Server location:
Virginia, United States (US)
ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.Adknowledge, Threat.Win.Reputation.IMP, PUP.Bundler.Adknowledge, PUP.InstallCore.Adknowledge.Installer (M), PUP.Performersoft.F11LSoft.Bundler (M), PUP.Adknowledge.Inertwar.Bundler (M), PUP.Adknowledge.SailMach.Bundler (M), PUP.Adknowledge (M)
100.00%
Dr.Web
Trojan.DownLoader12.15685, Trojan.iBryte.412, Trojan.iBryte.510
40.00%
VIPRE Antivirus
Threat.4798837
40.00%
F-Secure
Adware.Ibryte.BM, Gen:Variant.Adware.Strictor.78222, Gen:Trojan.Heur.TP.hs1@bqmyjlji
40.00%
Lavasoft Ad-Aware
Adware.Ibryte.BM, Gen:Variant.Adware.Strictor.78222, Gen:Trojan.Heur.TP.hs1@bqmyjlji
40.00%
Emsisoft Anti-Malware
Adware.Ibryte.BM, Gen:Variant.Adware.Strictor.78222, Gen:Trojan.Heur.TP.hs1@bqmyjlji
40.00%
ESET NOD32
Win32/Adware.iBryte.BY application, Win32/Adware.iBryte.BX application, Win32/Adware.iBryte.CC application
40.00%
AVG
Adware AdPlugin.CIO, Adware AdPlugin.CMK
40.00%
MicroWorld eScan
Adware.Ibryte.BM, Gen:Variant.Adware.Strictor.78222, Gen:Trojan.Heur.TP.hs1@bqmyjlji
40.00%
Bitdefender
Adware.Ibryte.BM, Gen:Variant.Adware.Strictor.78222, Gen:Trojan.Heur.TP.hs1@bKjSRvji, Gen:Trojan.Heur.TP.hs1@byohH2ei
40.00%
G Data
Adware.Ibryte.BM, Gen:Variant.Adware.Strictor.78222, Gen:Trojan.Heur.TP.hs1@bKjSRvji, Gen:Trojan.Heur.TP.hs1@byohH2ei
40.00%
NANO AntiVirus
Trojan.Win32.DownLoader12.dnihtg, Riskware.Win32.IBryte.dnwisu, Riskware.Win32.ArchSMS.domsyg
40.00%
Norman
IBryte.URL, Gen:Trojan.Heur.TP.hs1@bqmyjlji
40.00%
Avira AntiVirus
Adware/iBryte.bxpj, ADWARE/Adware.Gen7
30.00%
Panda Antivirus
Generic Suspicious, Trj/Genetic.gen
30.00%
The domain secure.distapp19.com has been seen to resolve to the following 2 IP addresses.
ec2-54-243-183-125.compute-1.amazonaws.com
February 15, 2015
ec2-54-243-186-169.compute-1.amazonaws.com
February 15, 2015
File downloads found at URLs served by secure.distapp19.com.
The following 5 files have been seen to comunicate with secure.distapp19.com in live environments.