54.72.9.51

ec2-54-72-9-51.eu-west-1.compute.amazonaws.com

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 54.72.9.51 is Amazon Technologies Inc. and located in Dublin City within Ireland. The IP Address resolves to the DNS record of ec2-54-72-9-51.eu-west-1.compute.amazonaws.com. Currently there are 969 domain names that utilize this address. The primary domain hosted by this IP is www.softologicsa.com along with 968 other domains which are known adware distribution web sites. This is an Amazon Web Services (AWS) Elastic IP Address and is hosted within the AWS cloud computing platform.
Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Dr.Web
Adware.Downware.514, Adware.W3i.32, Adware.W3i.9, Adware.W3i.4
100.00%

ESET NOD32
Win32/Adware.Bundlore, Win32/InstallIQ (variant)
100.00%

Reason Heuristics
PUP.Bundlore.Q, PUP.Installer.InstallX.J, PUP.Installer.W3i.S, PUP.Installer.W3i.R, PUP.Installer.W3i.O, PUP.Installer.W3i.N
100.00%

Fortinet FortiGate
Riskware/Bundlore, Adware/Fam.NB, Adware/InstallIQ, Riskware/InstallIQ
100.00%

Avira AntiVirus
Adware/Bundlore.C, Adware/InstallIQ.N, Adware/InstallC.B.1, APPL/InstallIQ.Gen5
100.00%

VIPRE Antivirus
Bundlore, InstallIQ Installer, Trojan.Win32.Generic
98.00%

Trend Micro House Call
ADW_BUNDTRACK, TROJ_GEN.F47V0815, TROJ_SPNR.0CI312, TROJ_FAKEAV.BMC, TROJ_GEN.RFFH1G5, TROJ_GEN.R0CBH0AJ713, TROJ_SPNR.03L712, TROJ_GEN.F47V0825, TROJ_GEN.RCBH1GH
98.00%

AVG
MultiBundle.H, Skodna.Generic_r, AdInstaller.InstallQ
98.00%

Sophos
InstallQ
94.00%

Malwarebytes
PUP.BundleInstaller.VG, PUP.PlayPickle, PUP.Optional.InstallIQ.A
92.00%

The following domains resolved to the IP address 54.72.9.51.

Latest 50 of 969 domains

File URLs download from 54.72.9.51.

25 / 68    (Adware)
http://dl5.iq7download.com/lm/.../mediaplayer_1573.exe  (0dd5275646c38ca0e45ac59daca2cf2b)

28 / 68    (Adware)
http://dl5.iq7download.com/lm/.../clipartcollection.exe  (e6423ff4f248583bc7eb169615ee13ce)

21 / 68    (Adware)
http://dl5.iq7download.com/lm/.../mplayer_tuguu_1271.exe  (d50edfbfa0645f05e3b9f9a521fd9e1f)

25 / 68    (Adware)
http://dl5.iq7download.com/lm/.../movie_player_1280.exe  (305900bbfba61d5bd1ad8fa4a41d8f3f)

28 / 68    (Adware)
http://dl5.iq7download.com/lm/.../freefileviewer_730.exe  (0587707c775feb6e8680d792ee58bff5)

7 / 68      (Adware)
http://dl5.iq7download.com/lm/.../instacodecs_1565.exe  (13d0540da185f7e45758bb6bd60155b8)

28 / 68    (Adware)
http://dl5.iq7download.com/lm/.../musicoasis.exe  (e4a0a6a5667bde2db349a759cd408509)

27 / 68    (Adware)
http://dl5.iq7download.com/lm/.../expertpdf7_1527.exe  (477594cf4f2851fd79c0856bf689e4bf)

11 / 68    (Adware)
http://dl5.iq7download.com/lm/.../abiword_20624.exe  (4f69de91a6b849f6e58dbf971e521492)

15 / 68    (Adware)

26 / 68    (Adware)
http://dl5.iq7download.com/lm/.../dolphin.exe  (9e4c3278559ab7154d914c4cbbb2440d)

27 / 68    (Adware)

26 / 68    (Adware)

12 / 68    (Adware)
http://dl5.iq7download.com/lm/.../finaltorrent_2.exe  (65b10eb21a602d6b25741d6bce3584af)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

30 / 68    (Adware)

 
Latest 30 of 45,680 download URLs

The following 215 files have been seen to comunicate with this IP address in live environments.

TCP port 80

TCP port 80

TCP port 80

TCP port 80

TCP port 80

TCP port 80

 
Latest 20 of 219 files

The geographical location of this IP address.

Country:
Ireland (IE)

Region:
Dublin City

City:
Dublin

Coordinates:
53.344, -6.26719

The ARIN network assigned organization for IP address 54.72.9.51.

Org name:
Amazon Technologies Inc.

ARIN WHOIS:
Amazon Technologies Inc. AMAZON-2011L (NET-54-72-0-0-1) 54.72.0.0 - 54.95.255.255
Amazon.com, Inc. AMAZO-ZDUB6 (NET-54-72-0-0-2) 54.72.0.0 - 54.73.255.255



Autonomous System Assignment
ASNumber:
16509

ASName:
AMAZON-02 - Amazon.com, Inc.

ASHandle:
AS16509

Remove Malware from 54.72.9.51 - Powered by Reason Core Security