184.168.221.35

ip-184-168-221-35.ip.secureserver.net

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 184.168.221.35 is GoDaddy.com, LLC and located in Arizona within the United States. The IP Address resolves to the DNS record of ip-184-168-221-35.ip.secureserver.net. Currently there are 31 domain names that utilize this address. The primary domain hosted by this IP is www.torntv-tv.com along with 30 other domains which are known adware distribution web sites.
Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.CoolMirage.w, PUP.InstallLabltd.i, PUP.CoolMirage.r, PUP.CoolMirage.v, PUP.CoolMirage., PUP.InstallLabltd.h, PUP.MaxigetLimited.I, PUP.New IT Limited.Maxiget, PUP.New IT Limited.Maxiget (M), PUP.New IT Limited.Maxiget.Bundler (M)
100.00%

Malwarebytes
PUP.Optional.OneClickDownloader.A, PUP.Optional.Elite
43.75%

Comodo Security
Application.Win32.MCool.D, Application.Win32.4Shared.XEF, Application.Win32.4Shared.FG
43.75%

Dr.Web
Adware.Downware.1263, Adware.Downware.1751, Adware.Downware.11006, Adware.Downware.9959
43.75%

VIPRE Antivirus
CoolMirage Ltd, Conduit, Threat.4150696
43.75%

Sophos
CoolMirage, PUA.4Share Downloader, PUA '4Share Downloader'
40.63%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), Win32.Troj.DownAdLoad.ix.(kcloud)
40.63%

McAfee
Artemis!A5873B421739, Artemis!0C9E227FD4E4, Artemis!76B81C3C7163, 4shared, Artemis!616027361A2C, Program.4shared
37.50%

McAfee Web Gateway
Artemis!A5873B421739, Artemis!0C9E227FD4E4, Artemis!76B81C3C7163, 4shared, BehavesLike.Win32.AdwareSweet.dc, BehavesLike.Win32.Dropper.nm
37.50%

Trend Micro House Call
TROJ_GEN.F47V1030, TROJ_GEN.F47V1015, TROJ_GEN.F47V1103, TROJ_GEN.F47V1014, TROJ_SPNV.03AT14, TROJ_GEN.R0C1H06D315
31.25%

The following domains resolved to the IP address 184.168.221.35.

File URLs download from 184.168.221.35.

12 / 68    (Adware)

12 / 68    (Adware)

12 / 68    (Adware)
http://www.torntv-tv.com/.../Love_In_The_End_2013.exe  (windows_phone_7_advanced_development_using_vs2010.exe)

17 / 68    (Adware)
http://www.torntv-tv.com/.../Sony_Vegas_Pro_12_Build_367_(64_bit_patch-KHG)_ChingLiu.exe  (discografia_antonio_orozco_[www_todocvcd_com]_by_basy.exe)

5 / 68      (Adware)
http://www.torntv-tv.com/.../AVAST_7_FREE_ANTIVIRUS_SERIAL_KEYS_2038_.exe  (guitar_pro_5_2_with_complete_rse_packs_.exe)

12 / 68    (Adware)
http://www.torntv-tv.com/.../Screaming_Females_What_If_Someone_Is_Watching_Their_TV_320K_M4A.exe  (fl_studio_producer_edition_11_0_0_final_keygen___crack.exe)

12 / 68    (Adware)

1 / 68      (Adware)
https://stl.files-free.net/.../SaveAs.exe  (6335a917cad50b999ca059d0feed0122)

12 / 68    (Adware)
http://www.torntv-tv.com/.../Vashti_Bunyan_1970_Just_Another_Diamond_Day.exe  (fl_studio_producer_edition_11_0_0_final_keygen___crack.exe)

24 / 68    (Adware)

1 / 68      (Adware)
https://stl.files-free.net/.../300Hero_Thailand.exe  (92ea74487d6bf1d1814932abc9d65c00)

1 / 68      (Adware)
https://stl.files-free.net/.../Foxit Phantom 1.0.1.0901...???????????????????].exe  (foxit phantom 1.0.1.0901...มารวมเป็นหนึ่งเดียว].exe)

12 / 68    (Adware)
http://www.torntv-tv.com/.../Grand_Theft_Auto:_Vice_City_(incl__crack).exe  (windows_phone_7_advanced_development_using_vs2010.exe)

17 / 68    (Adware)
http://www.torntv-tv.com/.../Qué_les_pasa_a_los_hombres.exe  (discografia_antonio_orozco_[www_todocvcd_com]_by_basy.exe)

