clk.adgatemedia.com

ADGATE MEDIA LLC

Domain Information

The domain clk.adgatemedia.com registered by ADGATE MEDIA LLC was initially registered in January of 2011 through ENOM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrar:
ENOM, INC.

Server location:
Virginia, United States (US)

Create date:
Friday, January 21, 2011

Expires date:
Tuesday, January 21, 2020

Updated date:
Wednesday, December 16, 2015

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.SecureInstall.L, Win32.Generic, PUP.Widdit.OneFloor.Bundler (M), PUP.Widdit.SimplyTe.Bundler (M), PUP.Widdit (M)
100.00%

McAfee
Artemis!25CCAE59E743, Artemis!B1A6979F1F40
33.33%

Malwarebytes
PUP.Optional.SafeInstall.A, MSIL.Solimba
33.33%

Trend Micro House Call
TROJ_GEN.F47V0411, TROJ_GEN.F47V1104
33.33%

NANO AntiVirus
Riskware.Win32.Searcher.csnymk, Trojan.Win32.Conduit.csnxzm
33.33%

Dr.Web
Adware.Searcher.2593, Adware.Downware.1326
33.33%

McAfee Web Gateway
Artemis!25CCAE59E743, Artemis!B1A6979F1F40
33.33%

Sophos
DomainIQ pay-per install, Solimba Installer
33.33%

ESET NOD32
Win32/InstallIQ (variant), Win32/DownWare
33.33%

VIPRE Antivirus
InstallIQ Installer
16.67%

G Data
Win32.Application.InstallIQ
16.67%

Rising Antivirus
PE:PUF.InstallIQ!1.9E4F
16.67%

AVG
MultiBundle
16.67%

Panda Antivirus
Adware/Conduit
16.67%

Kingsoft AntiVirus
VIRUS_UNKNOWN
16.67%

The domain clk.adgatemedia.com has been seen to resolve to the following 5 IP addresses.

January 30, 2016

January 30, 2016

ec2-107-21-52-90.compute-1.amazonaws.com
May 30, 2014

ec2-107-23-142-44.compute-1.amazonaws.com
May 30, 2014

ec2-107-23-165-131.compute-1.amazonaws.com
May 30, 2014

File downloads found at URLs served by clk.adgatemedia.com.

The following 3 files have been seen to comunicate with clk.adgatemedia.com in live environments.

URL:
http://clk.adgatemedia.com/

Network:
Amazon Web Services (AWS), running an EC2 instance

SSL certificate subject:
CN=ssl276685.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
cloudflare-nginx (PHP/5.5.9-1ubuntu4.14)