72.52.4.90

unknown.prolexic.com

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 72.52.4.90 is Prolexic Technologies, Inc. and located in Florida within the United States. The IP Address resolves to the DNS record of unknown.prolexic.com. Currently there are 27 domain names that utilize this address. The primary domain hosted by this IP is world-downloads.info along with 26 other domains which are known adware distribution web sites.
Scanner detections:
Detections  (84% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.OptimumInstaller.W, PUP.Optional.RedSkySpzoo.x, PUP.Optional.RedSkySpzoo.i, PUP.Optional.RedSkySpzoo.d, PUP.Optional.RedSkySpzoo.Y, PUP.Optional.RedSkySpzoo.FF, PUP.WebPick, Adware.BrowserPlugin.Meta (M), Win32.Generic.RedSkySpzoo.Installer.Meta, PUP.Adknowledge.OptimumInstaller.Installer (M), PUP.Adknowledge.PremiumInstaller.Installer (M), PUP.Air Software.AirSoftware.Bundler (M), PUP.Adknowledge.OptimumI.Bundler (M), PUP.Adknowledge.INSTALLD.Installer (M), PUP.Adknowledge.PremiumI.Bundler (M), PUP.Adknowledge (M)
78.57%

Dr.Web
Adware.Downware.1285, Threat.Undefined, Adware.Downware.460, Trojan.Crossrider1.16817, Detection.Undefined
33.33%

VIPRE Antivirus
Threat.4778314, Threat.4150696
26.19%

avast!
Win32:Installer-J [PUP], Win.Threat.Undefined, Win32:MultiPlug-SM [PUP]
26.19%

G Data
Win32.Adware.Ibryte, Win32.Application.SimplyTech, Gen:Variant.Adware.Multiplug.11, Gen:Variant.Adware.Mplug.30
26.19%

Antiy Labs AVL
Trojan[:HEUR]/Win32.Unknown, Trojan[:HEUR]/Win32.AGeneric, GrayWare[AdWare:not-a-virus]/Win32.MultiPlug.oaqk, GrayWare[AdWare:not-a-virus]/Win32.Agent.aece
23.81%

Malwarebytes
PUP.Optional.Ibryte, PUP.Optional.DownTango.A
21.43%

NANO AntiVirus
Riskware.Win32.Agent.csnqzb, Riskware.Win32.MLW.cumlwl, Trojan.Win32.DownLoader12.dnpapv
21.43%

AVG
Adware Generic5, Red Sky Sp. z o.o., Generic6
19.05%

F-Prot
W32/Ibryte.C.gen, W32/A-951144e2, W32/S-b687a4df
16.67%

The following domains resolved to the IP address 72.52.4.90.

File URLs download from 72.52.4.90.

1 / 68      (Adware)
http://update-com.info/.../tracka.php  (flash_player_pro_setup.exe)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

2 / 68      (PUP)

1 / 68      (Adware)
http://update-com.info/.../tracka_oi_us_g987.php  (flash_player_pro_setup.exe)

2 / 68      (PUP)

1 / 68      (Adware)

1 / 68      (PUP)

2 / 68      (PUP)
http://dn.4shared.net/?u=http://.../?iyxj72sztch4ech&n=Maudy Ayunda - Perahu Kertas (Ost Perahu Kertas)  (maudy_ayunda_-_perahu_kertas_(ost__perahu_kertas)_downloader.exe)

42 / 68    (Adware)

3 / 68      (PUP)

15 / 68    (PUP)
http://dn.4shared.net/?u=http://.../?32686bmzuzcgqfj&n=Big Sean, Jay Z, Kanye West - Clique (Pound Pound Pound & FootwoRk Remix)  (big_sean,_jay_z,_kanye_west_-_clique_(pound_pound_pound_&_footwork_remix)_downloader.exe)

 
Latest 30 of 320 download URLs

The following 244 files have been seen to comunicate with this IP address in live environments.

TCP port 80

TCP port 80

TCP port 80

TCP port 80

 
Latest 20 of 250 files

The geographical location of this IP address.

Country:
United States (US)

Region:
Florida

City:
Hollywood

Coordinates:
26.0171, -80.1532

The ARIN network assigned organization for IP address 72.52.4.90.

Org name:
Prolexic Technologies, Inc.

Org identifier:
PROLE

Org country:
United States (US)

Org region:
Florida

Org city:
Hollywood

Org address:
1930 Harrison Street

Org website:
http://www.prolexic.com / noc hours are 24/7

ARIN WHOIS:
NetRange: 72.52.0.0 - 72.52.63.255
CIDR: 72.52.0.0/18
OriginAS:
NetName: PROLEXIC
NetHandle: NET-72-52-0-0-1
Parent: NET-72-0-0-0-0
NetType: Direct Allocation
Comment: http://www.prolexic.com / NOC hours are 24/7
RegDate: 2005-07-11
Updated: 2012-02-24
Ref: http://whois.arin.net/rest/net/NET-72-52-0-0-1

OrgName: Prolexic Technologies, Inc.
OrgId: PROLE
Address: 1930 Harrison Street
City: Hollywood
StateProv: FL
PostalCode: 33020
Country: US
RegDate: 2004-07-15
Updated: 2011-06-16
Ref: http://whois.arin.net/rest/org/PROLE

OrgNOCHandle: SOC37-ARIN
OrgNOCName: SOC
OrgNOCPhone: +1-866-800-0366
OrgNOCEmail: netops@prolexic.com
OrgNOCRef: http://whois.arin.net/rest/poc/SOC37-ARIN

OrgTechHandle: HOSTM528-ARIN
OrgTechName: Hostmaster
OrgTechPhone: +1-866-800-0366
OrgTechEmail: hostmaster@prolexic.com
OrgTechRef: http://whois.arin.net/rest/poc/HOSTM528-ARIN

OrgAbuseHandle: ABUSE3056-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-866-800-0366
OrgAbuseEmail: abuse@prolexic.com
OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE3056-ARIN

RTechHandle: HOSTM528-ARIN
RTechName: Hostmaster
RTechPhone: +1-866-800-0366
RTechEmail: hostmaster@prolexic.com
RTechRef: http://whois.arin.net/rest/poc/HOSTM528-ARIN


Autonomous System Assignment
ASNumber:
32787

ASName:
PROLEXIC-TECHNOLOGIES-DDOS-MITIGATION-NETWORK - Prolexic Technologies, Inc.

ASHandle:
AS32787

Remove Malware from 72.52.4.90 - Powered by Reason Core Security