199.59.243.120

Bodis, LLC

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 199.59.243.120 is Bodis, LLC and located in New York within the United States. Currently there are 231 domain names that utilize this address. The primary domain hosted by this IP is www.normaldownload.com along with 230 other domains which are known adware distribution web sites. The address and domain is leased to Amonetize ltd..
Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.CoolAppDownloads.O, PUP.Installer.FortySevenTechSoftware.T, PUP.Installer.FortySevenTechSoftware.q, PUP.Installer.CoolAppDownloads.T, PUP.Installer.BestFreeDownloads.U, PUP.Installer.BestFreeDownloads.S, PUP.Installer.BestFreeDownloads.O, PUP.Installer.Bestopapp.O, PUP.Installer.CoolAppDownloads.S, PUP.Installer.CoolAppDownloads.K, PUP.Installer.BestFreeDownloads.K, PUP.Installer.BestFreeDownloads.T, PUP.Installer.ironSource, Threat.ironSource.Bundler, PUP.installCore.BestFreeDownloads.Installer (M), PUP.installCore.CoolAppDownloads.Installer (M), PUP.NewMedia.Installer.Installer (M), PUP.installCore.Bestopap.Installer (M)
98.00%

VIPRE Antivirus
InstallCore.b, InstallBrain, Threat.4759033, Threat.4786018, Threat.4788237, Threat.4150696, Trojan.Win32.Generic, Threat.5063361
74.00%

Sophos
Install Core Click run software, InstallBrain, PUA 'Install Core Click run software'
72.00%

Dr.Web
Trojan.MulDrop5.10078, Adware.Downware.2473, Trojan.DownLoader11.15987, Trojan.Packed.24524
70.00%

AVG
MalSign.InstallBrain, Adware InstallBrain.AF, Generic, Adware InstallCore, MalSign.Generic
70.00%

Malwarebytes
PUP.Optional.InstallBrain.A, PUP.Optional.InstallCore, PUP.Optional.BestFreeDownloads, PUP.Optional.Downloader, PUP.Optional.InstallCore.A
68.00%

ESET NOD32
Win32/InstallBrain.CE potentially unwanted application, Win32/InstallCore.MU potentially unwanted application, Win32/InstallCore.PL potentially unwanted application
66.00%

K7 AntiVirus
Unwanted-Program
64.00%

K7 Gateway Antivirus
Unwanted-Program
64.00%

Avira AntiVirus
Adware/InstallCore.MUP, APPL/InstallBrain.Gen, Adware/InstallCore.tate, ADWARE/InstallCore.Gen9, Adware/InstallCore.BP, Adware/InstallCore.A.1326
62.00%

The following domains resolved to the IP address 199.59.243.120.

Latest 50 of 231 domains

File URLs download from 199.59.243.120.

1 / 68      (Adware)

 
Latest 30 of 6,041 download URLs

The following file have been seen to comunicate with this IP address in live environments.

TCP port 80

The geographical location of this IP address.

Country:
United States (US)

Region:
New York

City:
New York City

Coordinates:
40.7393, -73.985

The ARIN network assigned organization for IP address 199.59.243.120.

Org name:
Bodis, LLC

Org identifier:
BODIS-1

Org country:
United States (US)

Org region:
New York

Org city:
New York

Org address:
1133 Broadway Suite 706

ARIN WHOIS:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# The following results may also be obtained via:
NetRange: 199.59.240.0 - 199.59.243.255
CIDR: 199.59.240.0/22
OriginAS: AS53665
NetName: BODIS-COM
NetHandle: NET-199-59-240-0-1
Parent: NET-199-0-0-0-0
NetType: Direct Allocation
RegDate: 2010-12-09
Updated: 2012-03-02
Ref: http://whois.arin.net/rest/net/NET-199-59-240-0-1

OrgName: Bodis, LLC
OrgId: BODIS-1
Address: 1133 Broadway Suite 706
City: New York
StateProv: NY
PostalCode: 10010
Country: US
RegDate: 2010-09-27
Updated: 2012-12-20
Ref: http://whois.arin.net/rest/org/BODIS-1

OrgAbuseHandle: BODIS2-ARIN
OrgAbuseName: Bodis Abuse
OrgAbusePhone: +1-877-263-4744
OrgAbuseEmail: abuse@bodis.com
OrgAbuseRef: http://whois.arin.net/rest/poc/BODIS2-ARIN

OrgTechHandle: BODIS3-ARIN
OrgTechName: Bodis Administrator
OrgTechPhone: +1-877-263-4744
OrgTechEmail: dnsadmin@bodis.com
OrgTechRef: http://whois.arin.net/rest/poc/BODIS3-ARIN

OrgNOCHandle: BODIS3-ARIN
OrgNOCName: Bodis Administrator
OrgNOCPhone: +1-877-263-4744
OrgNOCEmail: dnsadmin@bodis.com
OrgNOCRef: http://whois.arin.net/rest/poc/BODIS3-ARIN

RTechHandle: BODIS3-ARIN
RTechName: Bodis Administrator
RTechPhone: +1-877-263-4744
RTechEmail: dnsadmin@bodis.com
RTechRef: http://whois.arin.net/rest/poc/BODIS3-ARIN

RNOCHandle: BODIS3-ARIN
RNOCName: Bodis Administrator
RNOCPhone: +1-877-263-4744
RNOCEmail: dnsadmin@bodis.com
RNOCRef: http://whois.arin.net/rest/poc/BODIS3-ARIN

RAbuseHandle: BODIS2-ARIN
RAbuseName: Bodis Abuse
RAbusePhone: +1-877-263-4744
RAbuseEmail: abuse@bodis.com
RAbuseRef: http://whois.arin.net/rest/poc/BODIS2-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#


Autonomous System Assignment
ASNumber:
53665

ASName:
BODIS-1 - Bodis, LLC,US

ASHandle:
AS53665

Remove Malware from 199.59.243.120 - Powered by Reason Core Security