50.7.28.2

FDCservers.net

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 50.7.28.2 is FDCservers.net and located in Illinois within the United States. Currently there are 10 domain names that utilize this address. The primary domain hosted by this IP is dn.yourfiledownloader.com along with 9 other domains which are known adware distribution web sites. The address and domain is leased to Via Advertising Group Limited.
Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.ViaAdvertisingGroupLimited.Q, PUP.ViaAdvertisingGroupLimited.c, PUP.ViaAdvertisingGroupLimited.R, PUP.ViaAdvertisingGroupLimited.P, PUP.ViaAdvertisingGroupLimited.u, PUP.ViaAdvertisingGroupLimited.j, PUP.ViaAdvertisingGroupLimited.h, PUP.ViaAdvertisingGroupLimited.n
100.00%

VIPRE Antivirus
Via Advertising
82.35%

ESET NOD32
Win32/YourFileDownloader (variant), Win32/ExpressDownloader (variant)
82.35%

avast!
Win32:Downloader-UBW [Adw], Win32:Downloader-UEO [PUP], Win32:Downloader-UGW [PUP], Win32:PUP-gen [PUP]
76.47%

Dr.Web
Adware.Downware.1140, Adware.Downware.1451, Tool.DownLoader.42, Trojan.StartPage.56734, Tool.DownLoader.45
76.47%

herdProtect (fuzzy)
a variant of 1d5b7e3da8f3f6bfd8b428c052ad434fe2e08bcc, a variant of 3c35a2f3adc34c553af67778db480f22a46b6dc6, a variant of 5cd96e77a5f276f9dd191dfb09f21010d7be2161
64.71%

McAfee
Artemis!BA792B193973, Artemis!CB29C630728E, Artemis!ACD966385438, Artemis!91F5287BC48E, Artemis!E35EA3EA7503, Artemis!96D1CD5E0ACA, Artemis!23D3A26BA0FE
58.82%

Malwarebytes
PUP.Optional.YourFileDownloader, PUP.Optional.YourfileDownloader
58.82%

Trend Micro House Call
TROJ_GEN.F47V0623, TROJ_GEN.F47V0827, TROJ_SPNV.03KD13, TROJ_GEN.F47V0920, TROJ_GEN.F47V0607, TROJ_SPNV.03JG13, TROJ_SPNR.08JG12
58.82%

Fortinet FortiGate
Riskware/YourFileDownloader, Adware/Fam.NB, W32/SPNR.08JG12!tr, W32/SPNR.08BP13!tr
52.94%

The following domains resolved to the IP address 50.7.28.2.

File URLs download from 50.7.28.2.

19 / 68    (Adware)

19 / 68    (Adware)

19 / 68    (Adware)

19 / 68    (Adware)

20 / 68    (Adware)

15 / 68    (Adware)

 
Latest 30 of 1,313 download URLs

The geographical location of this IP address.

Country:
United States (US)

Region:
Illinois

City:
Chicago

Coordinates:
41.8782, -87.6254

The ARIN network assigned organization for IP address 50.7.28.2.

Org name:
FDCservers.net

Org identifier:
FDCSE

Org country:
United States (US)

Org region:
Illinois

Org city:
Chicago

Org address:
141 W Jackson Blvd. #1135

ARIN WHOIS:
NetRange: 50.7.0.0 - 50.7.255.255
CIDR: 50.7.0.0/16
OriginAS: AS30058
NetName: FDCSERVERS
NetHandle: NET-50-7-0-0-1
Parent: NET-50-0-0-0-0
NetType: Direct Allocation
RegDate: 2010-10-18
Updated: 2012-02-24
Ref: http://whois.arin.net/rest/net/NET-50-7-0-0-1

OrgName: FDCservers.net
OrgId: FDCSE
Address: 141 W Jackson Blvd. #1135
City: Chicago
StateProv: IL
PostalCode: 60604
Country: US
RegDate: 2003-05-20
Updated: 2012-03-28
Ref: http://whois.arin.net/rest/org/FDCSE

ReferralServer: rwhois://rwhois.fdcservers.net:4321

OrgAbuseHandle: ABUSE438-ARIN
OrgAbuseName: ABUSE department
OrgAbusePhone: +1-312-423-6675
OrgAbuseEmail: abuse@fdcservers.net
OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE438-ARIN

OrgNOCHandle: TECHS72-ARIN
OrgNOCName: Tech Support
OrgNOCPhone: +1-312-423-6675
OrgNOCEmail: support@fdcservers.net
OrgNOCRef: http://whois.arin.net/rest/poc/TECHS72-ARIN

OrgTechHandle: TECHS72-ARIN
OrgTechName: Tech Support
OrgTechPhone: +1-312-423-6675
OrgTechEmail: support@fdcservers.net
OrgTechRef: http://whois.arin.net/rest/poc/TECHS72-ARIN


Autonomous System Assignment
ASNumber:
6461

ASName:
MFNX MFN - Metromedia Fiber Network

ASHandle:
AS6461

Remove Malware from 50.7.28.2 - Powered by Reason Core Security