home

cdn.mypcbackup.com

The Endurance International Group Inc

Domain Information

The domain cdn.mypcbackup.com registered by The Endurance International Group Inc was initially registered in September of 2003 through ENOM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in London, England within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrar:
DOMAIN.COM, LLC

Server location:
England, United Kingdom (GB)

Create date:
Saturday, September 13, 2003

Expires date:
Monday, September 13, 2021

Updated date:
Wednesday, March 30, 2016

ASN:
AS54104 AS-NETDNA - netDNA,US

Root domain:
mypcbackup.com

Whois:
2 mypcbackup.com records

Scanner detections:
Detections  (52% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.JDIBACKUPLIMITED.L, PUP.Installer.JDIBACKUPLIMITED.L, PUP.Optional.Installer.JDIBACKUPLIMITED.Q, PUP.Optional.Installer.Q, PUP.Optional.Installer.L, Win64.Generic, PUP.Optional.BackupSoftwareLimited.O, PUP.Optional.BackupSoftwareLimited.P, Win32.Generic.Installer.Meta, PUP.Backup.JustDevelopeIt.Optional.Installer.Meta (L)
48.57%

Dr.Web
Win32.Sector.30, Threat.Undefined, - infected container c:\users\test\appdata\local\temp\872d45d9f8b5ac7a96b519dd83fe31fa107a625b Win3, Detection.Undefined
42.86%

ESET NOD32
Win32/Sality.NBA virus, Detection.Undefined, MSIL/MyPCBackup.D potentially unwanted application
22.86%

Kaspersky
Virus.Win32.Sality, not-a-virus:RiskTool.Win32.BackupMyPC
8.57%

Emsisoft Anti-Malware
Win32.Sality
5.71%

Microsoft Security Essentials
Threat.Undefined
5.71%

F-Prot
W32/Sality.gen2
5.71%

avast!
Win32:SaliCode
5.71%

AVG
Win32/Sality
5.71%

Norman
Win32.Sality.3
5.71%

Trend Micro House Call
TROJ_PAM_0000040299.T3
2.86%

Bkav FE
W32.HfsAdware
2.86%

McAfee
Trojan.Artemis!328DFC6199FA
2.86%

VIPRE Antivirus
Threat.4721115
2.86%

F-Secure
Win32.Sality.3
2.86%

The domain cdn.mypcbackup.com has been seen to resolve to the following 3 IP addresses.

94.31.29.42
94.31.29.42.IPYX-077437-ZYO.above.net
June 18, 2016

94.31.29.238
94.31.29.238.IPYX-077437-ZYO.above.net
December 2, 2014

108.161.187.46
February 2, 2014

File downloads found at URLs served by cdn.mypcbackup.com.

0 / 68
https://cdn.mypcbackup.com/MyPCBackup_WebInstaller.exe  (4b391c42f88684543f740bebdc2ea158)

1 / 68      (inconclusive)
http://cdn.mypcbackup.com/MyPCBackup_Setup.exe  (95393dc7632c7b0339657bb53ab0c943)

1 / 68      (inconclusive)
http://cdn.mypcbackup.com/MyPCBackup_WebInstaller.exe  (dd3604b2e6efaa9aa96112e211b14df9)

2 / 68      (inconclusive)
https://cdn.mypcbackup.com/MyPCBackup_Setup.exe  (95d02488908514b883530e33abc724b8)

URL:
http://cdn.mypcbackup.com/

SSL certificate subject:
CN=cdn.mypcbackup.com, OU=Domain Control Validated, C=GB

SSL certificate issuer:
CN=AlphaSSL CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Web server:
NetDNA-cache/2.2

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.