54.192.195.207

server-54-192-195-207.iad53.r.cloudfront.net

IP Address Information

The IP Address resolves to the DNS record of server-54-192-195-207.iad53.r.cloudfront.net. Currently there are 85 domain names that utilize this address. This IP is part of Amazon's Cloudfront Content Delivery Network which distributes content for a number of domains.
Scanner detections:
Detections  (70% detected)

Scan engine
Details
Detections

Reason Heuristics
(M), PUP.Somoto.SiteonSpot.Bundler (M), Threat.Win.Reputation.IMP, Adware.ConvertAd (M), PUP.VOPackage.Meta (M), Threat.Adware.ConvertAd.Meta (H), Adware.Somoto.Installer.Meta (M), PUP.Somoto.SiteonSp.Bundler (M)
52.78%

Emsisoft Anti-Malware
Gen:Variant.Graftor.255936, Gen:Variant.Mikey.27798, Gen:Variant.Mikey.28503, Gen:Variant.Mikey.28783, Win32.Ramnit.N
44.44%

MicroWorld eScan
Application.Bundler.Somoto.AH, Gen:Variant.Graftor.255936, Gen:Variant.Mikey.27798, Gen:Variant.Mikey.28503, Gen:Variant.Mikey.28783
33.33%

Arcabit
Application.Bundler.Somoto.AH, Trojan.Graftor.D3E7C0, Trojan.Mikey.D6C96, Trojan.Mikey.D6F57, Trojan.Mikey.D706F
33.33%

Kaspersky
not-a-virus:Downloader.NSIS.Mazel, not-a-virus:Downloader.Win32.Somato, UDS:DangerousObject.Multi.Generic, not-a-virus:AdWare.Win32.ConvertAd
33.33%

Bitdefender
Application.Bundler.Somoto.AH, Gen:Variant.Graftor.255936, Gen:Variant.Mikey.27798, Gen:Variant.Mikey.28503, Gen:Variant.Mikey.28783
33.33%

F-Secure
Application.Bundler.Somoto, Gen:Variant.Graftor.255936, Gen:Variant.Mikey.27798, Gen:Variant.Mikey.28503, Gen:Variant.Mikey.28783
27.78%

G Data
Gen:Variant.Graftor.255936, Gen:Variant.Mikey.27798, Gen:Variant.Mikey.28503, Gen:Variant.Mikey.28783
27.78%

Lavasoft Ad-Aware
Application.Bundler.Somoto.AH, Gen:Variant.Mikey.27798, Gen:Variant.Mikey.28503
22.22%

AhnLab V3 Security
PUP/Win32.Somoto, PUP/Win32.CrossRider
22.22%

The following domains resolved to the IP address 54.192.195.207.

Latest 50 of 85 domains

File URLs download from 54.192.195.207.

0 / 68

14 / 68    (Malware)

1 / 68      (Malware)

13 / 68    (Malware)

14 / 68    (PUP)

1 / 68      (Malware)

9 / 68      (PUP)

1 / 68      (PUP)

 
Latest 30 of 137,467 download URLs

The geographical location of this IP address.

Country:
United States (US)

Region:
Washington

City:
Seattle

Coordinates:
47.6062, -122.332

ARIN WHOIS:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=54.192.195.207?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
#

Amazon Technologies Inc. AMAZON-2011L (NET-54-192-0-0-1) 54.192.0.0 - 54.207.255.255
Amazon.com, Inc. AMAZO-CF2 (NET-54-192-0-0-2) 54.192.0.0 - 54.192.255.255



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#


Autonomous System Assignment
ASNumber:
16509

ASName:
AMAZON-02 - Amazon.com, Inc.,US

ASHandle:
AS16509

Remove Malware from 54.192.195.207 - Powered by Reason Core Security