Domains By Proxy, LLC (Proxy Registrant)
SendSpace is a file distribution service that bundles unwanted malware/adware in its download manager. This malware is inserted by WebPick Internet Holdings and utilizes the company's InstalleRex platfom using the JustPlugIt toolbar extensions along with other potentially unwanted offers. In addition the download manager provides minimal user consent to opt-out of the offers. The domain fs06n5.sendspace.com is registered by proxy through GODADDY.COM, LLC and was originally registered in July of 2005. Currently this domain has been known to host various forms of malware. The hosted servers are located in Chicago, Illinois within the United States which resides on the nLayer Communications, Inc. network.
Illinois, United States (US)
Thursday, July 14, 2005
Sunday, July 14, 2019
Monday, February 10, 2014
AS4436 AS-GTT-4436 - nLayer Communications, Inc.,US
Malware distribution (60% detected)
K7 Gateway Antivirus
Backdoor , Hacktool
McAfee Web Gateway
Trend Micro House Call
Qihoo 360 Security
The domain fs06n5.sendspace.com has been seen to resolve to the following IP address.
April 20, 2014
File downloads found at URLs served by fs06n5.sendspace.com.
The following file have been seen to comunicate with fs06n5.sendspace.com in live environments.
SSL certificate subject:
CN=*.sendspace.com, OU=Domain Control Validated
SSL certificate issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc."
Statistics are for the previous month.