home

www.giftapplicationsconecpt.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
giftapplicationsconecpt.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Vittalia.QUICKIDEAS.Installer (M), PUP.installCore.MICROMAX.Installer (M)
100.00%

Trend Micro House Call
TROJ_GEN.R02SH05EF15
10.00%

The domain www.giftapplicationsconecpt.com has been seen to resolve to the following 15 IP addresses.

54.200.224.121
ec2-54-200-224-121.us-west-2.compute.amazonaws.com
July 22, 2016

54.148.183.210
ec2-54-148-183-210.us-west-2.compute.amazonaws.com
July 22, 2016

52.41.114.34
ec2-52-41-114-34.us-west-2.compute.amazonaws.com
June 30, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
June 30, 2016

54.191.246.249
ec2-54-191-246-249.us-west-2.compute.amazonaws.com
June 30, 2016

54.149.195.20
ec2-54-149-195-20.us-west-2.compute.amazonaws.com
June 30, 2016

52.32.12.104
ec2-52-32-12-104.us-west-2.compute.amazonaws.com
June 5, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
June 5, 2016

52.33.165.25
ec2-52-33-165-25.us-west-2.compute.amazonaws.com
June 5, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
May 22, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 22, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 22, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
May 22, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
May 22, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
May 22, 2016

File downloads found at URLs served by www.giftapplicationsconecpt.com.

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=8ezDo0Diqz9aIO1nynX4icrzZCLdFRZjeH1jC6kmlyg=&c=uflSl/ jXVj2aGYzFMyhgOfmsHCMQPR/5tpwu03K0lW7NTxR3MscSJez67TW6eZZpYvdS4RUFepfIFKqM6J7R813lBsemHMe1EJnLuSYtka6cpP WBuiddSDXSn4BXT3&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (8a70d41180de71ac54f42d6b9d074de5)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=iU5vtInPCOOmxhCcpNIf16gOc84vH1IF3vh/HbPTpMg=&c=11gtdepH5HGLz88jYKSSavuYEhlXzX5yLjmI/GXSPV6yD6XCjXmHfI6l1KJph 5DSSm2NzJDlVEyjyTU8XS870d1jozqBjw 65M3WCjzfKKQg3xi872jaliAXR8mnG7CFu08wBqTx2rp36RKM0l95JnB6zClTEm4IFrrXUaBsSg=&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (f2c0907fda37bf63d3d94edf3152b57e)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=5 W8kukKIPiEI vtE5vXWJKMoH1ipwrmp0FnxPQlLkA=&c=8B2lu8/MGwZnIKvxi7KYR1AOfEUUJL s6Ee4AeZgTCiFhOrNkEoTg3R/Fia5W7wJ5swAp1E hWk6j8e9h45S8bLxeDzymFyaLlrngYZhZ10xoifTHGUqrCYotN4loVsH&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (8a70d41180de71ac54f42d6b9d074de5)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=tmZ0C3rHp1DlZutQxYOtmwDMSDJq4yyUfWCFhq5zWaY=&c=5EHxq kAaDzkIzMbtV99SF6QOR64vAwZ26zliott0jwl7WtTdZiSN4OLJfIOsZQcz/fCp0zuVkziXDI9Mp1 8lCDZw5/bbdfLCIobTiumvG5mObE8U6wshRUrnJ5VhbxdEXy59Xk3kwEQe39JSYy5oFXFwHPjgg1Wk4hzIPtSRB210Os CaKDFCHjDfEdoL&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (f2c0907fda37bf63d3d94edf3152b57e)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=w8nfXP3fyRVvdbQfdhUYB2FJTNQh5CJlw4GEe2cPoPQ=&c=WUL3VpygTG5hvySoSocSDMsWqrnYrV5EGY3ewWfsW9SmGjl9KWBwBJS0jBIskPTaPZBXXl00TkdtPJEA05D1pIydxiWwXi IrXsXhysMETNK0xOYICZ6LMUcQZlbz9ZLPv9MbtTg82ek W FsFRXj7G43nIhPW2Qu8Duo7MpgKgdisoPNMJK0nqDyMjYpRiq&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (f2c0907fda37bf63d3d94edf3152b57e)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=3xePWtrrnpd1CJWa9qzQafq19Xrg5z4GRNznlOaxW A=&c=M8FWjMYiAPThtW2SVFeOzkjhodh6k1OYIB3IV81uN1YmmQzatWYlvmXnlm6QE6SAMm6ZUUTkpbdBkBJJ/AVbStiBzJsdYM7QABbZDgIiQ/Qe7umhp4WgyD41P2u5EanD&downloadAs=skype.exe&fallback_url=http://res.kchuss.com/.../SkypeSetupFull.msi  (9c93b18dc09215098a8e27f6a0e875f2)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=F5N0tGCrnF/iT/4Wx1Avc2cE6k5uauAk7G9bPFlPLMQ=&c=v3Urb7Z1JfrxHQ1zjIQmAal5Y4E44URRWKnL jQc1l9KUNYYHum eYAXfI0NYeFpUDku82ED4agV1BY8lWfhtTbXuG80o60Q3DnoSy2helX16tsxYOr1Upaxq7dB4a1PZhLWZ72TR8fx30J4WlvePYw4oC96a7DtYgtdA74UqAk=&e=1&fallback_url=http://res.mshist.com/.../FalloutShelter.exe  (a5b7e8e542d0e587b8c29f013c865d2c)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=cFtkrDwSSO0JoId MFQqpLoT4ImJQ62vLdMpAlOVvII=&c=tjd5M3jI1G5iQdORdIMcfjEYFX9V6lc94/ZH1zpmyybBwUtYeBfSOfecxQL7l5GVcDPm0k1yMMYwyC4VgGHmCSzEsugcIuhHHGuM5fbxZsnc6pAJSXEUKVpHlET3f2bz&fallback_url=http://res.wosoth.com/cache/upch/.../UpdateChecker.exe  (0226dc51ec4eccf6f658a6aa0b7ffcfc)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=3fTyMFXzaRrpB7vdVBcCXBftgGiJX2o nuTHjNra5Eg=&c=/m5t0S02nenRmkFLvKohqcYNIkRbsQTAZM1CrI0VoW1h5RtBpc6F05E7xjqqWdXaxEIk6p0grpRw83ZNqy3xjjlrpfTX504ZAGpIt vLCOBItKq/XJD0ID5GEzuoo7xE 6vAYA2U6yww1cY282ar1wooCbJxPXKXd/o9gqlXC4s=&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (f2c0907fda37bf63d3d94edf3152b57e)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=SThaPG6UGWLO GKNxSESUwSkOdvVc5KEBKjDXjalrqc=&c=U0URYmtMdBmYNEIskEwprL4xEAzDlQO/PxGguIzIXUbw/uaLk2AACkKr/o5b0g/lxINr5 7DtpPx/KR9ZyxlZkm0eXPS7VaTkjtD7RBsM6u9qgwwrFp2FeZu5tpdcUmzaL53EOBk7Kl5eJU9v8W5s1WRwkTYdemAlHDDKwIZ8pX3L0aGB6DS5UOcLj4J9367&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (ccf728fef9faf65fab9a066c4a71219e)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=KGwMrLMNgdVX4uHlfdPN7Ng4QsOhmz8m330 BW99otI=&c=AzuyZuooG6N nNH0gRb4Wexd3eXrsyeuzilz7tzLW3JkCF0KGl1iurbQCJ/jrQTdnl/lyRSapaZ vp/jVSVuSACZpvQGhK/QEl4BBfffMC7ITOkT5RWvXGpS5zDp9hYn&fallback_url=http://res.hufftos.com/.../Firefox_Setup_21.0_fr.exe  (e63c0177d0618f722114d775ae959b3d)

