Server location:
Oregon, United States (US)
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US
Scanner detections:
Malware distribution (100% detected)
Scan engine
Details
Detections
Reason Heuristics
Threat.Win.Reputation.IMP
100.00%
Emsisoft Anti-Malware
Gen:Variant.Adware.MPlug.51
33.33%
F-Secure
Gen:Variant.Adware.MPlug
33.33%
Lavasoft Ad-Aware
Gen:Variant.Adware.MPlug.51
33.33%
Norman
Gen:Variant.Adware.MPlug.51
33.33%
MicroWorld eScan
Gen:Variant.Adware.MPlug.51
33.33%
McAfee
Multiplug-FAD
33.33%
Malwarebytes
PUP.Optional.Multiplug
33.33%
K7 AntiVirus
Unwanted-Program
33.33%
Arcabit
Trojan.Adware.MPlug.51
33.33%
avast!
Win32:MultiPlug-AAE [PUP]
33.33%
Bitdefender
Gen:Variant.Adware.MPlug.51
33.33%
AhnLab V3 Security
PUP/Win32.MultiPlug
33.33%
G Data
Gen:Variant.Adware.MPlug.51
33.33%
Vba32 AntiVirus
suspected of Heur.Malware-Cryptor.Multiplug
33.33%
The domain a.contextdiscount.xyz has been seen to resolve to the following 5 IP addresses.
192.193.28.185.gransy.com
July 27, 2016
ec2-52-26-142-237.us-west-2.compute.amazonaws.com
June 26, 2015
ec2-52-26-130-111.us-west-2.compute.amazonaws.com
June 26, 2015
ec2-52-25-121-207.us-west-2.compute.amazonaws.com
June 26, 2015
File downloads found at URLs served by a.contextdiscount.xyz.
The following 21 files have been seen to comunicate with a.contextdiscount.xyz in live environments.