files5.openoffice.us.com

CentralNic Ltd

Domain Information

The domain files5.openoffice.us.com registered by CentralNic Ltd was initially registered in January of 1993 through Moniker Online Services. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dallas, Texas within the United States which resides on the SoftLayer Technologies Inc. network.
Remove Malware from files5.openoffice.us.com - Powered by Reason Core Security
Registrar:
DEMYS LIMITED

Server location:
Texas, United States (US)

Create date:
Tuesday, January 05, 1993

Expires date:
Saturday, January 04, 2025

Updated date:
Tuesday, December 15, 2015

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.DownloadAdmin.V, PUP.Installer.DownloadAdmin.W, PUP.Installer.Tightrope, PUP.Bundler.Tightrope, PUP.Tightrope.Zoobam.Bundler (M), PUP.Tightrope.DownloadAdmin.Bundler (M)
100.00%

VIPRE Antivirus
Threat.4783369, Threat.4150696, DownloadAdmin
65.71%

Dr.Web
Adware.DAdmin.151, Threat.Undefined, Adware.Downware.2220, Trojan.Vittalia.36, Adware.Downware.411
57.14%

Sophos
Download Admin
57.14%

Malwarebytes
PUP.Optional.DownloadAdmin, PUP.Optional.DownloadAdmin.A
51.43%

Avira AntiVirus
ADWARE/Adware.Gen, ADWARE/Adware.Gen9
48.57%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
45.71%

ESET NOD32
Win32/DownloadAdmin.G potentially unwanted application, Win32/DownloadAdmin.H potentially unwanted application
42.86%

F-Secure
Adware:W32/WebInstallBundle
42.86%

AVG
Generic
40.00%

herdProtect (fuzzy)
a variant of e1e0de17055098db9ce449a304cb6737ae51624d, a variant of f8ec604fb7009fe15c78f71c4f6ec1f5b9d9d134, a variant of b93d5d78b46193b3c218b231c3acb4029ee0cd2d
40.00%

McAfee Web Gateway
Artemis!5726256FCFA7, BehavesLike.Win32.Downloader.dc, BehavesLike.Win32.Downloader.bc, BehavesLike.Win32.Downloader.cc
31.43%

K7 Gateway Antivirus
Trojan , Unwanted-Program
31.43%

Agnitum Outpost
Riskware.Agent
28.57%

K7 AntiVirus
Unwanted-Program
28.57%

The domain files5.openoffice.us.com has been seen to resolve to the following 4 IP addresses.

50.22.63.140-static.reverse.softlayer.com
October 9, 2014

50.22.63.138-static.reverse.softlayer.com
October 9, 2014

108.168.160.45-static.reverse.softlayer.com
April 11, 2014

50.97.63.217-static.reverse.softlayer.com
April 11, 2014

File downloads found at URLs served by files5.openoffice.us.com.

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)
http://files5.openoffice.us.com/dl?bc=11351&geo  (openofficeimpress-setup.exe)

1 / 68      (Adware)

1 / 68      (Adware)
http://files5.openoffice.us.com/dl?bc=6567&geo  (openofficewriter-setup.exe)

10 / 68    (Adware)

10 / 68    (Adware)

10 / 68    (Adware)

15 / 68    (Adware)

8 / 68      (Adware)

16 / 68    (Adware)

The following 60 files have been seen to comunicate with files5.openoffice.us.com in live environments.

 
Latest 20 of 63 files

30 of 45 related domains

Remove Malware from files5.openoffice.us.com - Powered by Reason Core Security