files5.playfin.com

Download Admin  (via a Proxy Registrant)

Domain Information

"Playfin.net uses DownloadAdmin to install your software. The software distributed on our site may be available for free elsewhere." The software bundle includes offers from ALOT, WeatherBug, PriceGong and IAC (Ask.com). The portal is run by Tightrope Interactive. The domain files5.playfin.com is registered by proxy through WILD WEST DOMAINS, LLC and was originally registered in August of 2006. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Dallas, Texas within the United States which resides on the SoftLayer Technologies Inc. network. The domain is associated with the publisher Download Admin who is located in SAN FRANCISCO, California in the United States.
Remove Malware from files5.playfin.com - Powered by Reason Core Security
Registrar:
WILD WEST DOMAINS, LLC

Server location:
Texas, United States (US)

Create date:
Wednesday, August 30, 2006

Expires date:
Wednesday, August 30, 2017

Updated date:
Thursday, November 08, 2012

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.

Root domain:

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.DownloadAdmin.AA, PUP.Installer.DownloadAdmin.Q, PUP.Installer.Tightrope, PUP.Bundler.Tightrope, PUP.Tightrope.DownloadAdmin.Bundler (M), PUP.TomorrowSoftware.GOLDENBANNERS.Bundler (M), PUP.Tightrope.Zoobam.Bundler (M), PUP.Tightrope.TightropeInteractive.Bundler (M), PUP.Tightrope.Sanflex.Bundler (M)
100.00%

Sophos
Download Admin, PUA 'Download Admin'
16.67%

Dr.Web
Adware.Downware.2220, Adware.DAdmin.151, Trojan.Vittalia.36
16.67%

Malwarebytes
PUP.Optional.DownloadAdmin, PUP.DownloadAdmin, PUP.Optional.FlashPro
14.58%

NANO AntiVirus
Trojan.Win32.Downware.crgjbr, Trojan.Win32.DAdmin.djhtdm, Riskware.Nsis.Downware.dlgjls
14.58%

VIPRE Antivirus
DownloadAdmin, Threat.4783369, Threat.4150696
14.58%

ESET NOD32
Win32/DownloadAdmin.G potentially unwanted application, Win32/DownloadAdmin.J potentially unwanted application
14.58%

Comodo Security
ApplicUnwnt, Application.Win32.DownloadAdmin.ANGL, Application.Win32.DownloadAdmin.TTK
10.42%

McAfee Web Gateway
Artemis!5726256FCFA7, BehavesLike.Win32.Downloader.bc, BehavesLike.Win32.Downloader.ch
10.42%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
8.33%

F-Secure
Adware:W32/WebInstallBundle
8.33%

Avira AntiVirus
ADWARE/Adware.Gen, ADWARE/Adware.Gen9
8.33%

AVG
Generic, Adware Skodna.Bundle.AU
8.33%

K7 AntiVirus
Adware , Unwanted-Program
8.33%

avast!
Malware-gen, Adware-OH [Adw], Win32:Adware-CIX [PUP]
8.33%

The domain files5.playfin.com has been seen to resolve to the following 4 IP addresses.

50.22.63.138-static.reverse.softlayer.com
November 10, 2014

50.22.63.140-static.reverse.softlayer.com
November 10, 2014

50.97.63.217-static.reverse.softlayer.com
April 11, 2014

108.168.160.45-static.reverse.softlayer.com
April 11, 2014

File downloads found at URLs served by files5.playfin.com.

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=673389&geo  (dreamchronicles-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=4724&geo  (brutalchess-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=674009&geo  (mahjonggmasteregyptian-setup.exe)

1 / 68      (Adware)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=513131  (hollyachristmastale-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=1134498  (zombiebowlorama-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=580689  (agathachristieperilatendhouse-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=512651&geo  (marooned2secretsoftheakoni-setup.exe)

1 / 68      (Adware)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=949713  (zumadeluxe-setup.exe)

1 / 68      (Adware)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=673489&geo  (farmfrenzy3madagascar-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=673997&geo  (mahjongworld-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=563855&geo  (mahjongworldexentpowered-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=931155  (governorofpoker-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=936153  (mahjongworld-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=674085&geo  (mysterycruise-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=674089&geo  (mysteryofsharkisland-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=673031&geo  (atlantisquest-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=149  (bejeweleddeluxe-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=926903  (cuttherope-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=674289&geo  (samanthaswiftandthehiddenrosesofathena-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=512155&geo  (samanthaswiftandthehiddenrosesofathena-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=513813  (dinerdash2-setup.exe)

1 / 68      (Adware)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=514227&geo  (buildalot2townoftheyear-setup.exe)

1 / 68      (Adware)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=512691&geo  (mahjongworld-setup.exe)

1 / 68      (Adware)
http://files5.playfin.com/dl?bc=512675&geo  (mahjonggartifacts-setup.exe)

0 / 68
http://files5.playfin.com/dl?bc=924923  (criminal-minds_s1_l1_gf7141t1l1_d2282208629.exe)

 
Latest 30 of 88 download URLs

The following 60 files have been seen to comunicate with files5.playfin.com in live environments.

 
Latest 20 of 63 files

Remove Malware from files5.playfin.com - Powered by Reason Core Security