home

www.giftcapitalgrab.com

Domain Information

Server location:
Oregon, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US

Root domain:
giftcapitalgrab.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallCore.Installer.Installer (M), PUP.InstallCore.FC.Installer (M), PUP.InstallCore.RES (M)
100.00%

The domain www.giftcapitalgrab.com has been seen to resolve to the following 18 IP addresses.

54.186.99.90
ec2-54-186-99-90.us-west-2.compute.amazonaws.com
July 6, 2016

52.33.46.229
ec2-52-33-46-229.us-west-2.compute.amazonaws.com
June 26, 2016

54.191.246.249
ec2-54-191-246-249.us-west-2.compute.amazonaws.com
June 26, 2016

54.149.195.20
ec2-54-149-195-20.us-west-2.compute.amazonaws.com
June 26, 2016

52.33.165.25
ec2-52-33-165-25.us-west-2.compute.amazonaws.com
June 5, 2016

52.32.12.104
ec2-52-32-12-104.us-west-2.compute.amazonaws.com
June 5, 2016

52.38.209.219
ec2-52-38-209-219.us-west-2.compute.amazonaws.com
June 5, 2016

52.25.41.73
ec2-52-25-41-73.us-west-2.compute.amazonaws.com
May 15, 2016

52.24.26.116
ec2-52-24-26-116.us-west-2.compute.amazonaws.com
May 15, 2016

52.26.95.11
ec2-52-26-95-11.us-west-2.compute.amazonaws.com
April 16, 2016

54.148.57.212
ec2-54-148-57-212.us-west-2.compute.amazonaws.com
April 16, 2016

54.69.198.37
ec2-54-69-198-37.us-west-2.compute.amazonaws.com
April 16, 2016

54.69.11.66
ec2-54-69-11-66.us-west-2.compute.amazonaws.com
February 24, 2016

52.88.159.85
ec2-52-88-159-85.us-west-2.compute.amazonaws.com
February 24, 2016

52.35.10.15
ec2-52-35-10-15.us-west-2.compute.amazonaws.com
February 24, 2016

52.34.170.106
ec2-52-34-170-106.us-west-2.compute.amazonaws.com
February 24, 2016

52.25.23.136
ec2-52-25-23-136.us-west-2.compute.amazonaws.com
February 24, 2016

54.191.37.5
ec2-54-191-37-5.us-west-2.compute.amazonaws.com
February 24, 2016

File downloads found at URLs served by www.giftcapitalgrab.com.

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=v8nfl2SXDknxO8/6ToP5i2W24I4nEwx9IydtcBqpJk0=&c=ZBpx3nOQWeimyjTdcWGR5ZsTHnEDJCmcmpWXd1G1GVMSRChUdoeR749TZNCCrI3XWCAZR8c3ALUxtYW6jgUs7hgirrDAdz2chCWQ/GwrzFn80qQVOPDgwGcdFisLrlXO&downloadAs=TeamSpeak Setup.exe&fallback_url=http://www.downloadfree3.com/landers/.../download.php  (20f4e5205f068a03c513e28866f98bcd)

