home

install.optimum-installer.com

Optimum Installer

Domain Information

The domain install.optimum-installer.com registered by China Capital Investment Limited was initially registered in February of 2016 through Moniker Online Services. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Toronto, Ontario within Canada which resides on the Tucows.com Co. network. The domain is associated with the publisher Optimum Installer who is located in Kansas City, Missouri in the United States.
Registrar:
INTERWEB ADVERTISING D.B.A. PROFILE BUILDER

Server location:
Ontario, Canada (CA)

Create date:
Tuesday, February 2, 2016

Expires date:
Thursday, February 2, 2017

Updated date:
Tuesday, February 2, 2016

ASN:
AS15348 TUCOWS - Tucows.com Co.,CA

Root domain:
optimum-installer.com

Whois:
6 optimum-installer.com records

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Adknowledge (M), PUP.Adknowledge.OptimumI.Bundler (M), Threat.Win.Reputation.IMP, PUP.Solimba (M), PUP.FusionCore.ICDP (L), PUP.Adknowledge.Bundler (M)
100.00%

F-Prot
W32/InstallCore.R.gen
2.08%

ESET NOD32
Win32/InstallCore.BL potentially unwanted application
2.08%

The domain install.optimum-installer.com has been seen to resolve to the following 15 IP addresses.

192.230.92.93
192.230.92.93.ip.incapdns.net
August 5, 2016

199.83.132.93
199.83.132.93.ip.incapdns.net
June 23, 2016

192.230.66.93
192.230.66.93.ip.incapdns.net
June 21, 2016

104.130.124.96
March 11, 2016

50.56.218.189
50-56-218-189.static.cloud-ips.com
February 3, 2016

64.99.80.30
url.hover.com
November 23, 2015

92.242.140.21
unallocated.barefruit.co.uk
May 2, 2015

54.243.186.169
ec2-54-243-186-169.compute-1.amazonaws.com
October 24, 2014

54.243.183.125
ec2-54-243-183-125.compute-1.amazonaws.com
October 24, 2014

107.20.176.51
ec2-107-20-176-51.compute-1.amazonaws.com
October 9, 2014

107.20.176.238
ec2-107-20-176-238.compute-1.amazonaws.com
October 9, 2014

50.17.185.120
ec2-50-17-185-120.compute-1.amazonaws.com
September 10, 2014

50.17.210.69
ec2-50-17-210-69.compute-1.amazonaws.com
September 10, 2014

23.21.98.30
January 28, 2014

54.235.251.129
December 13, 2013

File downloads found at URLs served by install.optimum-installer.com.

1 / 68      (Adware)
http://install.optimum-installer.com/o/.../Express_Installer.exe  (37b2e46a757ab7c464068ca5798117c4)

1 / 68      (Adware)
http://install.optimum-installer.com/o/.../Setup.exe  (1232f57be1f84b4c0955a0e49517233e)

1 / 68      (Adware)
http://install.optimum-installer.com/o/.../mplayer_Setup.exe  (7103361a42da89c4836f713335c1cb34)

1 / 68      (Adware)
http://install.optimum-installer.com/o/.../downloadmanager_Setup.exe  (00ae46cc1ca0532405ecf24326b114d8)

0 / 68
http://install.optimum-installer.com/o/.../Maps.exe  (setup.exe)

1 / 68      (Adware)
http://install.optimum-installer.com/o/.../GrooveStream.exe  (68ea1a57072e02e64b7bb77758dbe8ab)

1 / 68      (Adware)
http://install.optimum-installer.com/o/.../Setup.exe  (63bb7e98633654165057e381e66c33f1)

3 / 68      (PUP)
http://install.optimum-installer.com/o/.../MineCraft.exe  (setup.exe)

1 / 68      (Adware)
http://install.optimum-installer.com/o/.../Skype_Setup.exe  (052592093ba41fc96fa91a38d4c64148)

1 / 68      (Adware)
http://install.optimum-installer.com/o/.../Setup.exe  (7aa7880563e3a83331c177cd28e17d98)

1 / 68      (Adware)
http://install.optimum-installer.com/o/.../FriendNotifier_Setup.exe  (e6f125954248731d00f85cb568f97ca0)

The following 303 files have been seen to comunicate with install.optimum-installer.com in live environments.

TCP » 92.242.140.21:80
smelled.exe (Smelled)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
marini.exe (Marini)

TCP » 64.99.80.30:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 92.242.140.21:443
client.exe (ClientWrapper)

TCP » 92.242.140.21:80
thebrowser.exe (TheBrowser by Goobzo)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 64.99.80.30:80
online-guardian-v2.0.9.exe

TCP » 92.242.140.21:443
WindowService.exe (WindowService)

TCP » 92.242.140.21:443
ciuninstall.exe

TCP » 92.242.140.21:1866
jutched.exe

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
masterupdater.exe

TCP » 104.130.124.96:443
translategenius.crx

TCP » 104.130.124.96:443
translategenius.crx

TCP » 104.130.124.96:443
translategenius.crx

TCP » 104.130.124.96:443
translategenius.crx

TCP » 50.17.210.69:80
skype_setup.exe (Express Install)

TCP » 50.56.218.189:443
translategenius.crx

TCP » 50.56.218.189:443
translategenius.crx

 
Latest 20 of 303 files

URL:
http://install.optimum-installer.com/

Web server:
nginx/1.10.0

optimuminstaller.net

oi-installer2.com

oi-installer3.com

oi-installer4.com

oi-installer5.com

oi-installer6.com

oi-installer7.com

oi-installer8.com

oi-installer9.com

post-install.com

postdownload.net

wnloads.net

windows8startmenu.net

playbryte.com

browsersafeguard.com

freechamusic.com

voicemichat.com

adki.com

soft7zip.com

doucraigslist.com

softarmory.com

browser-download.com

downloddy.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.