192.230.74.93

192.230.74.93.ip.incapdns.net

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 192.230.74.93 is Incapsula Inc and located in California within the United States. The IP Address resolves to the DNS record of 192.230.74.93.ip.incapdns.net. Currently there are 84 domain names that utilize this address. While the physical location of the server hosting the address is located in Georgia, Incapsula Inc is registered in Redwood Shores, California. The primary domain hosted by this IP is bit89.com along with 83 other domains which are known adware distribution web sites.
Scanner detections:
Detections  (94% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.4218.Conduit.J, PUP.Conduit.V, PUP.4323.Conduit.R, PUP.ClientConnect.V, PUP.Conduit.P, PUP.PluginUpdateSL.FF, PUP.Installer.PluginUpdateSL.F, PUP.Softpulse.PluginUpdateSL, PUP.Conduit.Bundler (M), PUP.Softpulse.PluginUpdate.Bundler (M), PUP.Downloadius.Downloadious.Installer (M), PUP.installCore.WorldSetup (M), PUP.Softpulse.SmartSecureSoftwareSl.Bundler (M), PUP.Somoto.Bundler (M), PUP.Outbrowse.GiveAwaysoftware.Bundler (M), PUP.Perion.Bundler.Conduit (M), PUP.installCore.IronInst.Installer (M), PUP.Softpulse.PluginUp.Bundler (M), PUP.IMALI.IMALINIM.Installer (M), PUP.Somoto (M), PUP.Softpulse (M), PUP.Conduit (M)
100.00%

VIPRE Antivirus
Conduit, Threat.4786236, Threat.4783235, Threat.4734384, Threat.4150696
40.43%

Dr.Web
Adware.Conduit.6, Threat.Undefined, Adware.Conduit.87, Trojan.Domaiq.107, Trojan.Domaiq.105, Trojan.Domaiq.118, Trojan.DownLoader12.19495, Adware.BGuard.15
38.30%

Malwarebytes
PUP.Optional.Conduit.A, PUP.Optional.ClientConnect, PUP.Optional.DigiPlug, PUP.Optional.SoftPulse.gen
34.04%

Panda Antivirus
Adware/Conduit, PUP/Conduit.A, Trj/Genetic.gen
29.79%

ESET NOD32
Win32/Conduit.SearchProtect.J potentially unwanted application, Win32/SoftPulse.S potentially unwanted application, Win32/SoftPulse.X potentially unwanted application
25.53%

Kaspersky
not-a-virus:WebToolbar.JS.Condonit, not-a-virus:Downloader.Win32.DriverUpd, not-a-virus:AdWare.Win32.SoftPulse, Trojan.Win32.Inject
25.53%

K7 Gateway Antivirus
Trojan , Unwanted-Program
23.40%

Sophos
PUA 'SoftPulse' (of type Adware)
23.40%

McAfee
Artemis!580284F618E1, Artemis!FF2DF485B50C, Program.SoftPulse
21.28%

The following domains resolved to the IP address 192.230.74.93.

Latest 50 of 84 domains

File URLs download from 192.230.74.93.

0 / 68
http://travesiadoxalo.com/.../tx2015track.zip  (6ba4f7f7e72a600527f4cb567b3c4bb3)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (Adware)
http://doremido.com/.../setup.exe  (a1d7a1df8518710a9732d1d05eb212fc)

1 / 68      (Adware)
http://4shared-music.com/.../?????????????4shared_downloader-aojPYjq5.exe  (ดาวน์โหลดเพลง4shared_downloader-aojpyjq5.exe)

1 / 68      (Adware)
http://4shared-music.com/.../?????????????4shared_downloader-5n3sHdMx.exe  (ดาวน์โหลดเพลง4shared_downloader-5n3shdmx.exe)

1 / 68      (Adware)
http://4shared-music.com/.../?????????????4shared_downloader-I5Ob5vpDj.exe  (ดาวน์โหลดเพลง4shared_downloader-i5ob5vpdj.exe)

1 / 68      (Adware)
http://4shared-music.com/.../?????????????4shared_downloader-I1nY73JNF.exe  (ดาวน์โหลดเพลง4shared_downloader-i1ny73jnf.exe)

9 / 68      (PUP)
http://translateye.com/.../downloadsp.php  (translateye_tsv4589ap.exe)

1 / 68      (Adware)
http://4shared-music.com/.../?????????????4shared_downloader-I0N0KmXIj.exe  (ดาวน์โหลดเพลง4shared_downloader-i0n0kmxij.exe)

1 / 68      (Adware)
http://4shared-music.com/.../?????????????4shared_downloader-IbpSAYnTb.exe  (ดาวน์โหลดเพลง4shared_downloader-ibpsayntb.exe)

1 / 68      (Adware)

13 / 68    (Adware)

33 / 68    (Adware)

The geographical location of this IP address.

Country:
United States (US)

Region:
Georgia

City:
Atlanta

Coordinates:
33.749, -84.388

The ARIN network assigned organization for IP address 192.230.74.93.

Org name:
Incapsula Inc

Org identifier:
INCAP-5

Org country:
United States (US)

Org region:
California

Org city:
Redwood Shores

Org address:
3400 Bridge Parkway, Suite 200

ARIN WHOIS:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# The following results may also be obtained via:
# https://whois.arin.net/rest/nets;q=192.230.74.93?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
#

NetRange: 192.230.64.0 - 192.230.127.255
CIDR: 192.230.64.0/18
NetName: INCAPSULA-NETWORK
NetHandle: NET-192-230-64-0-1
Parent: NET192 (NET-192-0-0-0-0)
NetType: Direct Assignment
OriginAS: AS19551
Organization: Incapsula Inc (INCAP-5)
RegDate: 2013-05-08
Updated: 2013-05-08
Ref: https://whois.arin.net/rest/net/NET-192-230-64-0-1


OrgName: Incapsula Inc
OrgId: INCAP-5
Address: 3400 Bridge Parkway, Suite 200
City: Redwood Shores
StateProv: CA
PostalCode: 94065
Country: US
RegDate: 2010-09-14
Updated: 2016-03-15
Ref: https://whois.arin.net/rest/org/INCAP-5


OrgTechHandle: BRONS9-ARIN
OrgTechName: Bronstein, Tomer
OrgTechPhone: +1-866-250-7659
OrgTechEmail: tomer@incapsula.com
OrgTechRef: https://whois.arin.net/rest/poc/BRONS9-ARIN

OrgAbuseHandle: INCAP1-ARIN
OrgAbuseName: Incapsula AbuseDesk
OrgAbusePhone: +1-866-250-7659
OrgAbuseEmail: abuse@incapsula.com
OrgAbuseRef: https://whois.arin.net/rest/poc/INCAP1-ARIN

OrgNOCHandle: INCAP2-ARIN
OrgNOCName: Incapsula Operations
OrgNOCPhone: +1-866-250-7659
OrgNOCEmail: ip@incapsula.com
OrgNOCRef: https://whois.arin.net/rest/poc/INCAP2-ARIN

OrgTechHandle: INCAP2-ARIN
OrgTechName: Incapsula Operations
OrgTechPhone: +1-866-250-7659
OrgTechEmail: ip@incapsula.com
OrgTechRef: https://whois.arin.net/rest/poc/INCAP2-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#


Autonomous System Assignment
ASNumber:
19551

ASName:
INCAPSULA - Incapsula Inc, US

ASHandle:
AS19551

Remove Malware from 192.230.74.93 - Powered by Reason Core Security