» get.fgweoq8h3lriq.xyz
Overview
Analysis
IPs Addresses (58)
Downloads (32)
Network (26)

get.fgweoq8h3lriq.xyz

Domain Information

Server location:

Washington, United States (US)

ASN:

AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:

fgweoq8h3lriq.xyz

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.C4DLMedia, PUP.C4Media.SecureDownloadsX36 (M), PUP.C4Media.SecureDo (M)

100.00%

The domain get.fgweoq8h3lriq.xyz has been seen to resolve to the following 58 IP addresses.

server-52-85-131-124.iad53.r.cloudfront.net

June 25, 2016

server-52-85-131-99.iad53.r.cloudfront.net

June 25, 2016

server-52-85-131-64.iad53.r.cloudfront.net

June 25, 2016

server-52-85-131-28.iad53.r.cloudfront.net

June 25, 2016

server-52-85-131-27.iad53.r.cloudfront.net

June 25, 2016

server-52-85-131-168.iad53.r.cloudfront.net

June 25, 2016

server-52-85-131-140.iad53.r.cloudfront.net

June 25, 2016

server-52-85-131-129.iad53.r.cloudfront.net

June 25, 2016

server-54-230-102-55.iad2.r.cloudfront.net

April 14, 2016

server-54-230-102-47.iad2.r.cloudfront.net

April 10, 2016

server-52-85-131-230.iad53.r.cloudfront.net

April 10, 2016

server-52-85-131-38.iad53.r.cloudfront.net

April 10, 2016

server-54-230-102-248.iad2.r.cloudfront.net

April 9, 2016

server-54-230-102-210.iad2.r.cloudfront.net

April 9, 2016

server-54-230-102-198.iad2.r.cloudfront.net

April 9, 2016

server-54-230-102-190.iad2.r.cloudfront.net

April 9, 2016

server-54-230-102-69.iad2.r.cloudfront.net

April 9, 2016

server-54-230-102-60.iad2.r.cloudfront.net

April 9, 2016

server-54-230-102-22.iad2.r.cloudfront.net

April 9, 2016

server-52-85-131-182.iad53.r.cloudfront.net

April 7, 2016

server-52-85-131-74.iad53.r.cloudfront.net

April 7, 2016

server-52-85-131-20.iad53.r.cloudfront.net

April 7, 2016

server-52-85-142-104.iad12.r.cloudfront.net

April 6, 2016

server-52-85-142-27.iad12.r.cloudfront.net

April 6, 2016

server-52-85-131-251.iad53.r.cloudfront.net

April 3, 2016

server-52-85-131-116.iad53.r.cloudfront.net

April 3, 2016

server-52-85-142-38.iad12.r.cloudfront.net

April 3, 2016

server-52-85-142-236.iad12.r.cloudfront.net

April 3, 2016

server-52-85-142-198.iad12.r.cloudfront.net

April 3, 2016

server-52-85-142-197.iad12.r.cloudfront.net

April 3, 2016

Showing 30 of 58 IP Addresses

File downloads found at URLs served by get.fgweoq8h3lriq.xyz.

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=45DE4660-BFD0-4C1E-9285-7878ABD9BD2D (adobe photoshop cs6 extended.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=01915ED1-5D43-40E0-A0F6-C7FE06A5D4CB (adobe photoshop cs6 extended.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=0C8FD65D-1B56-40FB-9480-6326A4AE093F (adobe photoshop cs6 extended.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=6F951999-189D-4D28-AE26-1044FCB311A6 (adobe photoshop cs6 extended.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=47C8EAB7-D28A-46E5-A6CF-C8384C609D3A (the 5th wave ts x264 - exclusive.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=F1196D9F-B417-4D96-9D99-3896FD12BD62 (deadpool the game pc.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=92FB8E72-1728-4A4E-97D5-BE315E9FCFD5 (13.zip.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=3F666B4F-591B-4441-9E3F-62072508CA1E (13.zip.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=A36886D1-6813-4C70-AC3B-902A82D1A9CA (camtasia studio 8.6 full.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=9595BEE8-F074-4179-9DF9-D727C94E1EDC (gta 5 pc.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=54BC4188-D8A7-48A4-BBE9-461B5FBB57A9 (gta 5 pc.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=8432B649-7929-4603-AFB0-91F8556468D4 (subindomovie_.the.hunger.games-mockingjay.part.2.2.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=B8DD5489-6450-401D-9A7B-04629F2DC791 (frank sinatra - the 100th birthday swing album [mp3-320kb.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=32E0BDF7-8E52-4066-97EC-9288C74C9E12 (winrar 5.31 full.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=772EF1EB-C71E-4D09-91C0-176196622BF2 (winrar 5.31 full.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=62BA2275-6CD4-486B-85F2-40AA2B29E816 (winrar 5.31 full.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=90910938-1B11-4840-A956-A39918693476 (mark knofler- kill to get crimson.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=91F02977-43F9-4FCC-91FF-BFA9DE009769 (naruto.shippuden.ultimate.ninja.storm.revolution.r.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=D4531127-62EC-486D-99D0-2B7837653E3C (Microsoft Office 2016 Full.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=AACD0FB2-D625-409A-B34D-308C8DDE3185 (idm 6.25 build 12 full.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=CB37E1F1-6766-4DD2-9EC8-98D7E8FFD3D7 (microsoft office 2016 full.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=BEC73342-A6A6-4DDA-9D37-077E62610837 (idm 6.25 build 12 full.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=424EA17F-ECD1-4B9F-9755-0D24598EDB1E (ark survival evolved.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=BD865FC7-C1EA-42CE-B3CD-8B54007BB241 (ibm spss statistics 23 full.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=133FDEB7-86C1-4319-B98B-47E596B448F8 (get.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=56E698B9-932E-481E-9C96-924CAB13A60E (microsoft toolkit 2.6.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=14D3E8BB-325A-40D9-88A1-0C333D6C441B (microsoft office 2013 full.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=AAE3F4D6-E4C1-43EC-BD91-DBAD280801C7 (adobe dreamweaver cs6 12.2 full.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=AF495A59-0D0D-4BE5-8FFB-E698ECBA7612 (adobe dreamweaver cs6 12.2 full.exe)

1 / 68 (PUP)

http://get.fgweoq8h3lriq.xyz/get.php?ses=E3DC924A-3046-4176-81B7-E1D01CE88514 (adobe dreamweaver cs6 12.2 full.exe)

Latest 30 of 32 download URLs

The following 26 files have been seen to comunicate with get.fgweoq8h3lriq.xyz in live environments.

TCP » 52.85.142.190:80

browser.exe (Browser)

TCP » 54.192.195.235:443

online-guardian.exe

TCP » 54.192.195.235:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.80:80

beamrise.exe (Beamrise by The Beamrise Authors)

TCP » 52.85.142.190:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.104:80

UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.38:80

UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.198:443

citrio.exe (Citrio by CatalinaGroup)

TCP » 52.85.142.198:80

UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.195.26:443

onlineguardian-v2.exe

TCP » 52.85.142.181:80

Mobogenie.exe (Mobogenie by Mobogenie.com)

TCP » 52.85.142.198:443

online-guardian-v2.0.9.exe

TCP » 52.85.142.104:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.236:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 54.192.195.177:443

online-guardian.exe

TCP » 54.192.195.177:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 52.85.142.190:80

browser.exe (Browser)

TCP » 54.192.195.104:443

browser.exe (speed browser by Fast Applications)

TCP » 52.85.131.230:443

browser.exe (Browser)

TCP » 52.85.142.198:443

munk.exe (Munk)

Latest 20 of 64 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.