home

repodepo5.com

WHOISGUARD, INC.  (Proxy Registrant)

Domain Information

The domain repodepo5.com is registered by proxy through ENOM, INC. and was originally registered in October of 2015. The hosted servers are located in Provo, Utah within the United States which resides on the Unified Layer network.
Registrar:
ENOM, INC.

Server location:
Utah, United States (US)

Create date:
Tuesday, October 13, 2015

Expires date:
Thursday, October 13, 2016

Updated date:
Tuesday, October 13, 2015

ASN:
AS46606 UNIFIEDLAYER-AS-1 - Unified Layer,US

Whois:
1 repodepo5.com record

Google Safe Browsing:
unwanted

Scan engine
Details
Detections

Dr.Web
Trojan.Inject1.28681
100.00%

avast!
Win32:Agent-AODJ [Trj]
100.00%

Emsisoft Anti-Malware
Worm.Generic.377772
100.00%

Microsoft Security Essentials
Threat.Undefined
100.00%

ESET NOD32
Win32/Delf.NRJ worm
100.00%

McAfee
Virus.W32/Gnamer
100.00%

F-Prot
W32/Renamer.A.gen
100.00%

Norman
Worm.Generic.377772
100.00%

AVG
Worm/Delf.KHX
100.00%

The domain repodepo5.com has been seen to resolve to the following 2 IP addresses.

185.53.177.20
April 1, 2016

198.57.180.233
198-57-180-233.unifiedlayer.com
January 3, 2016

File downloads found at URLs served by repodepo5.com.

9 / 68      (Malware)
http://repodepo5.com/getAd.php?f=iEx.exe&fc=7wonders2.exe  (5fd5575b499afeda7e729618c1a04f8a)

0 / 68
http://repodepo5.com/getAd.php?f=iEx.exe&fc=ammyy-admin.exe  (adwcleaner.exe)

0 / 68
http://repodepo5.com/getAd.php?f=iEx.exe&fc=winrar-compressor.exe  (adwcleaner.exe)

The following 26 files have been seen to comunicate with repodepo5.com in live environments.

TCP » 185.53.177.20:80
fgs-1.1.0.65.crx

TCP » 185.53.177.20:80
fgs-1.1.0.26.crx

TCP » 185.53.177.20:80
fgs-1.1.0.41.crx

TCP » 185.53.177.20:80
fgs-1.1.0.16.crx

TCP » 185.53.177.20:80
fgs-1.1.0.36.crx

TCP » 185.53.177.20:80
fgs-1.0.0.1.crx

TCP » 185.53.177.20:80
fgs-1.0.0.9.crx

TCP » 185.53.177.20:80
fgs-1.1.0.0.crx

TCP » 185.53.177.20:80
fgs-1.1.0.55.crx

TCP » 185.53.177.20:80
fgs-1.1.0.38.crx

TCP » 185.53.177.20:80
fgs-1.1.0.30.crx

TCP » 185.53.177.20:80
fgs-1.1.0.29.crx

TCP » 185.53.177.20:80
fgs-1.1.0.61.crx

TCP » 185.53.177.20:80
fgs-1.1.0.32.crx

TCP » 185.53.177.20:80
smartkeywordsuggest.crx

TCP » 185.53.177.20:80
smartkeywordsuggest.crx

TCP » 185.53.177.20:80
fgs-1.1.0.33.crx

TCP » 185.53.177.20:80
fgs-1.1.0.21.crx

TCP » 185.53.177.20:80
fgs-1.1.0.57.crx

TCP » 185.53.177.20:80
fgs.crx

 
Latest 20 of 26 files

January 3, 2016
download.repodepo5.com

URL:
http://repodepo5.com/

Google Analytics:
UA-48689684

Title:
“repodepo5.com”

Web server:
nginx

1337xproxy.in

1clickdownloader.com

1dschool.com

1flymusic.com

1freesoftwareonline.com

215115638.com

360adstrack.com

4god.biz

4shared.net

55tjk.com

acidco.net

adexprt.me

adjalauto.com

adsclever.com

adsobject.com

adsservingowl.biz

adtrkx.com

africa-2010.com

agamefix.com

aiprosoft.com

alawar.it

all-baza.com

alwayswindcat.com

aminst.net

angelijah.com

angelijah.net

antivirus-gratuit.pro

anyras.com

app-mak.com

appapia.com

30 of 618 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.