1 / 68      (PUP)
http://www.giftcapitalgrab.com/c?x=zCcySLyuLDSxLpxOIOYkJ5Zvm/.../wmyqSvLoETLr6Xyv1jYADIH gCisgxNV5MxFCPluOVQog69SrQYFnEdLpds3F4 AAqXur&downloadAs=Google Chrome.exe  (c.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=kvWZbPgkwf8HABfDt2Xd8aL5b923N05jADUM1mpc2bw=&c=JBK UTW/SVlpxo a8uvDZ2gkCP1F7omV8Gm0ve/.../9lSldw UYRXhrqC9oTAFaFQosM&downloadAs=Google Chrome.exe  (c.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=QPQyh0qafHvJxTX4hm/lDsXbXVuO8CAKvOJChLuG0XQ=&c=zh76GJUvPNafgVP55lWTdSPqsQ20RvSOg6nrAuoiyQ/I6Ij2LIcNFOxJhiSv/ MMsRHh84vNX JmuD4n42o/.../jDrktEzYR7K1jcYneIh31 mzv0KF&downloadAs=WinRAR Setup.exe  (b88100b493b6cacff46251d4ae2e2be7)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=9msJfTF5XYXyUh4Zk2YkcTjlNSW3FXenkDpzQxg27hI=&c=XgKHlC4UQ/ZpKhj 6F4K7CqbKm/.../khsMs&downloadAs=Google Chrome.exe  (c.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/.../ejjsRSj7mQHs1DqwabS5IQc Ni4We89DfpknQ6GLlQrZs4UZmZPUDadkN bUbhd YhDW9YbBYnhXkHdD9MmHGzdLxJyULKeNHcjKiI1TEPzp4i3k61 rSmV2N&downloadAs=Google Chrome.exe  (06ac61f543ccc581ab81027c0d25788b)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=JhQtXLkEnsdKHHeFsDL0t66nYcomzptQhwabrLfbHVU=&c=EXxA9BVYaGWGfCos/.../lY&downloadAs=Google Chrome.exe  (06ac61f543ccc581ab81027c0d25788b)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x= nJpURiOPqKp3fE66a7XHngHzBbDWHok2m DZRRBUFg=&c=iM/CelkbYi Hz7RRUrTZTW/8bcaXTrRU//yOsFiNnL R8nXr9W6zaDGJ7OqA3bAnDTl7Fi3gryN9e IIHn6qmEBMtFt/ZB4T/NKpg5rp60liFYnO7pBrUOBOfma2noWJ&downloadAs=TeamViewer Setup.exe&fallback_url=http://www.downloaddu.com/landers/.../download.php  (c0eade92012d22a62ebf66fba1fec760)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=nQSrQq JBF1MgF38CG3i5Iwtcqr65YMqsmeuPo5ML5I=&c=f54UWcW8MEOYftfiOQSmoBz0kwthPruGkVPnBTZfZZIzVLmfgcO4exp//1hGcb0HvzMCjSeIWOo6CeZnujLxfEvZU0h7HlMHrkiVwg7onDgpK5pGj3J u91ZWlcsm9I7&downloadAs=Songr Setup.exe&fallback_url=http://www.downloadfree5.com/landers/.../download.php  (d25fdb9c64455a2c6188dfcc8a249662)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=9eBz/f85duYNNUeEjJWvsKpS9KDRvCxiKI1d68Gbxio=&c=XMUotunmy0gtsO3IHvZMTqG70KSxavCr7mskDOU/.../mEjQ5XhUSYfAL69tBsDt617utkR7 TSw5 dfHbVo4uMbuDdLjJHHHJB0nzFXjJh6ioBrIEFFJdYiPt&downloadAs=Firefox Setup.exe  (firefox_setup.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/.../tdqsxrD5 pm8fdudxJw=&c=d8hd5m7KX4auRfkj50fEctQj4khJjJ4WnjfH7X5ILfHtjJVxqY8CUdkXMiTD0ZE6B81juLBTSIwGtyRjftIE4t0eY2u67D2NyCZasd7rZcj1MPUwReE2ewJLx8l5q9U4&downloadAs=WinRAR Setup.exe  (28f18d98779d8fd6004c0009d895a25c)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=XpPANjAJVRix59rxnm8MJV8J/59fvqAocgBXZVH7/.../hWwlWAxkUmOPynFZiDqcpr1STUVjoXdzNNNyQwHWk8sBVfz4P9prE2PwLgM9&downloadAs=Google Chrome.exe  (06ac61f543ccc581ab81027c0d25788b)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/.../gWB3AnJHnqIWR8202lhuRfmvnq2pvKqWIQ XjOo4XW7AE0f&downloadAs=Google Chrome.exe  (c.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=/.../3kuXDnReAG4FEE9nPW4Nk8KMCJYh0HjMkZE=&c=OFFyEYZU32XJWku4fYslr7ts5IE5WgpaJOIIhwl5n47XNwmsbJSLREN07MphMaV8j1Lgd3rimKwL5a gIcp4pwTC8Q0KHblxoZABKm8tPQZUFs3XunSLG6svus28Xhzb&downloadAs=Google Chrome.exe  (06ac61f543ccc581ab81027c0d25788b)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=/KT8oE8EXmFWYgGvpnD67kQROvEbBg LIP36hbBcpyI=&c=BlaF0/.../is9My8dQgf3Ura1tWd5DZzPpA JvTx0U1KhIKdann6JrzRM5MpBwOoGOmAK1WoTp4jgYX5ErLsKy1TjHXz6oDiekm1DeoSHSU9ZcwjHosbqQC4GR&downloadAs=Google Chrome.exe  (06ac61f543ccc581ab81027c0d25788b)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=X3p5RZkGTSpmH0Y6bXrQjl0ad4EMJ2y/j8qnMd/ZthM=&c=Ob1KBVkKdRwae9CM3b8BiqUaWDzKmSQc//HM x7BvPWBUPB6tLnQ0VBxiq9EdRt7 4GlT1DC/.../w9YygGybnVI2FFib3nURMdiy6uQ6B7&downloadAs=Google Chrome.exe  (c.