getapplicationmy.info

WEB PICK - INTERNET HOLDINGS LTD

Domain Information

getapplicationmy.info is a landing page for the download and installtion of software wrapped with the WebPick Internet Holdings InstalleRex download manager which distributes adware web browser extensions and utility offers in the installer. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform. The domain is associated with the publisher WEB PICK - INTERNET HOLDINGS LTD who is located in Ramat Hasharon, Israel.
Registrar:
EvoPlus Ltd.

Server location:
Virginia, United States (US)

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.WebPick.Installer.K, Adware.WebPick.Installer.J, Adware.WebPick.Installer.v, Adware.WebPick.Installer.I, Adware.WebPick.Installer.H, Adware.WebPick.Installer.CC, Adware.WebPick.Installer.Q, Adware.WebPick.Installer.X, PUP.AlexeyKurilenko.CC, Adware.WebPick.Installer.g, Adware.WebPick.Installer.M, PUP.EdwardKosar, Adware.WebPick.Installer (M), PUP.EdwardKo (M), Adware.Applicat.Installer (M), Adware (M)
95.65%

Dr.Web
Threat.Undefined, Trojan.WebPick.2627, Trojan.WebPick.2579, Adware.Downware.2108, Trojan.WebPick.2452, Trojan.Crossrider.28215
39.13%

ESET NOD32
Win32/InstalleRex.M potentially unwanted application, Win32/InstalleRex.L potentially unwanted application, Win32/AdWare.MultiPlug.CN application, Win32/Adware.MultiPlug.ED application
39.13%

McAfee
PUP-FHQ!797F1B7A44F7, PUP-FHQ!CD87878FF64D, Trojan.Artemis!BB57FC5359EE, MultiPlug-FRO, MultiPlug-FUH, Program.MultiPlug-FUH
39.13%

NANO AntiVirus
Riskware.Win32.InfoLeak.cvgqot, Riskware.Win32.MultiPlug.ddsvpv, Riskware.Win32.Downware.crdwjq, Riskware.Win32.MultiPlug.dfjscb
39.13%

Avira AntiVirus
Adware/InstallRex.G, Adware/InstallRex.EL, ADWARE/InstallRex.Gen, TR/AntiFW.b.106, Adware/InstallRex.fgw, TR/AntiFW.b.114
39.13%

AVG
Generic, Adware BundleApp.EJ, Adware Generic5, Adware Generic_r.VD, Adware Generic6.HUD, Adware Generic6.HTL, Adware Skodna.Generic_r.HK
39.13%

Sophos
InstallRex, MultiPlug, Virus 'W32/Patched-I', PUA 'MultiPlug' (of type Adware), PUA 'InstallRex'
36.96%

Comodo Security
Application.Win32.InstalleRex.KG, Application.Win32.GreenApp.RR, Application.Win32.InstalleRex.LL, Application.Win32.Multiplug.CT
36.96%

Vba32 AntiVirus
Downware.TSU, Downloader.AdLoad, SScope.Adware.MultiPlug, suspected of Heur.Malware-Cryptor.Multiplug
36.96%

avast!
Win32:InstalleRex-BW [PUP], Win32:InstalleRex-BX [PUP], Win32:InstalleRex-CD [PUP], Win32:InstalleRex-CH [PUP], Win32:InstalleRex-AI [PUP]
34.78%

VIPRE Antivirus
Threat.4150696, Trojan.Win32.Generic, Threat.14871, Threat.4726519
34.78%

Malwarebytes
PUP.Optional.InstalleRex, PUP.Optional.DownloaderSS, PUP.Optional.MultiPlug
34.78%

Kaspersky
Trojan.Win32.AntiFW, not-a-virus:AdWare.Win32.MultiPlug
32.61%

Antiy Labs AVL
RiskWare[Downloader:not-a-virus,HEUR]/Win32.AdLoad, Trojan/Win32.AntiFW.b, Trojan/Win32.TSGeneric, GrayWare[AdWare:not-a-virus]/Win32.MultiPlug
32.61%

The domain getapplicationmy.info has been seen to resolve to the following 17 IP addresses.

ec2-54-148-67-213.us-west-2.compute.amazonaws.com
February 7, 2015

ec2-54-68-142-187.us-west-2.compute.amazonaws.com
November 3, 2014

ec2-54-68-85-18.us-west-2.compute.amazonaws.com
November 3, 2014

ec2-54-167-174-238.compute-1.amazonaws.com
September 3, 2014

ec2-54-91-118-83.compute-1.amazonaws.com
September 3, 2014

ec2-54-213-175-182.us-west-2.compute.amazonaws.com
August 26, 2014

ec2-54-191-153-135.us-west-2.compute.amazonaws.com
August 22, 2014

ec2-54-191-186-103.us-west-2.compute.amazonaws.com
August 7, 2014

ec2-54-191-92-197.us-west-2.compute.amazonaws.com
July 6, 2014

ec2-54-191-92-23.us-west-2.compute.amazonaws.com
July 6, 2014

ec2-54-191-42-81.us-west-2.compute.amazonaws.com
July 6, 2014

ec2-54-191-83-149.us-west-2.compute.amazonaws.com
July 6, 2014

ec2-54-213-103-160.us-west-2.compute.amazonaws.com
June 20, 2014

(CloudFlare)
February 10, 2014

(CloudFlare)
February 10, 2014

December 26, 2013

December 26, 2013

File downloads found at URLs served by getapplicationmy.info.

 
Latest 30 of 72 download URLs