home

www.giftsignconcepts.com

Domain Information

Server location:
Washington, United States (US)

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:
giftsignconcepts.com

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore (M)
100.00%

The domain www.giftsignconcepts.com has been seen to resolve to the following 16 IP addresses.

52.85.131.39
server-52-85-131-39.iad53.r.cloudfront.net
April 5, 2016

52.85.131.19
server-52-85-131-19.iad53.r.cloudfront.net
April 5, 2016

52.85.131.17
server-52-85-131-17.iad53.r.cloudfront.net
April 5, 2016

52.85.131.239
server-52-85-131-239.iad53.r.cloudfront.net
April 5, 2016

52.85.131.183
server-52-85-131-183.iad53.r.cloudfront.net
April 5, 2016

52.85.131.155
server-52-85-131-155.iad53.r.cloudfront.net
April 5, 2016

52.85.131.141
server-52-85-131-141.iad53.r.cloudfront.net
April 5, 2016

52.85.131.44
server-52-85-131-44.iad53.r.cloudfront.net
April 5, 2016

52.85.142.204
server-52-85-142-204.iad12.r.cloudfront.net
April 4, 2016

52.85.142.201
server-52-85-142-201.iad12.r.cloudfront.net
April 4, 2016

52.85.142.101
server-52-85-142-101.iad12.r.cloudfront.net
April 4, 2016

52.85.142.51
server-52-85-142-51.iad12.r.cloudfront.net
April 4, 2016

52.85.142.8
server-52-85-142-8.iad12.r.cloudfront.net
April 4, 2016

52.85.142.227
server-52-85-142-227.iad12.r.cloudfront.net
April 4, 2016

52.85.142.221
server-52-85-142-221.iad12.r.cloudfront.net
April 4, 2016

52.85.142.216
server-52-85-142-216.iad12.r.cloudfront.net
April 4, 2016

File downloads found at URLs served by www.giftsignconcepts.com.

1 / 68      (PUP)
http://www.giftsignconcepts.com/.../installer.exe  (f8363ed3d8f646b5606169ec86def39a)

1 / 68      (PUP)
http://www.giftsignconcepts.com/.../installer.exe  (6c83d6bf154ad6639ed403d60fe48ba1)

The following 20 files have been seen to comunicate with www.giftsignconcepts.com in live environments.

TCP » 52.85.142.51:443
UCBrowser.exe (by UCWeb)

TCP » 52.85.142.216:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.227:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.216:80
Mobogenie.exe (Mobogenie by Mobogenie.com)

TCP » 52.85.142.216:80
Mobogenie.exe (Mobogenie by Mobogenie.com)

TCP » 52.85.142.201:443
browser.exe (Browser)

TCP » 52.85.142.221:80
browser.exe (Browser)

TCP » 52.85.142.201:443
apptrailers.exe

TCP » 52.85.142.221:80
Mobogenie.exe (Mobogenie by Mobogenie.com)

TCP » 52.85.142.221:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.8:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.8:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.221:443
online-guardian-v2.0.9.exe

TCP » 52.85.142.227:443
jingling.exe

TCP » 52.85.142.201:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.221:443
online-guardian-v2.0.9.exe

TCP » 52.85.142.51:443
online-guardian-v2.0.9.exe

TCP » 52.85.142.201:80
Trezaa.Service.exe (Trezaa.Service by Microsoft)

TCP » 52.85.142.216:443
browser.exe (Browser)

TCP » 52.85.142.227:443
UCBrowser.exe (UC Browser by UCWeb)

 
Latest 20 of 58 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.