home

cdn.pmdownloadcdn.com.s3.amazonaws.com

Amazon.com, Inc

Domain Information

The domain cdn.pmdownloadcdn.com.s3.amazonaws.com registered by Amazon.com, Inc was initially registered in August of 2005 through MARKMONITOR INC.. The hosted servers are located in Wappingers Falls, New York within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform. It utilizes the Amazon Simple Storage Service (Amazon S3) a scalable storage web service for hosting content.
Registrar:
MARKMONITOR INC.

Server location:
New York, United States (US)

Create date:
Thursday, August 18, 2005

Expires date:
Tuesday, January 16, 2018

Updated date:
Thursday, May 1, 2014

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.

Root domain:
amazonaws.com

Whois:
2 amazonaws.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Baidu Antivirus
Adware.Win32.DealPly, Trojan.Win32.MsiDrop, Adware.Win32.offerblvd, Adware.Win32.OfferBLVD, PUA.Win32.DealPly
100.00%

Reason Heuristics
Threat.Win.Reputation.IMP, PUP.MYPOPSHOP.J
100.00%

MicroWorld eScan
Application.Generic.670804, Trojan.GenericKD.1868287, Gen:Variant.Graftor.156987, Gen:Variant.Dropper.115, Trojan.GenericKD.2015090, Trojan.GenericKD.2170533, Gen:Variant.Adware.Symmi.292
91.67%

Trend Micro House Call
Suspicious_GEN.F47V0702, TROJ_GEN.R0C1H09IQ14, Suspicious_GEN.F47V0905, TROJ_GEN.R0C1H09J214, TROJ_GEN.R047H09KQ14, Suspicious_GEN.F47V1207, Suspicious_GEN.F47V0115
83.33%

avast!
Win32:PUP-gen [PUP], Win32:Dropper-gen [Drp], Win32:Malware-gen, Adware-gen [Adw]
83.33%

Bitdefender
Application.Generic.670804, Trojan.GenericKD.1868287, Gen:Variant.Graftor.156987, Gen:Variant.Dropper.115, Trojan.GenericKD.2015090
83.33%

Lavasoft Ad-Aware
Application.Generic.670804, Trojan.GenericKD.1868287, Gen:Variant.Graftor.156987, Gen:Variant.Dropper.115, Trojan.GenericKD.2015090
83.33%

F-Secure
Application.Generic.670804, Trojan.GenericKD.1868287, Gen:Variant.Graftor.156987, Gen:Variant.Dropper.115, Trojan.GenericKD.2015090
83.33%

G Data
Application.Generic.670804, Trojan.GenericKD.1868287, Gen:Variant.Graftor.156987, Gen:Variant.Dropper.115, Trojan.GenericKD.2015090
83.33%

ESET NOD32
Win32/DealPly (variant), Win32/TrojanDropper.MsiDrop (variant), Win32/DealPly.AC (variant), Win32/DealPly.AC potentially unwanted (variant)
75.00%

McAfee
Artemis!C65466321B74, Artemis!F51A30D33776, Artemis!5255C259AEA3, Artemis!1989D61A3295, Artemis!E54ABC592FBE, Artemis!ABA069326327
75.00%

Emsisoft Anti-Malware
Trojan.GenericKD.1868287, Gen:Variant.Graftor.156987, Adware.Smartbar.V, Trojan.GenericKD.2015090, Trojan.GenericKD.2170533
75.00%

Sophos
Generic PUA KK, Generic PUA JO, Generic PUA NM, DealPly Updater
66.67%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696
66.67%

Qihoo 360 Security
HEUR/Malware.QVM06.Gen, Win32/Trojan.6f8, Win32/Trojan.7a4, HEUR/QVM41.1.Malware.Gen, Win32/Virus.Adware.219
66.67%

The domain cdn.pmdownloadcdn.com.s3.amazonaws.com has been seen to resolve to the following 10 IP addresses.

54.231.80.240
s3-1-w.amazonaws.com
August 26, 2016

54.231.72.75
s3-1-w.amazonaws.com
May 18, 2016

54.231.98.136
s3-1-w.amazonaws.com
April 21, 2016

54.231.98.192
s3-1-w.amazonaws.com
February 29, 2016

54.231.19.176
February 22, 2016

54.231.48.40
s3-1-w.amazonaws.com
February 22, 2016

54.231.17.25
s3-1-w.amazonaws.com
February 19, 2016

54.231.13.9
s3-1-w.amazonaws.com
February 9, 2016

54.231.14.153
s3-1-w.amazonaws.com
July 1, 2015

205.251.243.193
s3-1-w.amazonaws.com
September 13, 2014

File downloads found at URLs served by cdn.pmdownloadcdn.com.s3.amazonaws.com.

19 / 68    (PUP)
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/pricefountain/.../pfinst.exe  (pm.exe)

21 / 68    (PUP)
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/.../pm.exe  (aird5eb.exe)

6 / 68      (Adware)
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/.../offerBLVD.exe  (1_offer_7.exe)

24 / 68    (PUP)
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/.../OfferBLVD.exe  (e54abc592fbe60429e02f6d9f7ee2833)

20 / 68    (Malware)
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/.../offerBLVD.exe  (1989d61a32951c618827f259e41b267b)

21 / 68    (PUP)
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/.../pfinst1.0.8.6.exe  (pricefountain.exe)

22 / 68    (PUP)
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/.../pfinst_1096.exe  (a1deb0945ec363c6ab5f1750238b18a5)

21 / 68    (PUP)
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/.../pm.exe  (uninst.exe)

24 / 68    (PUP)
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/pricefountain/.../pfinst.exe  (uninst.exe)

16 / 68    (PUP)
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/pricefountain/.../pfinst.exe  (pm.exe)

18 / 68    (PUP)
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/pricefountain/.../pfinst.exe  (a0179fd992f172e3ce2bf9ae5ce7f9af)

20 / 68    (Adware)
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/.../offerBLVD.exe  (2bc682ed23db4001e524d97c87b3cad7)

URL:
http://cdn.pmdownloadcdn.com.s3.amazonaws.com/

Network:
Amazon Web Services (AWS)

Web server:
AmazonS3

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.