Server location:
Virginia, United States (US)
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US
Scanner detections:
Detections (97% detected)
Scan engine
Details
Detections
ESET NOD32
NSIS/TrojanDownloader.Adload.R trojan
93.94%
avast!
Malware-gen, Win32:Adware-gen [Adw], Win32:Malware-gen
60.61%
Dr.Web
infected with Trojan.Vittalia.1532, Detection.Undefined
45.45%
Reason Heuristics
PUP.Downloader, Adware.Downloader, (M), PUP.Vittalia (M), Adware.Generic.AT (M), Adware.Downloader.Installer.Meta (M)
42.42%
Microsoft Security Essentials
Threat.Undefined
24.24%
Kaspersky
not-a-virus:AdWare.Win32.AdLoad, not-a-virus:AdWare.NSIS.Adload
9.09%
Clam AntiVirus
Win.Trojan.Adload-4844
9.09%
F-Prot
W32/AdLoad.BW.gen
3.03%
Trend Micro House Call
HT_ADLOAD_EK130003.UVPM
3.03%
Rising Antivirus
NS:Trojan.Adload!1.A18D [F]
3.03%
Zillya! Antivirus
Adware.BrowseFox.Win32.146985
3.03%
Avira AntiVirus
ADWARE/Adware.Gen7
3.03%
Fortinet FortiGate
Adware/Adload
3.03%
G Data
NSIS.Application.PUPDownloader
3.03%
The domain dl.ic-ftree34.xyz has been seen to resolve to the following 52 IP addresses.
server-54-230-102-66.iad2.r.cloudfront.net
March 3, 2016
server-54-230-102-22.iad2.r.cloudfront.net
March 3, 2016
server-54-230-102-214.iad2.r.cloudfront.net
March 3, 2016
server-54-230-102-205.iad2.r.cloudfront.net
March 3, 2016
server-54-230-102-183.iad2.r.cloudfront.net
March 3, 2016
server-54-230-102-123.iad2.r.cloudfront.net
March 3, 2016
server-54-230-102-79.iad2.r.cloudfront.net
March 3, 2016
server-54-230-102-68.iad2.r.cloudfront.net
March 3, 2016
server-54-192-195-51.iad53.r.cloudfront.net
March 2, 2016
server-54-192-195-155.iad53.r.cloudfront.net
February 28, 2016
server-54-192-195-139.iad53.r.cloudfront.net
February 27, 2016
server-54-192-195-36.iad53.r.cloudfront.net
February 27, 2016
server-54-192-195-25.iad53.r.cloudfront.net
February 26, 2016
server-54-192-195-243.iad53.r.cloudfront.net
February 26, 2016
server-54-192-195-198.iad53.r.cloudfront.net
February 26, 2016
server-54-192-195-176.iad53.r.cloudfront.net
February 26, 2016
server-54-192-195-136.iad53.r.cloudfront.net
February 26, 2016
server-54-192-195-80.iad53.r.cloudfront.net
February 26, 2016
server-54-192-195-62.iad53.r.cloudfront.net
February 26, 2016
server-54-192-195-52.iad53.r.cloudfront.net
February 26, 2016
server-54-192-195-42.iad53.r.cloudfront.net
February 9, 2016
server-54-192-195-70.iad53.r.cloudfront.net
February 9, 2016
server-54-240-160-182.iad12.r.cloudfront.net
February 8, 2016
server-54-240-160-119.iad12.r.cloudfront.net
February 8, 2016
server-54-240-160-101.iad12.r.cloudfront.net
February 8, 2016
server-54-240-160-90.iad12.r.cloudfront.net
February 8, 2016
server-54-240-160-84.iad12.r.cloudfront.net
February 8, 2016
server-54-240-160-247.iad12.r.cloudfront.net
February 8, 2016
server-54-240-160-233.iad12.r.cloudfront.net
February 8, 2016
server-54-240-160-224.iad12.r.cloudfront.net
February 8, 2016
Showing 30 of 52 IP Addresses
File downloads found at URLs served by dl.ic-ftree34.xyz.
The following 10 files have been seen to comunicate with dl.ic-ftree34.xyz in live environments.