appllicatiionew.com

GoNameSales.com

Domain Information

The domain appllicatiionew.com registered by GoNameSales.com was initially registered in April of 2015 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Portland, Oregon within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.
Remove Malware from appllicatiionew.com - Powered by Reason Core Security
Registrar:
INTERSOLVED-FL.COM, INC.

Server location:
Oregon, United States (US)

Create date:
Wednesday, April 15, 2015

Expires date:
Friday, April 15, 2016

Updated date:
Wednesday, April 15, 2015

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.

Scanner detections:
Detections  (93% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.WebPick.Installer.t, Adware.WebPick.Installer.u, Adware.WebPick.Installer., Adware.WebPick.Installer.z, Adware.WebPick.Installer.DD, Adware.WebPick.Installer.E, Adware.WebPick.Installer.o, Adware.WebPick.Installer.I, Adware.WebPick.Installer.T, Adware.WebPick.Installer.d, Adware.WebPick.Installer.g, Adware.WebPick.Installer.m, Adware.WebPick.Installer.GG, Adware.WebPick.Installer.x, Adware.WebPick.Installer.W, PUP.BogdanDidenko.n, Adware.WebPick.Installer.AA, Adware.WebPick.Installer.O, Adware.WebPick.Installer.V, Adware.WebPick.Installer.U, Adware.WebPick.Installer.j, Adware.WebPick.Installer.Y, Adware.WebPick.Installer.k, Adware.WebPick.Installer.e, Adware.WebPick.Installer.h, Adware.WebPick.Installer.p, Adware.WebPick.Installer.y, Adware.WebPick.Installer.S, Adware.WebPick.Installer.i, Adware.WebPick.Installer (M), PUP.WebPick.SergeyPetrov (M)
100.00%

Malwarebytes
PUP.Optional.Preloader, PUP.Optional.InstalleRex, PUP.Optional.AppReady, PUP.Optional.Installrex, PUP.Optional.Installex
91.11%

NANO AntiVirus
Riskware.Win32.InfoLeak.cvgqot, Riskware.Win32.Downware.cvftvo, Trojan.Win32.Genome.cxhrhg, Riskware.Win32.Downware.cvftun
91.11%

McAfee
PUP-FHQ!8B5AF94F80A1, PUP-FHQ!2588EA52ED68, PUP-FHQ!20A86A45144C, PUP-FHQ!4517EDF1A3F7, PUP-FHQ!0C0B57A6147B, PUP-FHQ!51622D156484
91.11%

avast!
Win32:Installer-AP [PUP], Win32:InstalleRex-BI [PUP], Win32:InstalleRex-BM [PUP], Win32:Agent-ATOK [Trj]
88.89%

Comodo Security
Application.Win32.InstalleRex.KG, TrojWare.Win32.TrojanDownloader.Agent.AOB
88.89%

Dr.Web
Trojan.WebPick.29, Adware.Downware.2108, Trojan.Siggen4.41297, Threat.Undefined
88.89%

VIPRE Antivirus
Installerex/WebPick, Trojan.Win32.Generic, Trojan.Win32.Generic!SB.0, Threat.4150696, Threat.4753027
88.89%

K7 Gateway Antivirus
Unwanted-Program , Trojan
86.67%

K7 AntiVirus
Unwanted-Program , Trojan
86.67%

Kaspersky
Trojan.Win32.AntiFW, HEUR:Trojan.Win32.Generic
86.67%

Avira AntiVirus
ADWARE/InstallRex.Gen7, Adware/InstallRex.dbq, Adware/InstallRex.4, Adware/InstallRex.BT, TR/AntiFW.b.86, TR/AntiFW.b.89
86.67%

G Data
Win32.Application.EZDownloader, Application.Generic.623310, Win32.Application.InstalleRex, Application.Generic.622976, Trojan.Generic.11083433
86.67%

Rising Antivirus
PE:PUF.InstallRex!1.9E4C, PE:Trojan.AntiFW!6.1950, PE:Trojan.AntiFW!6.162C, PE:Trojan.AntiFW!6.1665, PE:Malware.InstalleRex!6.1639
86.67%

AVG
MalSign.Generic, Trojan horse Downloader.Agent2.BUDX, Trojan horse Crypt_s.GAB, InstallRex
86.67%

The domain appllicatiionew.com has been seen to resolve to the following 15 IP addresses.

August 11, 2015

ec2-54-186-53-99.us-west-2.compute.amazonaws.com
September 3, 2014

ec2-54-191-209-50.us-west-2.compute.amazonaws.com
August 19, 2014

ec2-54-191-186-103.us-west-2.compute.amazonaws.com
August 10, 2014

ec2-54-191-42-81.us-west-2.compute.amazonaws.com
July 10, 2014

ec2-54-191-83-149.us-west-2.compute.amazonaws.com
July 10, 2014

ec2-54-191-92-23.us-west-2.compute.amazonaws.com
July 6, 2014

ec2-54-187-76-32.us-west-2.compute.amazonaws.com
July 6, 2014

ec2-54-191-54-126.us-west-2.compute.amazonaws.com
July 6, 2014

cf-173-245-61-83.cloudflare.com
June 26, 2014

cf-173-245-60-83.cloudflare.com
June 26, 2014

(CloudFlare)
May 12, 2014

(CloudFlare)
May 12, 2014

ec2-54-186-255-26.us-west-2.compute.amazonaws.com
April 4, 2014

ec2-54-201-215-30.us-west-2.compute.amazonaws.com
March 7, 2014

File downloads found at URLs served by appllicatiionew.com.

 
Latest 30 of 92 download URLs

The following 2 files have been seen to comunicate with appllicatiionew.com in live environments.

URL:
http://appllicatiionew.com/

Title:
“appllicatiionew.com”

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Apache

Remove Malware from appllicatiionew.com - Powered by Reason Core Security