12 / 68    (Adware)
http://www.torntv-tv.com/.../Dr_Dre_-_The_Detox_Chroniclez_Vol_7_(DatPiff.exe  (windows_phone_7_advanced_development_using_vs2010.exe)

12 / 68    (Adware)
http://www.torntv-tv.com/.../Transformers_Fall_of_Cybertron-SKIDROW.exe  (windows_phone_7_advanced_development_using_vs2010.exe)

12 / 68    (Adware)
http://www.torntv-tv.com/.../Huntress_-_Starbound_Beast_(2013)_Album_Tracklist.exe  (windows_phone_7_advanced_development_using_vs2010.exe)

12 / 68    (Adware)
http://www.torntv-tv.com/.../Keyshot_3.3.exe  (windows_phone_7_advanced_development_using_vs2010.exe)

1 / 68      (Adware)
https://stl.files-free.net/.../??????????? - ????? ????...& ????? ??????? Midi.exe  (ทรงพระเจริญ - อัสนี โชติ...& ยืนยง โอภากุล midi.exe)

1 / 68      (Adware)
https://stl.files-free.net/.../?????????.exe  (หมาเย็ดคน.exe)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

41 / 68    (Adware)
https://stl.files-free.net/smart-download/.../SaveAs.exe  (a3e68c625eb81ab5d39e8c2388fed173)

1 / 68      (Adware)
https://stl.files-free.net/.../????????? ??????????? ??...owered by discuz!_20.exe  (ดูหนังโป๊ โหลดหนังโป๊ รู...owered by discuz!_20.exe)

 
Latest 30 of 160 download URLs

The following 74 files have been seen to comunicate with this IP address in live environments.

TCP port 80

 
Latest 20 of 75 files

The geographical location of this IP address.

Country:
United States (US)

Region:
Arizona

City:
Scottsdale

Coordinates:
33.602, -111.888

The ARIN network assigned organization for IP address 184.168.221.35.

Org name:
GoDaddy.com, LLC

Org identifier:
GODAD

Org country:
United States (US)

Org region:
Arizona

Org city:
Scottsdale

Org address:
14455 N Hayden Road

ARIN WHOIS:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# The following results may also be obtained via:
NetRange: 184.168.0.0 - 184.168.255.255
CIDR: 184.168.0.0/16
OriginAS: AS26496
NetName: GO-DADDY-COM-LLC
NetHandle: NET-184-168-0-0-1
Parent: NET-184-0-0-0-0
NetType: Direct Allocation
Comment: Please send abuse complaints to abuse@godaddy.com
RegDate: 2010-09-21
Updated: 2014-02-25
Ref: http://whois.arin.net/rest/net/NET-184-168-0-0-1

OrgName: GoDaddy.com, LLC
OrgId: GODAD
Address: 14455 N Hayden Road
Address: Suite 226
City: Scottsdale
StateProv: AZ
PostalCode: 85260
Country: US
RegDate: 2007-06-01
Updated: 2012-03-15
Comment: Please send abuse complaints to abuse@godaddy.com
Ref: http://whois.arin.net/rest/org/GODAD

OrgAbuseHandle: ABUSE51-ARIN
OrgAbuseName: Abuse Department
OrgAbusePhone: +1-480-624-2505
OrgAbuseEmail: abuse@godaddy.com
OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE51-ARIN

OrgNOCHandle: NOC124-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-480-505-8809
OrgNOCEmail: noc@godaddy.com
OrgNOCRef: http://whois.arin.net/rest/poc/NOC124-ARIN

OrgTechHandle: NOC124-ARIN
OrgTechName: Network Operations Center
OrgTechPhone: +1-480-505-8809
OrgTechEmail: noc@godaddy.com
OrgTechRef: http://whois.arin.net/rest/poc/NOC124-ARIN

RNOCHandle: NOC124-ARIN
RNOCName: Network Operations Center
RNOCPhone: +1-480-505-8809
RNOCEmail: noc@godaddy.com
RNOCRef: http://whois.arin.net/rest/poc/NOC124-ARIN

RAbuseHandle: ABUSE51-ARIN
RAbuseName: Abuse Department
RAbusePhone: +1-480-624-2505
RAbuseEmail: abuse@godaddy.com
RAbuseRef: http://whois.arin.net/rest/poc/ABUSE51-ARIN

RTechHandle: NOC124-ARIN
RTechName: Network Operations Center
RTechPhone: +1-480-505-8809
RTechEmail: noc@godaddy.com
RTechRef: http://whois.arin.net/rest/poc/NOC124-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#


Autonomous System Assignment
ASNumber:
26496

ASName:
AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

ASHandle:
AS26496

Remove Malware from 184.168.221.35 - Powered by Reason Core Security