209.139.253.23

link.safecart.com

IP Address Information

The IP Address resolves to the DNS record of link.safecart.com. Currently there are 196 domain names that utilize this address. The primary domain hosted by this IP is bramsol.enigma.safecart.com along with 195 other domains which are known adware distribution web sites.
Scanner detections:
Detections  (77% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.SpeedyPCSoftware.W, PUP.PCCleaner.Installer.Meta (M), PUP.ParetoLogic.Optional (L), PUP.Optional.Installer.RedDogMedia.Y, PUP.Optional.Installer.RedDogMedia.M, PUP.Optional.Installer.MaxTuneup.U, PUP.ParetoLogic.Optional.Installer.Meta (L), PUP.Optional.Installer.U, PUP.Optional.FiorentinoMedia.W, PUP.DriverSoft.DriverIn.Installer.Meta (L), PUP.Optional.Installer.Y
84.62%

Dr.Web
Trojan.Siggen5.45084, Trojan.KillProc.36255, Program.Unwanted.297, Trojan.KillProc.36496
19.23%

Trend Micro House Call
TROJ_GEN.F47V0715, TROJ_GEN.F47V1009, Suspicious_GEN.F47V0220
11.54%

AVG
Smartpcso, Win32/DH
7.69%

Baidu Antivirus
Trojan.Win32.FakeAV
3.85%

XVirus List
Win.Detected
3.85%

Boost by Reason
PUP.Installer.RedDogMedia.Y
3.85%

Bkav FE
W32.NeshtaB.PE
3.85%

MicroWorld eScan
Win32.Neshta.A
3.85%

nProtect
Virus/W32.Neshta
3.85%

The following domains resolved to the IP address 209.139.253.23.

Latest 50 of 196 domains

File URLs download from 209.139.253.23.

14 / 68    (Malware)

2 / 68      (PUP)

3 / 68      (PUP)
http://bluesquad.safecart.com/.../download  (smartdriverupdater.exe)

1 / 68      (PUP)

2 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

0 / 68
http://spark2.sparktrust.safecart.com/.../download  (sparktrust driver updater setup.exe)

1 / 68      (inconclusive)

1 / 68      (PUP)

1 / 68      (PUP)
http://threats1.nwpc.safecart.com/.../download?36034371  (pc_cleaner_pro_installer_a3.exe)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

0 / 68

0 / 68

1 / 68      (PUP)

1 / 68      (inconclusive)

2 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (inconclusive)

1 / 68      (inconclusive)

1 / 68      (inconclusive)

1 / 68      (PUP)

2 / 68      (PUP)

2 / 68      (inconclusive)

2 / 68      (PUP)

 
Latest 30 of 1,827 download URLs

The geographical location of this IP address.

Country:
Canada (CA)

Region:
British Columbia

City:
Victoria

Coordinates:
48.4236, -123.364

ARIN WHOIS:
Revenuewire Inc GT-209-139-253-0-CX (NET-209-139-253-0-1) 209.139.253.0 - 209.139.253.255
Bell Canada GT-PAC-BLK2 (NET-209-139-192-0-1) 209.139.192.0 - 209.139.255.255



Autonomous System Assignment
ASNumber:
6539

ASName:
GT-BELL - Bell Canada

ASHandle:
AS6539

Remove Malware from 209.139.253.23 - Powered by Reason Core Security