108.161.189.3

netDNA

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 108.161.189.3 is netDNA and located in California within the United States. Currently there are 12 domain names that utilize this address. The primary domain hosted by this IP is cache.filehippo.com along with 11 other domains which are known adware distribution web sites.
Scanner detections:
Detections  (90% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.CoolMirage.V, PUP.OpenCandy.Installer (L), PUP.InstallCore, PUP.CoolMirage.P, PUP.CoolMirage.N
91.30%

ESET NOD32
Win32/OpenCandy, Win32/AdWare.1ClickDownload.AR, Win32/OpenCandy (variant), Win32/OpenCandy.C potentially unsafe (variant)
84.78%

VIPRE Antivirus
CoolMirage Ltd, Adware.Win32.InstallCore.ba, News.net, Conduit
15.22%

Fortinet FortiGate
Adware/OpenCandy, W32/OpenCandy
15.22%

Dr.Web
Trojan.Packed.2782, Adware.Downware.1263
13.04%

Trend Micro House Call
TROJ_GEN.F47V0328, TROJ_GEN.R0CBH07C914, TROJ_GEN.F47V0909, TROJ_GEN.F47V0105, TROJ_GEN.F47V1211, Suspicious_GEN.F47V0131
13.04%

Malwarebytes
PUP.Optional.OneClickDownloader.A, PUP.Optional.OpenCandy
10.87%

Sophos
CoolMirage
10.87%

Vba32 AntiVirus
AdWare.OpenCandy
8.70%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
8.70%

The following domains resolved to the IP address 108.161.189.3.

File URLs download from 108.161.189.3.

4 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (PUP)
http://web-downloads.dvdvideosoft.com/.../FreeStudio.exe  (551f529a0c1640d10396f77ccfbef607)

2 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (PUP)

5 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (PUP)

14 / 68    (Adware)

2 / 68      (PUP)

4 / 68      (PUP)

2 / 68      (PUP)

18 / 68    (Adware)

6 / 68      (Adware)

2 / 68      (PUP)

4 / 68      (Adware)

1 / 68
http://cache.filehippo.com/FHSetup.exe  (b275bdb3e1718652ea30afb3209bb975)

The geographical location of this IP address.

Country:
United States (US)

Region:
California

City:
Studio City

Coordinates:
34.1412, -118.391

The ARIN network assigned organization for IP address 108.161.189.3.

Org name:
netDNA

Org identifier:
NETDN-2

Org country:
United States (US)

Org region:
California

Org city:
Studio City

Org address:
11684 Ventura Blvd

ARIN WHOIS:
NetRange: 108.161.176.0 - 108.161.191.255
CIDR: 108.161.176.0/20
OriginAS: AS25973, AS1828
NetName: NETDNA-01
NetHandle: NET-108-161-176-0-1
Parent: NET-108-0-0-0-0
NetType: Direct Allocation
RegDate: 2011-11-04
Updated: 2012-03-02
Ref: http://whois.arin.net/rest/net/NET-108-161-176-0-1

OrgName: netDNA
OrgId: NETDN-2
Address: 11684 Ventura Blvd
Address: # 825
City: Studio City
StateProv: CA
PostalCode: 91604
Country: US
RegDate: 2009-06-10
Updated: 2012-01-20
Ref: http://whois.arin.net/rest/org/NETDN-2

OrgTechHandle: NETWO3151-ARIN
OrgTechName: Network Operations
OrgTechPhone: +1-323-874-9000
OrgTechEmail: noc@netdna.com
OrgTechRef: http://whois.arin.net/rest/poc/NETWO3151-ARIN

OrgAbuseHandle: NETWO3151-ARIN
OrgAbuseName: Network Operations
OrgAbusePhone: +1-323-874-9000
OrgAbuseEmail: noc@netdna.com
OrgAbuseRef: http://whois.arin.net/rest/poc/NETWO3151-ARIN


Autonomous System Assignment
ASNumber:
4436

ASName:
AS-NLAYER - nLayer Communications, Inc.

ASHandle:
AS4436

Remove Malware from 108.161.189.3 - Powered by Reason Core Security