69.65.38.117

shaynesherman.com

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 69.65.38.117 is GigeNET and located in Illinois within the United States. The IP Address resolves to the DNS record of shaynesherman.com. Currently there are 30 domain names that utilize this address. The primary domain hosted by this IP is tune-up.org along with 29 other domains which are known adware distribution web sites.
Scanner detections:
Detections  (85% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.ParetoLogic.Optional.Installer.Meta (L), PUP.Air Software.Download.Bundler (M)
100.00%

AVG
Paretologic Inc.
5.88%

Trend Micro House Call
Suspicious_GEN.F47V0109
5.88%

Dr.Web
riskware program Program.Unwanted.686
5.88%

F-Secure
Gen:Adware.BrowseFox.1
5.88%

The following domains resolved to the IP address 69.65.38.117.

File URLs download from 69.65.38.117.

1 / 68      (Adware)
http://downloadd.org/.../avg3.php  (avg-antivirus-free.exe)

0 / 68
http://downloadd.org/.../notepad.exe  (npp.6.5.3.installer.exe)

0 / 68
http://ezdownload.co/.../klite.exe  (k-lite_codec_pack_1015_mega.exe)

1 / 68      (PUP)
http://error-tool.com/.../index.php  (regcureprosetup_52559eaf-95c8-44eb-99f6-c27a0c09c080_.exe)

3 / 68      (PUP)
http://error-tool.net/a/.../index.php  (regcureprosetup_edcdfb75-9201-4924-b750-0fd0009942d1_.exe)

3 / 68      (PUP)
http://virus-help.net/recommends/.../m.php  (regcureprosetup_edcdfb75-9201-4924-b750-0fd0009942d1_.exe)

1 / 68      (PUP)

1 / 68      (PUP)

2 / 68      (PUP)
http://spyware-scan.net/recommends/.../m.php  (regcureprosetup_ebb3049_.exe)

1 / 68      (PUP)
http://file-help.net/recommends/.../m.php  (regcureprosetup_rw.exe)

0 / 68

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)
http://tune-up.org/recommends/.../m.php  (regcureprosetup_bing.exe)

The following file have been seen to comunicate with this IP address in live environments.

The geographical location of this IP address.

Country:
United States (US)

Region:
Illinois

City:
Chicago

Coordinates:
41.85, -87.65

The ARIN network assigned organization for IP address 69.65.38.117.

Org name:
GigeNET

Org identifier:
DMPL

Org country:
United States (US)

Org region:
Illinois

Org city:
Arlington Heights

Org address:
545 E Algonquin Rd

Org website:
www.gigenet.com

ARIN WHOIS:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=69.65.38.117?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
#

NetRange: 69.65.0.0 - 69.65.63.255
CIDR: 69.65.0.0/18
NetName: IPNAP
NetHandle: NET-69-65-0-0-1
Parent: NET69 (NET-69-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS32181
Organization: GigeNET (DMPL)
RegDate: 2003-07-30
Updated: 2013-05-09
Comment: www.gigenet.com
Ref: http://whois.arin.net/rest/net/NET-69-65-0-0-1


OrgName: GigeNET
OrgId: DMPL
Address: 545 E Algonquin Rd
Address: Suite D
City: Arlington Heights
StateProv: IL
PostalCode: 60005
Country: US
RegDate: 2011-03-04
Updated: 2011-06-23
Comment: http://www.gigenet.com
Ref: http://whois.arin.net/rest/org/DMPL


OrgAbuseHandle: ABUSE2935-ARIN
OrgAbuseName: Abuse Department
OrgAbusePhone: +1-800-561-2656
OrgAbuseEmail: abuse@gigenet.com
OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE2935-ARIN

OrgNOCHandle: IPADM152-ARIN
OrgNOCName: IP Administrator
OrgNOCPhone: +1-800-561-2656
OrgNOCEmail: ip-admin@coloquest.com
OrgNOCRef: http://whois.arin.net/rest/poc/IPADM152-ARIN

OrgTechHandle: IPADM152-ARIN
OrgTechName: IP Administrator
OrgTechPhone: +1-800-561-2656
OrgTechEmail: ip-admin@coloquest.com
OrgTechRef: http://whois.arin.net/rest/poc/IPADM152-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#


Autonomous System Assignment
ASNumber:
32181

ASName:
ASN-GIGENET - GigeNET,US

ASHandle:
AS32181

Remove Malware from 69.65.38.117 - Powered by Reason Core Security