54.230.194.224

server-54-230-194-224.iad53.r.cloudfront.net

IP Address Information

The IP Address resolves to the DNS record of server-54-230-194-224.iad53.r.cloudfront.net. Currently there are 15 domain names that utilize this address. This IP is part of Amazon's Cloudfront Content Delivery Network which distributes content for a number of domains.
Scanner detections:
Detections  (80% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.ZuluSoftSRL.P, PUP.Installer.ITNTSRL.P, PUP.OpenCandy.Installer (L), PUP.Downloader.Bundler.Soft32.Installer (M), PUP.Downloader.Bundler.Soft32 (M)
92.68%

Dr.Web
Adware.Downware.2152, Adware.Downware.971, Adware.OpenCandy.4, Adware.OpenCandy.137
21.95%

Malwarebytes
PUP.Optional.Soft32.A, PUP.Soft32Downloader, PUP.Optional.OpenCandy
19.51%

NANO AntiVirus
Riskware.Nsis.Downloader.cvxhzw, Riskware.Win32.Downloader.cvxhzw, Trojan.Win32.CheatEngine.ddqnic
19.51%

VIPRE Antivirus
Soft32Downloader, Threat.4783370, Trojan.Win32.Generic
19.51%

ESET NOD32
Win32/OpenCandy, MSIL/Soft32Downloader (variant), Win32/Soft32Downloader (variant)
12.20%

Agnitum Outpost
PUA.Soft32Downloader
12.20%

ESET NOD32
Win32/Soft32Downloader.D potentially unwanted application, MSIL/Soft32Downloader.A potentially unwanted application, Win32/OpenCandy.C potentially unsafe application
12.20%

Trend Micro House Call
TROJ_GEN.F47V1124, TROJ_GE.D6E51D90, Suspicious_GEN.F47V0319
12.20%

Antiy Labs AVL
Trojan/Win32.SGeneric, Trojan/Win32.Tgenic
12.20%

The following domains resolved to the IP address 54.230.194.224.

File URLs download from 54.230.194.224.

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68
http://teamspeak.soft32.com/get/file/id/.../  (teamspeak3-client-win32-3.0.11.1.exe)

0 / 68
http://teamspeak.soft32.com/goto/file/id/.../  (teamspeak3-client-win64-3.0.18.exe)

0 / 68

0 / 68
https://download.camfrog.com/en/.../camfrog.exe  (73d450260be3dda3930676efba0a316a)

0 / 68
http://teamspeak.soft32.com/get/file/id/.../  (teamspeak3-client-win32-3.0.15.1.exe)

0 / 68
https://download.camfrog.com/.../camfrog.exe  (591882d33161d2210ca4ff746936eb5e)

0 / 68

 
Latest 30 of 973 download URLs

The geographical location of this IP address.

Country:
United States (US)

Region:
Virginia

City:
Dulles

Coordinates:
38.9517, -77.4481

ARIN WHOIS:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# The following results may also be obtained via:
# https://whois.arin.net/rest/nets;q=54.230.194.224?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
#

Amazon Technologies Inc. AMAZON-2011L (NET-54-224-0-0-1) 54.224.0.0 - 54.239.255.255
Amazon.com, Inc. AMAZO-ZL4 (NET-54-230-0-0-1) 54.230.0.0 - 54.231.255.255



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#


Autonomous System Assignment
ASNumber:
16509

ASName:
AMAZON-02 - Amazon.com, Inc., US

ASHandle:
AS16509

Remove Malware from 54.230.194.224 - Powered by Reason Core Security