72e67e7cb0d0af5c3f1)

13 / 68    (PUP)
http://cdn.install.oibundles2.com/bundles/.../alot_appbar_installer_bundle_US.exe  (39e497a1d4d0f313ff1a500c5c127d47)

19 / 68    (Adware)
http://cdn.install.oibundles2.com/bundles/.../MybabylonTB.exe  (Setup_Stub.exe)

7 / 68      (Adware)
http://cdn.install.oibundles2.com/bundles/.../BundleSweetIMSetup.exe  (bb804b756c631706b31b601b573c5a4c)

13 / 68    (Adware)
http://cdn.install.oibundles2.com/bundles/.../ShoppingSidekick_ca.exe  (6d982afcd65896d619695f81b65c5227)

8 / 68      (Adware)
http://cdn.install.oibundles2.com/bundles/.../dealcabby.exe  (4aeccca252923751ed23b4a74a6a05bd)

3 / 68      (inconclusive)
http://cdn.install.oibundles2.com/bundles/.../Facebook-Dislike-Setup.exe  (suf_launch.exe)

0 / 68
http://cdn.install.oibundles2.com/bundles/.../SuperspeedupPC.exe  (Super speed up PC performance.exe)

 
Latest 30 of 57 download URLs

goateastcach.us

moborobo.com

paretologic.com

esnips.com

mobogenie.com

tistory.com

gpotato.eu

anti-toolbar.com

guttastatdk.us

kkbox.com

reimage.com

ncsoft.com

qq.com

speedypc.com

jimdo.com

oibundles.com

shyapotato.us

threerings.net

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.