2 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=8n ZqPFqlgL 17qdtsAKf/EaM5A4M1rFgry hYcPOTs=&c= rINRKDWkjYdLdbYXUDBs291mAAV3YR5CsBVRtfzcrzJCN7M0tEVs5Vf5rTQM8NocLOTpVq4jffI8p x9c6o8on5wPzU6GJO32sxYCexRM10R3Q2NHlN0qyG9yU 0mhT5hxsfqgoQlPyHmKXBLGvBTZmuRUnCac6P qlDr5v0SA=&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (e555e9c59da4d0efbb2d68b4f8c330f8)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=vOy9H40Zz//5U4ogq2Z/wLlucD66DjaYZdb9oyYYNzw=&c=mYjBqtfFIhGCoC/bhgyquuTFgdDpn/A/YxJdemGK1D/uyogi/E x44aFoGXzFUU10Gqt4dFEmXB7gjoWg/kFShaI/TNq iBJScvIRPX9L1lP4LqJ ev xarPOXDhAYeYxtCArhfjpmwLuSWr8PCMJIdgpEuJJV2 heyhEc0LOzE=&e=1&fallback_url=http://res.nobistex.com/cache/upch/.../UpdateChecker.exe  (f2c0907fda37bf63d3d94edf3152b57e)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=NUJ0ZHt7upmzcmOaI0UCHzgKrPI5NSkodvpWax0mKeM=&c=aNnC8KRP5nWsF3xc8nRo84O1ZuCHhD1kYMYhoiHypXTL18m1/LrOkXfD/EAs0vW1StDcse80ixwtIOcb9Yw4xC7oaqB/dukbNtzWvmnwD3IhAQ2W7 OFP3qImFRtRqlqs 0ZBwPNG9We28SQ80RvF7PL5Qgfy0ph74rdlN 3cUc=&e=1&fallback_url=http://res.hufftos.com/.../PDFCreator-1_5_1_setup.exe  (484b2fc2f155fe52b01c5c7b1cfb263c)

1 / 68      (PUP)
http://www.giftapplicationsconecpt.com/c?x=vUlo4JZZRGZrJ4GeL15XCYom3Q1v8Au9I3wbLfWzoKM=&c=BLX/NML32tzge6EAwVo1yV0iQ0L13s6Z9Y4xGQFiXsvCQothGOPalhg1G9dK40zAJM8ZJKd5F5YojcB5Fxpn15jr0d8Vhm4ANti2asWORG7ieFlJqim3TPv0xBu2HQeo&fallback_url=http://res.mshist.com/.../ClashOfClans.exe  (856e6e205740d2ebcf47da52a4525fd6)

The following 36 files have been seen to comunicate with www.giftapplicationsconecpt.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 54.200.224.121:80
kometa.exe (Kometa by @COMPANY_FULLNAME@)

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 54.200.224.121:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.200.224.121:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 54.200.224.121:80
browser.exe (Browser)

TCP » 52.33.46.229:80
Client.exe

TCP » 54.200.224.121:80
kmplayer_3.8.0.123.exe.exe (The KMPlayer by PandoraTV)

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

 
Latest 20 of 77 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.