54.235.251.129

IP Address Information

Currently there are 27 domain names that utilize this address. The primary domain hosted by this IP is install2.optimum-installer.com along with 26 other domains which are known adware distribution web sites. The address and domain is leased to Optimum Installer.
Scanner detections:
Detections  (89% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Bundlore.F, PUP.Installer.PremiumInstaller.F, PUP.Installer.PremiumInstaller.N, PUP.Installer.PremiumInstaller.K, PUP.Installer.saminvestcompany2009ltd.F, PUP.Installer.BechiroSL.F, PUP.LionSea.LionSeaS.Installer (M), PUP.Installer.OptimumInstaller.AA, PUP.Installer.InstallVibes.F, PUP.Installer.INSTALLTHIS.F, PUP.Installer.PremiumInstaller.Q, PUP.Installer.OptimumInstaller.G, PUP.Installer.OptimumInstaller.F, PUP.Installer.FileMonarch.F, PUP.Installer.OptimumInstaller.K, PUP.Installer.Adknowledge, PUP.Installer.Softpulse, PUP.Bundler.Outbrowse, PUP.Installer.Groovecom, PUP.Bundler.Adknowledge
97.62%

Dr.Web
Adware.Downware.925, Trojan.Packed.24939, Adware.Downware.1336, Adware.Downware.1433, Adware.Downware.2086, riskware program Program.Unwanted.79, is riskware program Program.Unwanted.79
73.81%

VIPRE Antivirus
Bundlore, Threat.4778314, DownloadMR, Threat.4754986, Threat.4150696, Optimum Installer, Threat.4783369
66.67%

Sophos
iBryte Optimum Installer, OutBrowse Revenyou, Solimba Installer, Bundlore, iBryte Premium Installer, PUA 'iBryte Optimum Installer'
66.67%

AVG
Skodna.Generic, MalSign.Generic, AdInstaller.Firseria, Adware Generic5, Adware Skodna.Generic_r, Adware AdPlugin, Adware Skodna.Generic.AGL
66.67%

Malwarebytes
PUP.Optional.Bundlore, PUP.Optional.OptimumInstaller.A, PUP.Optional.Smart, PUP.Optional.Firseria, PUP.Optional.IBryte, PUP.Optional.iBryte
64.29%

avast!
Win32:Bundlore-A [PUP], Win32:IBryte-BY [PUP], Win32:Firseria-A [PUP], Win32:Installer-J [PUP], Adware-gen [Adw], Win32:Installer-K [PUP]
64.29%

K7 AntiVirus
Adware , Unwanted-Program , Trojan , Backdoor
64.29%

K7 Gateway Antivirus
Adware , Unwanted-Program , Trojan , Backdoor
64.29%

Comodo Security
Application.Win32.Adware.iBryte.BC, Application.Win32.OutBrowse.D, Application.Win32.Firseria.B, ApplicUnwnt.Win32.AdWare.iBryte.H
64.29%

The following domains resolved to the IP address 54.235.251.129.

File URLs download from 54.235.251.129.

2 / 68      (PUP)
http://install2.optimum-installer.com/o/.../Setup.exe  (eab202ab2ce8cd86d5fa2bb2cebcc68c)

41 / 68    (Adware)
http://install2.optimum-installer.com/o/.../Setup.exe  (b25128d059f14517ef2336c857c9dd16)

30 / 68    (Adware)

34 / 68    (Adware)

36 / 68    (Adware)

2 / 68      (Adware)
http://install2.optimum-installer.com/o/.../Setup.exe  (52ebd8fe0209ec88e5079270dfc16fea)

26 / 68    (Adware)
http://install2.optimum-installer.com/o/.../PacMan.exe  (bc7bdbf9833be543179107c52b5cb2ab)

28 / 68    (Adware)

40 / 68    (Adware)

2 / 68      (Adware)
http://install2.optimum-installer.com/o/.../GetTest.exe  (7f0fb414c5690c9eb0cfd02ca1c9376e)

2 / 68      (Adware)

2 / 68      (Adware)

The geographical location of this IP address.

Country:
United States (US)

Region:
Virginia

City:
Ashburn

Coordinates:
39.0437, -77.4875

ARIN WHOIS:
ERROR 503: Unable to service request due to high volume.


Autonomous System Assignment
ASNumber:
14618

ASName:
AMAZON-AES - Amazon.com, Inc.

ASHandle:
AS14618

Remove Malware from 54.235.251.129 - Powered by Reason Core Security