82.80.196.113

RIPE Network Coordination Centre

IP Address Information

The Internet Service Provider (ISP) that owns the network address of 82.80.196.113 is RIPE Network Coordination Centre and located in Netherlands. Currently there are 15 domain names that utilize this address. The primary domain hosted by this IP is www.widdit.com along with 14 other domains which are known adware distribution web sites. The address and domain is leased to One Floor App LTD.
Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.SimplyTech.H, PUP.Installer.SimplyTech.Q, PUP.Installer.SimplyTech.P, PUP.Installer.OneFloorApp.H, PUP.Installer.OneFloorApp.D, PUP.Installer.OneFloorApp.M, PUP.Installer.OneFloorApp.I, PUP.Installer.OneFloorApp.Q, PUP.Installer.OneFloorApp.L, PUP.Installer.SimplyTech.s, PUP.Widdit.OneFloorApp.Bundler (M), PUP.Widdit.SimplyTe.Bundler (M), PUP.Widdit (M)
100.00%

Malwarebytes
PUP.Optional.HomeTab.A, PUP.Optional.SimplyTech.A, PUP.Optional.OneFloorApp, PUP.Optional.SimplyInstaller.A, PUP.Optional.ToolbarWid
38.00%

Dr.Web
Adware.Downware.1490, Adware.Downware.835, Adware.Downware.2109, Adware.Downware.3113, Adware.Downware.1490, Adware.Downware.835
38.00%

IKARUS anti.virus
BehavesLike, AdWare.Toolbar, AdWare.Zapp, PUA.Toolbar.Widdit, PUA.SimplyTech
34.00%

Avira AntiVirus
ADWARE/Adware.Gen
34.00%

ESET NOD32
Win32/Toolbar.Widdit.A potentially unwanted application
32.00%

Qihoo 360 Security
Malware.QVM06.Gen
32.00%

G Data
Win32.Application.SimplyTech, Adware.Zapp, Win32.Application.Firstfloor
28.00%

McAfee
PUP-FNE, Program.PUP-FNE, Trojan.Artemis!909C53FE174D
26.00%

Kaspersky
not-a-virus:WebToolbar.Win32.FirstFloor
26.00%

The following domains resolved to the IP address 82.80.196.113.

File URLs download from 82.80.196.113.

 
Latest 30 of 1,755 download URLs

The following 94 files have been seen to comunicate with this IP address in live environments.

TCP port 80

TCP port 80

TCP port 80

TCP port 80

TCP port 80

TCP port 80

TCP port 80

TCP port 80

TCP port 80

TCP port 80

TCP port 80

TCP port 80

 
Latest 20 of 94 files

The geographical location of this IP address.

Country:
Israel (IL)

Region:
Tel Aviv

City:
Tel Aviv

Coordinates:
32.0809, 34.7806

The ARIN network assigned organization for IP address 82.80.196.113.

Org name:
RIPE Network Coordination Centre

Org identifier:
RIPE

Org country:
Netherlands (NL)

Org city:
Amsterdam

Org address:
P.O. Box 10096

ARIN WHOIS:
NetRange: 82.0.0.0 - 82.255.255.255
CIDR: 82.0.0.0/8
OriginAS:
NetName: 82-RIPE
NetHandle: NET-82-0-0-0-1
Parent:
NetType: Allocated to RIPE NCC
RegDate: 2002-11-23
Updated: 2004-03-16
Ref: http://whois.arin.net/rest/net/NET-82-0-0-0-1

OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2011-09-24
Ref: http://whois.arin.net/rest/org/RIPE

OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: ncc@ripe.net
OrgTechRef: http://whois.arin.net/rest/poc/RNO29-ARIN

OrgAbuseHandle: RNO29-ARIN
OrgAbuseName: RIPE NCC Operations
OrgAbusePhone: +31 20 535 4444
OrgAbuseEmail: ncc@ripe.net
OrgAbuseRef: http://whois.arin.net/rest/poc/RNO29-ARIN


Autonomous System Assignment
ASNumber:
8551

ASName:
BEZEQ-INTERNATIONAL-AS Bezeqint Internet Backbone,IL

ASHandle:
AS8551

Remove Malware from 82.80.196.113 - Powered by Reason Core Security