download.allmyapps.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain download.allmyapps.com is registered by proxy through GODADDY.COM, LLC and was originally registered in September of 2008. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Remove Malware from download.allmyapps.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Virginia, United States (US)

Create date:
Monday, September 22, 2008

Expires date:
Sunday, September 22, 2019

Updated date:
Saturday, April 18, 2015

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Allmyapps.e, PUP.Installer.Allmyapps.T, PUP.ClientConnect.T, PUP.Installer.ClientConnect.T, PUP.Installer.ClientConnect.j, PUP.Installer.ALLMYAPPS.V, PUP.Installer.Allmyapps.Z, PUP.Installer.ALLMYAPPS.J, PUP.Installer.ALLMYAPPS.CC, PUP.ALLMYAPPS.Installer (M), PUP.Allmyapps.Installer (M)
100.00%

Dr.Web
Adware.Conduit.27, Trojan.DownLoader11.6726
71.11%

AVG
MalSign.Generic, Allmyapps
60.00%

Qihoo 360 Security
HEUR/Malware.QVM40.Gen
46.67%

McAfee Web Gateway
BehavesLike.Win32.Downloader.fc, BehavesLike.Win32.CryptDoma.gc, BehavesLike.Win32.Downloader.hc
42.22%

Bkav FE
W32.HfsAdware
37.78%

Trend Micro House Call
TROJ_GE.582CF559, TROJ_GEN.F47V0505, HV_ZYX_CA224AD0.TOMC, Suspicious_GEN.F47V0402, Suspicious_GEN.F47V0331
35.56%

NANO AntiVirus
Trojan.Win32.DownLoader11.dlnleq
31.11%

McAfee
Artemis!C47045804AFF, Artemis!7DA64AE0EAC2, Artemis!CEA8C912EC0B
26.67%

herdProtect (fuzzy)
a variant of d91add39f7fabeb2bca6c40bcdde575cfca1e67e, a variant of 942dcd147f90485b4bf4b42298d64b3677868a3c, a variant of ca6044176f6780b68ba8cbe29ac80e38e9e943e1
17.78%

Malwarebytes
PUP.Optional.Conduit, PUP.Optional.Conduit.A, PUP.Optional.AllMyApps, PUP.Optional.OpenCandy
11.11%

VIPRE Antivirus
Conduit, Trojan.Win32.Generic, Opencandy
8.89%

ESET NOD32
Win32/Wajam (variant), Win32/Toolbar.Conduit.AB (variant), Win32/OpenCandy
8.89%

avast!
Win32:PUP-gen [PUP], Win32:Malware-gen
4.44%

Boost by Reason
Adware.Installer.Allmyapps.e
2.22%

The domain download.allmyapps.com has been seen to resolve to the following 2 IP addresses.

ec2-54-163-243-145.compute-1.amazonaws.com
December 2, 2014

allmyapps.typhon.net
February 7, 2014

File downloads found at URLs served by download.allmyapps.com.

1 / 68      (PUP)
http://download.allmyapps.com/LazPaint_Allmyapps.exe  (b2859ae73495c3fd427496c98b435f35)

4 / 68      (PUP)

1 / 68      (PUP)

9 / 68      (PUP)
http://download.allmyapps.com/Allmyapps.exe  (1c172ff2d318bc3980225037045f527d)

6 / 68      (PUP)
http://download.allmyapps.com/Google-Chrome_Allmyapps.exe  (029bd34af08e78bd0396fde8cf0656c7)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)
http://download.allmyapps.com/Minecraft_Allmyapps.exe  (85ef36da32cf4697f3bf14d5e39c3f8a)

1 / 68      (PUP)

1 / 68      (PUP)

4 / 68      (PUP)
http://download.allmyapps.com/Popcorn-Time_Allmyapps.exe  (0bb3d5b371bc48efe15d4a06f39f4b7b)

5 / 68      (PUP)
http://download.allmyapps.com/Wunderlist_Allmyapps.exe  (219a39143ce28749329bcd5ba993b16d)

4 / 68      (PUP)

5 / 68      (PUP)
http://download.allmyapps.com/iTunes_Allmyapps.exe  (1665405bf2524014bb6e7fa80956e28e)

5 / 68      (PUP)
http://download.allmyapps.com/Siri_Allmyapps.exe  (0749f03ff2b5369bd88a4e5fd039cda2)

2 / 68      (PUP)
http://download.allmyapps.com/B-Folders_Allmyapps.exe  (e3e329dd4496d164f2ca16145b2c7061)

4 / 68      (PUP)

7 / 68      (Adware)

7 / 68      (Adware)

3 / 68      (PUP)
http://download.allmyapps.com/Allmyapps-Allmyapps.exe  (2047fe9224c0b7fbb2d188560e74165b)

3 / 68      (PUP)

1 / 68      (PUP)
http://download.allmyapps.com/Flipboard_Allmyapps.exe  (15ee98b7ab8d3bfd755272d09c81bda1)

2 / 68      (PUP)

The following 3 files have been seen to comunicate with download.allmyapps.com in live environments.

URL:
http://download.allmyapps.com/

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
nginx/1.6.1

Remove Malware from download.allmyapps.com - Powered by Reason Core Security