67.210.218.136

136.218.210-67.q9.net

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 67.210.218.136 is Q9 Networks Inc. and located in On within Canada. The IP Address resolves to the DNS record of 136.218.210-67.q9.net. Currently there are 2 domain names that utilize this address. While the physical location of the server hosting the address is located in Ontario, Q9 Networks Inc. is registered in Toronto, On. The primary domain hosted by this IP is www.downloadcamp.com along with 1 other domains which are known adware distribution web sites. The address and domain is leased to Downloadius S.a.r.l.
Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

VIPRE Antivirus
Downloadius
100.00%

Reason Heuristics
PUP.Installer.DownloadiusSarl.R, PUP.Installer.DownloadiusSarl.n, PUP.Installer.DownloadiusSarl.u
100.00%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
66.67%

ViRobot
Trojan.Win32.Agent.87672
66.67%

Trend Micro House Call
TROJ_GEN.F47V1106
33.33%

herdProtect (fuzzy)
a variant of f07e81bb3e0527fc6f80109e0d0cc131bd3ed053
33.33%

Malwarebytes
PUP.Optional.Downloadius
33.33%

ESET NOD32
Win32/Toolbar.Montiera
33.33%

SUPERAntiSpyware
Trojan.Agent/Gen-Nullo[Short]
33.33%

Dr.Web
Trojan.Damaged.1
33.33%

The following domains resolved to the IP address 67.210.218.136.

File URLs download from 67.210.218.136.

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)
http://www.downloadcamp.com/.../downloader.php?aflt=CD5&mt_aflt=CD6213&subid1=2227406066  (hd_player__cd5mtcd11541_s3yykxp5z260z3145994_0_0_0_0.exe)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)
http://www.downloadcamp.com/.../downloader.php?aflt=CD5&mt_aflt=CD7045&subid1=pp&subid2=cmi4  (hd_player__cd5mtcd11541_s3yykxp5z260z3145994_0_0_0_0.exe)

7 / 68      (Adware)
http://www.downloadcamp.com/.../downloader.php?aflt=CD5&mt_aflt=CD7045&subid1=pp&subid2=39zrp  (hd_player__cd5mtcd11541_s3yykxp5z260z3145994_0_0_0_0.exe)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)

7 / 68      (Adware)
http://www.downloadcamp.com/.../downloader.php?aflt=CD5&mt_aflt=CD6213&subid1=2214868934  (hd_player__cd5mtcd11541_s3yykxp5z260z3145994_0_0_0_0.exe)

7 / 68      (Adware)
http://www.downloadcamp.com/.../downloader.php?aflt=CD5&mt_aflt=CD6213&subid1=2196992241  (hd_player__cd5mtcd11541_s3yykxp5z260z3145994_0_0_0_0.exe)

7 / 68      (Adware)
http://www.downloadcamp.com/.../downloader.php?aflt=CD5&mt_aflt=CD7045&subid1=pp&subid2=3bs4  (hd_player__cd5mtcd11541_s3yykxp5z260z3145994_0_0_0_0.exe)

 
Latest 30 of 587 download URLs

The following file have been seen to comunicate with this IP address in live environments.

TCP port 80

The geographical location of this IP address.

Country:
Canada (CA)

Region:
Ontario

City:
Toronto

Coordinates:
43.6471, -79.381

The ARIN network assigned organization for IP address 67.210.218.136.

Org name:
Q9 Networks Inc.

Org identifier:
Q9NT

Org country:
Canada (CA)

Org region:
On

Org city:
Toronto

Org address:
77 King Street West Suite 4400

ARIN WHOIS:
NetRange: 67.210.208.0 - 67.210.223.255
CIDR: 67.210.208.0/20
OriginAS: AS36030, AS36031, AS40341, AS12188
NetName: Q9-NET5
NetHandle: NET-67-210-208-0-1
Parent: NET-67-0-0-0-0
NetType: Direct Allocation
RegDate: 2008-10-23
Updated: 2012-02-24
Ref: http://whois.arin.net/rest/net/NET-67-210-208-0-1

OrgName: Q9 Networks Inc.
OrgId: Q9NT
Address: 77 King Street West Suite 4400
City: Toronto
StateProv: ON
PostalCode: M5K-1J3
Country: CA
RegDate:
Updated: 2011-09-24
Ref: http://whois.arin.net/rest/org/Q9NT

ReferralServer: rwhois://rwhois.q9.net:4321/

OrgTechHandle: ZQ8-ARIN
OrgTechName: IP Admin
OrgTechPhone: +1-416-362-7000
OrgTechEmail: IPadmin@q9.com
OrgTechRef: http://whois.arin.net/rest/poc/ZQ8-ARIN

OrgAbuseHandle: ZQ8-ARIN
OrgAbuseName: IP Admin
OrgAbusePhone: +1-416-362-7000
OrgAbuseEmail: IPadmin@q9.com
OrgAbuseRef: http://whois.arin.net/rest/poc/ZQ8-ARIN

RTechHandle: ZQ8-ARIN
RTechName: IP Admin
RTechPhone: +1-416-362-7000
RTechEmail: IPadmin@q9.com
RTechRef: http://whois.arin.net/rest/poc/ZQ8-ARIN


Autonomous System Assignment
ASNumber:
36031

ASName:
Q9-AS-BRAM - Q9 Networks Inc.

ASHandle:
AS36031

Remove Malware from 67.210.218.136 - Powered by Reason Core Security