Server location:
Virginia, United States (US)
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US
Scanner detections:
Malware distribution (78% detected)
Scan engine
Details
Detections
Norman
Gen:Variant.Adware.Symmi.59817, Win32.Ramnit, Win32.Sality.2.OE, Win32.Sality.3, Win32.Ramnit.N, Win32.Sality.4
80.95%
Dr.Web
Trojan.Swizzor.19586, Win32.Sector.5, Win32.Sector.30
76.19%
Microsoft Security Essentials
Threat.Undefined
71.43%
ESET NOD32
Win32/Ramnit.A virus, Win32/Sality.NAO virus, Win32/Sality.NBA virus, Win32/Ramnit.H virus, Win32/Sality.NDR virus
71.43%
McAfee
Virus.W32/Ramnit.a, Virus.W32/Sality.gen, Virus.W32/Sality.gen.z, Trojan.Artemis!CC6A55CDA7D8, Program.Artemis!CC6A55CDA7D8
71.43%
avast!
Win32:RmnDrp, Win32:Kukacka, Win32:SaliCode, Win32:Sality
71.43%
Emsisoft Anti-Malware
Gen:Variant.Adware.Symmi.59817, Win32.Ramnit, Win32.Sality.2.OE, Win32.Ramnit.N
61.90%
Kaspersky
Virus.Win32.Nimnul, Virus.Win32.Sality
61.90%
F-Prot
W32/Sality.AJ, W32/Virut.AI!Generic, W32/Sality.gen2, W32/Ramnit.E
57.14%
VIPRE Antivirus
Threat.4726519, Threat.355724, Threat.4758034, Threat.4732184, Threat.4721115
47.62%
AVG
Win32/Ramnit.A, Win32/Tanatos.T, Win32/Sality, Win32/Zbot.G
42.86%
Sophos
Virus 'Mal/Sality-D', Virus 'W32/Ramnit-A'
19.05%
F-Secure
Variant.Adware.Symmi, Win32.Sality.3, Win32.Sality.4
14.29%
Clam AntiVirus
W32.Ramnit-1, W32.Sality-27
9.52%
Avira AntiVirus
W32/Sality, PUA/InstallCore.613319
9.52%
The domain www.giftgrabbest.com has been seen to resolve to the following 78 IP addresses.
server-54-192-19-23.iad12.r.cloudfront.net
August 25, 2016
server-54-192-19-226.iad12.r.cloudfront.net
August 25, 2016
server-54-192-19-222.iad12.r.cloudfront.net
August 25, 2016
server-54-192-19-184.iad12.r.cloudfront.net
August 25, 2016
server-54-192-19-170.iad12.r.cloudfront.net
August 25, 2016
server-54-192-19-107.iad12.r.cloudfront.net
August 25, 2016
server-54-192-19-93.iad12.r.cloudfront.net
August 25, 2016
server-54-192-19-36.iad12.r.cloudfront.net
August 25, 2016
server-52-84-125-58.iad16.r.cloudfront.net
July 26, 2016
server-52-84-125-4.iad16.r.cloudfront.net
July 26, 2016
server-52-84-125-236.iad16.r.cloudfront.net
July 26, 2016
server-52-84-125-211.iad16.r.cloudfront.net
July 26, 2016
server-52-84-125-210.iad16.r.cloudfront.net
July 26, 2016
server-52-84-125-132.iad16.r.cloudfront.net
July 26, 2016
server-52-84-125-130.iad16.r.cloudfront.net
July 26, 2016
server-52-84-125-99.iad16.r.cloudfront.net
July 26, 2016
server-52-85-131-167.iad53.r.cloudfront.net
May 20, 2016
server-52-85-131-75.iad53.r.cloudfront.net
May 20, 2016
server-52-85-131-37.iad53.r.cloudfront.net
May 20, 2016
server-52-85-131-31.iad53.r.cloudfront.net
May 20, 2016
server-52-85-131-234.iad53.r.cloudfront.net
May 20, 2016
server-52-85-131-233.iad53.r.cloudfront.net
May 20, 2016
server-52-85-131-187.iad53.r.cloudfront.net
May 20, 2016
server-52-85-131-168.iad53.r.cloudfront.net
May 20, 2016
server-54-230-102-134.iad2.r.cloudfront.net
April 15, 2016
server-54-230-102-126.iad2.r.cloudfront.net
April 15, 2016
server-54-230-102-100.iad2.r.cloudfront.net
April 15, 2016
server-54-230-102-42.iad2.r.cloudfront.net
April 15, 2016
server-54-230-102-32.iad2.r.cloudfront.net
April 15, 2016
server-54-230-102-23.iad2.r.cloudfront.net
April 15, 2016
Showing 30 of 78 IP Addresses
File downloads found at URLs served by www.giftgrabbest.com.
The following 139 files have been seen to comunicate with www.giftgrabbest.com in live environments.