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=dEC3UaCCJAM0LhCpr5GfmlN6PRgA96lEfx5SF6QQHAc=&c=B6pYT55oYOdHie7gzkCg/525/23ereZsuwB6mYPxa41jU4nAnww4zyCOc2SNj6oG3HywaRcDE9BfbRFJc2G7TxCLbgitCDU/.../iQ&downloadAs=Google Chrome.exe  (c.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=31dI023MhRqyJRJOodmcuIaAa9sRqyyH/.../TwdORSqHuaFSEMlu3e&downloadAs=Google Chrome.exe  (c.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=M56R0HnMTTG5bykxKFAoU5v2SNKY0D23GgWl/.../WyNaGz5M168lk&downloadAs=WinZip Setup.exe  (1b7c4f07a428fa024ad6add5e4cc144b)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/.../ji45gFegKAd6QrVQn aaE1bgu&downloadAs=iTunes Setup.exe  (ac045dc303c22076a2658462fbed2c85)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=HNFluhQNf3KUawjXhxtkGOei0rPtYPV38/hjIo8mhU0=&c=bA1E86zX6tFUVXo5cBeR7slMH73yx7zh5gynQ 3PUDINhJ4jAwaJTim8aUR5e5vYMB8/v2AimtjbJXm4JYARsKG/hi4VAEvAz7pvYra3XlGUZLmc4 K3cRhXsmEVpJZi&downloadAs=TeamViewer Setup.exe&fallback_url=http://www.downloadfree3.com/landers/.../download.php  (8fbf3da043575ce5aa2923401b94908d)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=x1vbAuMps5Pl69Wyo0e6QoNVRyNmkJ6pR 4MoFgQZKA=&c=dD6YMtR0KDuPHkMiya5ewH5BW9JVcX v/.../rq2xYtopnAJeUVx8E0j8rCCEQhCCHqYiyQ0grxaUbsg0BXhQnr4pUFF&downloadAs=Google Chrome.exe  (c.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/.../VlHPDUCoKGOzAmj5bI5EI&downloadAs=Google Chrome.exe  (06ac61f543ccc581ab81027c0d25788b)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=vDuo4o99vNeybMTKu5ShVnHGGgb2Xn5rKIfzSObMLaE=&c=lPdbQ6O5nx5ETQNEKYUYTA8Fj9ck NOUJgJ8GdsIUlJDJdyFNzcUrybvzYxCzTwxb5FqaHBxTcB5Y35FGf7U77puwsq1ZL3F09uauMBSBmZ LBn72Y8cvNRT4A9kKyEK&downloadAs=Google Chrome.exe  (c.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=qJIKx/awfaQg6UfxlWU2ovHbB6WoWVbsqW2eYUPAIpI=&c=Mz1pXGzoPii6uDYy3CNrF5CSxr9gHoFdJysBZ8ZT25wFzsfWmPIBHzZal/.../Qi3SwTqWJwyc0WKI8mtesVuVyLCzVB5ns gxivWp9&downloadAs=Google Chrome.exe  (06ac61f543ccc581ab81027c0d25788b)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=m91/pFZrdkcKimZjOQ0uRUEAWw/dN7JMNJyfmL5tDqw=&c=aHdVdCHYURv6Wy4El3gLqpSUyENpCIit DsVh/.../2f76b5g8oDxaVLXJCoxMwVxp&downloadAs=Google Chrome.exe  (c.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=A45G5hgXqo6wuLz8dVp0ouNHWWTny4LgFZ ohYbSAHk=&c=e7hkyZRWZX svCm7k gHjNRmgvppZdMMTlDZsWhtrSNKXGsgAuT3H2J6J/.../&downloadAs=Google Chrome.exe  (c.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=6gdyeX390 U4WE60yuDTDox4De/OHBHhsoBnSifeu0Y=&c=tyqEHnc8K6dVE9GQjougweVsn /XpYk9cehf84PjhIxk6CJHk8rBR9HYrib7aiar186HA5aUBuhxgwtY4fmYp6v4p87J2qSEmnhp1h9VA6H93vNk6N3jleeveYjY4upV&downloadAs=ooVoo Setup.exe&fallback_url=http://www.downloadfree3.com/landers/.../download.php  (3b6613d073f03b0ad8169e62a64234e0)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=9qNvPtVxvJVGg0PnF4R69 81e2io6kMpEUSMYjmQtQ4=&c=IKAlyvup9r5fKDW5SvEOjMPMmeKBSQJhHQRyhFIvEGxOnr563MYujJBjkz hKS0CK1e1dn3cSuhZaZS97P0sCBRvmUnp3bHC2qM108urOwImE0JuImK6q5A/.../Y83Y&downloadAs=Google Chrome.exe  (c.exe)

