174.35.32.145

CDNetworks Inc.

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 174.35.32.145 is CDNetworks Inc. and located in California within the United States. Currently there are 4 domain names that utilize this address. The primary domain hosted by this IP is cdn.shyapotato.us along with 3 other domains which are known adware distribution web sites.
Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Trend Micro House Call
TROJ_GEN, TROJ_GEN.RC9H1KF, TROJ_GEN.FFFCBAC, TROJ_GEN.R0CBH0AI813, TROJ_GEN.RCBH1KC, TROJ_GEN.R4FH1CR, TROJ_GEN.R0CBH08I513
98.00%

MicroWorld eScan
DeepScan:Generic.Mitglied, Win32/InstallMonetizer.AD, NSIS:InstallMonetizer-B [PUP], NSIS:IBryte-B [PUP]
94.00%

VIPRE Antivirus
Trojan.Win32.Generic, InstallMonetizer, AdAgent
94.00%

Trend Micro
TROJ_GEN, TROJ_GEN.FFFCBAC, TROJ_GEN.RCBCEL6, TROJ_GEN.FFFCBAD
92.00%

AVG
MultiBundle.D
92.00%

K7 AntiVirus
Adware, Adware
90.00%

F-Prot
W32/AdAgent.AI.gen, W32/AdAgent.AI2.gen
90.00%

Bitdefender
DeepScan:Generic.Mitglied
90.00%

F-Secure
DeepScan:Generic.Mitglied
90.00%

Dr.Web
Trojan.MulDrop4.22250, Trojan.DownLoader7.54308, Trojan.DownLoader7.58240, Adware.Downware.201, Trojan.DownLoader7.58745
90.00%

The following domains resolved to the IP address 174.35.32.145.

File URLs download from 174.35.32.145.

19 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../DVDCover_Plus_3369.exe  (a78b32971ccb6e573f8eb480a20575fd)

19 / 68    (PUP)

17 / 68    (PUP)

19 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../electro11d_6460.exe  (f01c140ad6eadbc56b52126a138943e1)

18 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../electro3d_6452.exe  (5654938cc00d478203784a7c1ba5ab71)

19 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../electro8d_6458.exe  (e121ef812008e1e20383dc236b6f203b)

18 / 68    (PUP)

19 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../exeiconcb1_521.exe  (a16ab8125920d72ed1ee759e524582cf)

16 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../FileZilla_Free_6903.exe  (451cdf43e50b3a3a868523d1c0c2fe02)

16 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../final_test_5053.exe  (52487bf6b0182d391389f32b6802a55a)

12 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../first_2114.exe  (ca4a712d267a04b1ed278aaf44853894)

17 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../FM_Bing_4654.exe  (c7457cc53e9ed20c5420e5b1598568e5)

14 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../FreeFirewall_5572.exe  (456ef21238eb094997329fdd296a2c4c)

16 / 68    (PUP)

16 / 68    (PUP)

19 / 68    (PUP)

22 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../Fritztv_4946.exe  (a388be5f2aa24b6ad71f206a016569bd)

19 / 68    (PUP)

14 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../hardstyle2_6357.exe  (85c9db86f4829967ab5ef6b72fa9da06)

23 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../hongsoft_1040.exe  (ee74acd6350ac17058f0e405795b8d56)

19 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../how_to_zip_6254.exe  (fe5170014d982710d9cc80fe75027968)

21 / 68    (PUP)

16 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../10pllqs_6130.exe  (b5c93567b0620186e1ddf13feb639ff6)

16 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../4noore_6157.exe  (7329ca0964ec0088c500fb6c4d5d6440)

15 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../6rxxol_6178.exe  (a6535b8ab0d3d61b8572f46f9f507dcb)

20 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../6wppiz_6152.exe  (94780dd01107a810ec85aff023f7cfc7)

17 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../7tsswo_6148.exe  (4342cef55ef776ddbe52b0a97252b969)

12 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../9frrey_6126.exe  (e269f72a6ae5a5f15a272ef7f308d7fe)

21 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../bagua_6233.exe  (37094981fb488e22ffcba69526632bbf)

12 / 68    (PUP)
http://cdn.shyapotato.us/nsi/.../btest_5206.exe  (b477647e72ba2a5a72f34e9a967f8daf)

 
Latest 30 of 7,278 download URLs

The following 10 files have been seen to comunicate with this IP address in live environments.

The geographical location of this IP address.

Country:
United States (US)

Region:
California

City:
San Jose

Coordinates:
37.4121, -121.945

The ARIN network assigned organization for IP address 174.35.32.145.

Org name:
CDNetworks Inc.

Org identifier:
CDNET

Org country:
United States (US)

Org region:
California

Org city:
San Jose

Org address:
441 W. Trimble rd

ARIN WHOIS:
NetRange: 174.35.0.0 - 174.35.127.255
CIDR: 174.35.0.0/17
OriginAS: AS40366
NetName: CDNET-USA-1
NetHandle: NET-174-35-0-0-1
Parent: NET-174-0-0-0-0
NetType: Direct Assignment
Comment:
Comment: Global Secure Media and Content Delivery Network. Primarily,
Comment: Established, and based in the USA
RegDate: 2008-10-24
Updated: 2012-03-02
Ref: http://whois.arin.net/rest/net/NET-174-35-0-0-1

OrgName: CDNetworks Inc.
OrgId: CDNET
Address: 441 W. Trimble rd
City: San Jose
StateProv: CA
PostalCode: 95134
Country: US
RegDate: 2007-01-05
Updated: 2012-06-20
Ref: http://whois.arin.net/rest/org/CDNET

OrgNOCHandle: NOCAN2-ARIN
OrgNOCName: NOC and TroubleShooting
OrgNOCPhone: +1-408-228-3455
OrgNOCEmail: netops@cdnetworks.com
OrgNOCRef: http://whois.arin.net/rest/poc/NOCAN2-ARIN

OrgTechHandle: NOCAN2-ARIN
OrgTechName: NOC and TroubleShooting
OrgTechPhone: +1-408-228-3455
OrgTechEmail: netops@cdnetworks.com
OrgTechRef: http://whois.arin.net/rest/poc/NOCAN2-ARIN

OrgAbuseHandle: IAA24-ARIN
OrgAbuseName: IP Addressing Abuse
OrgAbusePhone: +1-408-432-1301
OrgAbuseEmail: ABUSE@cdnetworks.com
OrgAbuseRef: http://whois.arin.net/rest/poc/IAA24-ARIN

RNOCHandle: NOCAN2-ARIN
RNOCName: NOC and TroubleShooting
RNOCPhone: +1-408-228-3455
RNOCEmail: netops@cdnetworks.com
RNOCRef: http://whois.arin.net/rest/poc/NOCAN2-ARIN

RTechHandle: NOCAN2-ARIN
RTechName: NOC and TroubleShooting
RTechPhone: +1-408-228-3455
RTechEmail: netops@cdnetworks.com
RTechRef: http://whois.arin.net/rest/poc/NOCAN2-ARIN

RAbuseHandle: IAA24-ARIN
RAbuseName: IP Addressing Abuse
RAbusePhone: +1-408-432-1301
RAbuseEmail: ABUSE@cdnetworks.com
RAbuseRef: http://whois.arin.net/rest/poc/IAA24-ARIN


Autonomous System Assignment
ASNumber:
36408

ASName:
CDNETWORKSUS-02 - CDNetworks Inc.,US

ASHandle:
AS36408

Remove Malware from 174.35.32.145 - Powered by Reason Core Security