69.64.250.18

mail.mail-inet.com

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 69.64.250.18 is WANSecurity, Inc. and located in Kansas within the United States. The IP Address resolves to the DNS record of mail.mail-inet.com. Currently there are 2 domain names that utilize this address. While the physical location of the server hosting the address is located in California, WANSecurity, Inc. is registered in Overland Park, Kansas. The primary domain hosted by this IP is mirror0.disk-tools.com along with 1 other domains which are known adware distribution web sites.
Scanner detections:
Detections  (67% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.OpenCandy
92.31%

ESET NOD32
Win32/DownWare, Win32/OpenCandy
76.92%

Rising Antivirus
PE:PUF.OpenCandy!1.9DE5, PE:Malware.Packed!1.9C4E
69.23%

Reason Heuristics
PUP.OpenCandy (M), PUP.OpenCandy.Installer (L)
53.85%

Antiy Labs AVL
Virus/Win32.Suspic.gen
46.15%

Trend Micro House Call
TROJ_GEN.F47V1028, TROJ_GEN.F47V1114, TROJ_GEN.F47V0313, TROJ_GEN.R047H05CC15
30.77%

McAfee
Artemis!516E699BE431, Artemis!D393A30793F4, Generic Obfuscated.c, Trojan.Artemis!94E8C2090D57
30.77%

VIPRE Antivirus
Opencandy, Trojan.Win32.Generic
30.77%

McAfee Web Gateway
Artemis!516E699BE431, Artemis!D393A30793F4, Generic Obfuscated.c, BehavesLike.Win32.BadFile.fc
30.77%

Filseclab Twister
W32.OpenCandy.tmks.arc
7.69%

The following domains resolved to the IP address 69.64.250.18.

File URLs download from 69.64.250.18.

6 / 68      (Unwanted)

6 / 68      (Unwanted)

6 / 68      (Unwanted)

6 / 68      (Unwanted)

7 / 68      (Unwanted)

6 / 68      (Unwanted)

6 / 68      (Unwanted)

6 / 68      (Unwanted)

6 / 68      (Unwanted)

6 / 68      (Unwanted)

6 / 68      (Unwanted)

5 / 68      (Unwanted)

 
Latest 30 of 779 download URLs

The following 2 files have been seen to comunicate with this IP address in live environments.

TCP port 80

The geographical location of this IP address.

Country:
United States (US)

Region:
California

City:
San Francisco

Coordinates:
37.7749, -122.419

The ARIN network assigned organization for IP address 69.64.250.18.

Org name:
WANSecurity, Inc.

Org identifier:
WANSE

Org country:
United States (US)

Org region:
Kansas

Org city:
Overland Park

Org address:
7508 Newton Ave.

Org website:
http://www.wansecurity.com

ARIN WHOIS:
NetRange: 69.64.240.0 - 69.64.255.255
CIDR: 69.64.240.0/20
OriginAS: AS1421
NetName: WANSECURITY-GLOBALNET
NetHandle: NET-69-64-240-0-1
Parent: NET-69-0-0-0-0
NetType: Direct Allocation
RegDate: 2013-08-29
Updated: 2013-10-31
Ref: http://whois.arin.net/rest/net/NET-69-64-240-0-1

OrgName: WANSecurity, Inc.
OrgId: WANSE
Address: 7508 Newton Ave.
City: Overland Park
StateProv: KS
PostalCode: 66212
Country: US
RegDate: 2009-04-27
Updated: 2011-12-09
Comment: http://www.wansecurity.com
Comment: US NOC hours 10AM to 6PM CST
Comment: JP NOC hours 10:00 to 18:00 JST
Comment: Dedicated and Cloud Hosting, Network
Comment: Management and Monitoring Solutions
Ref: http://whois.arin.net/rest/org/WANSE

ReferralServer: rwhois://whois.wansecurity.com:4321

OrgNOCHandle: NETWO3070-ARIN
OrgNOCName: Network Operations
OrgNOCPhone: +1-213-785-7800
OrgNOCEmail: noc@wansecurity.com
OrgNOCRef: http://whois.arin.net/rest/poc/NETWO3070-ARIN

OrgAbuseHandle: NETWO3070-ARIN
OrgAbuseName: Network Operations
OrgAbusePhone: +1-213-785-7800
OrgAbuseEmail: noc@wansecurity.com
OrgAbuseRef: http://whois.arin.net/rest/poc/NETWO3070-ARIN

OrgTechHandle: NETWO3070-ARIN
OrgTechName: Network Operations
OrgTechPhone: +1-213-785-7800
OrgTechEmail: noc@wansecurity.com
OrgTechRef: http://whois.arin.net/rest/poc/NETWO3070-ARIN

RTechHandle: NETWO3070-ARIN
RTechName: Network Operations
RTechPhone: +1-213-785-7800
RTechEmail: noc@wansecurity.com
RTechRef: http://whois.arin.net/rest/poc/NETWO3070-ARIN

RNOCHandle: NETWO3070-ARIN
RNOCName: Network Operations
RNOCPhone: +1-213-785-7800
RNOCEmail: noc@wansecurity.com
RNOCRef: http://whois.arin.net/rest/poc/NETWO3070-ARIN

RAbuseHandle: NOCAB16-ARIN
RAbuseName: NOC-AbuseTeam
RAbusePhone: +1-213-785-7800
RAbuseEmail: abuse@wansecurity.com
RAbuseRef: http://whois.arin.net/rest/poc/NOCAB16-ARIN


Autonomous System Assignment
ASNumber:
1421

ASName:
WANSECURITY - WANSecurity, Inc.

ASHandle:
AS1421

Remove Malware from 69.64.250.18 - Powered by Reason Core Security