1 / 68      (Adware)
http://www.giftcapitalgrab.com/c?x=Z9Uy/FAn/nr3Y4pECNl 393nJywTxnRLLmO w8Dl2J4=&c=EnidyGk8kCfHXrOEOtdGxul/bnXNiRysMdB7F/DTDmypa5rQDjqyfGuz4a0rlIMIlh7J7uUUF/v3FYMtJKyMkfLMhAUzjc2ej/bDFwfvKWLbWGvrfgnXkRtsXscd1gGp&downloadAs=Safari Setup.exe&fallback_url=http://www.downloaddu.com/landers/.../download.php  (7810da4913ec76726528af3f1e90b7b6)

 
Latest 30 of 376 download URLs

The following 23 files have been seen to comunicate with www.giftcapitalgrab.com in live environments.

TCP » 52.38.209.219:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.33.46.229:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.38.209.219:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.24.26.116:443
online-guardian-v2.0.9.exe

TCP » 52.38.209.219:80
browser.exe (Browser)

TCP » 52.33.46.229:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 52.33.46.229:80
Client.exe

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
036629fbd4864725737a8ba8fe7e8cd6.exe

TCP » 52.33.46.229:80
ShopAtHome_BAC_Service.exe (by ShopAtHome.com)

TCP » 52.33.46.229:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.33.46.229:80
browserair.exe (BrowserAir by Goobzo)

TCP » 52.38.209.219:80
3.9.0.128_20140916045038.exe (The KMPlayer by PandoraTV)

TCP » 52.38.209.219:80
e5be.tmp

TCP » 52.24.26.116:443
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 52.24.26.116:443
Proxomitron.exe (Proxomitron by Groom-A-Zebu (tm))

TCP » 52.38.209.219:80
client.exe

 
Latest 20 of 59 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.