bookjpg.com

WHOISGUARD, INC.  (Proxy Registrant)

Domain Information

The domain bookjpg.com is registered by proxy through ENOM, INC. and was originally registered in March of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Kowloon, Hong Kong (Sar) within Hong Kong which resides on the Asia Pacific Network Information Centre network.
Remove Malware from bookjpg.com - Powered by Reason Core Security
Registrar:
ENOM, INC.

Server location:
Hong Kong (Sar), Hong Kong (HK)

Create date:
Monday, March 10, 2014

Expires date:
Tuesday, March 10, 2015

Updated date:
Monday, March 10, 2014

ASN:
AS26481 REBEL-HOSTING - Rebel Hosting,US

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.PaymentsInteractiveSL.E, PUP.Tuguu.PaymentsInteractive.Bundler (M)
100.00%

MicroWorld eScan
Gen:Variant.Application.Bundler.DomaIQ.3
50.00%

McAfee
Adware-DomaIQ!BC6F06B8CA7F
50.00%

Malwarebytes
PUP.Optional.BundleInstaller.A
50.00%

K7 Gateway Antivirus
Unwanted-Program
50.00%

K7 AntiVirus
Unwanted-Program
50.00%

NANO AntiVirus
Trojan.Win32.Stealer.cwxrck
50.00%

Kaspersky
not-a-virus:AdWare.Win32.Lollipop
50.00%

Bitdefender
Gen:Variant.Application.Bundler.DomaIQ.3
50.00%

Agnitum Outpost
PUA.Lollipop
50.00%

Lavasoft Ad-Aware
Gen:Variant.Application.Bundler.DomaIQ.3
50.00%

F-Secure
Gen:Variant.Application.Bundler
50.00%

Dr.Web
Trojan.DownLoader9.62498
50.00%

VIPRE Antivirus
DomaIQ
50.00%

Avira AntiVirus
APPL/DomaIQ.Gen
50.00%

The domain bookjpg.com has been seen to resolve to the following IP address.

May 1, 2014

File downloads found at URLs served by bookjpg.com.

1 / 68      (Adware)
http://bookjpg.com/.../Java.exe  (517fd6843954befb9286c1b4a7d2fa04)

23 / 68    (Adware)
http://bookjpg.com/.../Java.exe  (bc6f06b8ca7f4d00bcfc9ed5b2a1dc03)

URL:
http://bookjpg.com/

Web server:
nginx

Remove Malware from bookjpg.com - Powered by Reason Core Security