54.235.251.129

IP Address Information

Currently there are 27 domain names that utilize this address. The primary domain hosted by this IP is install2.optimum-installer.com along with 26 other domains which are known adware distribution web sites. The address and domain is leased to Optimum Installer.
Scanner detections:
Detections  (92% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Bundlore.F, PUP.Installer.PremiumInstaller.N, PUP.Installer.PremiumInstaller.K, PUP.Installer.PremiumInstaller.F, PUP.LionSea.LionSeaS.Installer (M), PUP.Installer.OptimumInstaller.F, PUP.PremiumInstaller.E, PUP.Installer.OptimumInstaller.AA, PUP.Installer.InstallVibes.F, PUP.Installer.INSTALLTHIS.F, PUP.Installer.PremiumInstaller.Q, PUP.Installer.OptimumInstaller.G, PUP.Installer.OptimumInstaller.H, PUP.Installer.OptimumInstaller.I, PUP.Installer.FileMonarch.F, PUP.Installer.OptimumInstaller.K, PUP.Installer.Adknowledge, PUP.Bundler.Adknowledge
100.00%

Dr.Web
Adware.Downware.925, Adware.Downware.1336, Adware.Downware.2086, riskware program Program.Unwanted.79, is riskware program Program.Unwanted.79
82.22%

VIPRE Antivirus
Bundlore, Optimum Installer, Trojan.Win32.Generic, Rocketfuel Installer, Threat.4778314, Threat.4754986, Threat.4150696
75.56%

Malwarebytes
PUP.Optional.Bundlore, PUP.Optional.Smart, PUP.Optional.IBryte, PUP.Optional.IBryte.A, Adware.IBryte, PUP.Optional.RocketFuel
75.56%

avast!
Win32:Bundlore-A [PUP], Win32:Installer-J [PUP], Installer-K [PUP], Win32:Installer-K [PUP], Win32:Adware-BGF [PUP], Adware-gen [Adw]
73.33%

Comodo Security
Application.Win32.OutBrowse.D, ApplicUnwnt.Win32.AdWare.iBryte.H, Application.Win32.iBryte.M, Application.Win32.Agent.BUNE
73.33%

Sophos
OutBrowse Revenyou, iBryte Optimum Installer, Bundlore, iBryte Premium Installer, PUA 'iBryte Optimum Installer'
73.33%

AVG
MalSign.Generic, Adware Generic5.VVU, Adware Generic5.AESJ, Adware Generic5.ACSN, Adware Skodna.Generic.AGL, Adware Generic5.WOM
73.33%

Kaspersky
not-a-virus:AdWare.Win32.Agent, not-a-virus:AdWare.Win32.iBryte, not-a-virus:AdWare.Win32.Verti, not-a-virus:Downloader.Win32.Bundl
73.33%

K7 AntiVirus
Unwanted-Program , Backdoor , Trojan , Riskware , Adware
71.11%

The following domains resolved to the IP address 54.235.251.129.

File URLs download from 54.235.251.129.

2 / 68      (PUP)
http://install2.optimum-installer.com/o/.../Setup.exe  (eab202ab2ce8cd86d5fa2bb2cebcc68c)

30 / 68    (Adware)

1 / 68
http://install2.optimum-installer.com/o/.../Setup.exe  (a812f306100080e2041e326b4a27acd9)

34 / 68    (Adware)

36 / 68    (Adware)

40 / 68    (Adware)
http://install2.optimum-installer.com/o/.../GetTest.exe  (1e3a394b333da082ba3131411d183e58)

2 / 68      (Adware)
http://install2.optimum-installer.com/o/.../Setup.exe  (52ebd8fe0209ec88e5079270dfc16fea)

26 / 68    (Adware)
http://install2.optimum-installer.com/o/.../PacMan.exe  (bc7bdbf9833be543179107c52b5cb2ab)

28 / 68    (Adware)

40 / 68    (Adware)

30 / 68    (Adware)
http://install2.optimum-installer.com/o/.../ZNES.exe  (5bb9567a487384015009c54a3c111673)

2 / 68      (Adware)

2 / 68      (Adware)

The geographical location of this IP address.

Country:
United States (US)

Region:
Virginia

City:
Ashburn

Coordinates:
39.0437, -77.4875

ARIN WHOIS:
ERROR 503: Unable to service request due to high volume.


Autonomous System Assignment
ASNumber:
14618

ASName:
AMAZON-AES - Amazon.com, Inc.

ASHandle:
AS14618

Remove Malware from 54.235.251.129 - Powered by Reason Core Security