» download-is.chip.eu
Overview
Analysis
IPs Addresses (1)
Downloads (115)
Website Detail

download-is.chip.eu

NOT DISCLOSED! (Proxy Registrant)

Domain Information

The domain download-is.chip.eu is registered by proxy through Key-Systems GmbH. The domain hosts various software downloads. The hosted servers are located in Portland, Oregon within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the US West (Oregon) region datacenter.

Registrant:

NOT DISCLOSED!

Registrar:

Key-Systems GmbH

Server location:

Oregon, United States (US)

ASN:

AS16509 AMAZON-02 - Amazon.com, Inc.

Root domain:

chip.eu

Whois:

1 chip.eu record

Scanner detections:

Detections (98% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.installCore.WorldSet (M), PUP.installCore.ISfreemi (M), PUP.installCore.Extended (M), PUP.installCore.WorldSet.Installer (M), PUP.installCore.Extended.Installer (M), PUP.installCore (M), PUP.installCore.ISfreemi.Installer (M)

97.96%

Dr.Web

Trojan.Packed.24524, Trojan.Packed2.37723

16.33%

ESET NOD32

Win32/Parite.B virus, Win32/InstallCore.FH potentially unwanted application, Win32/Kryptik.BWJC trojan, Win32/InstallCore.CH potentially unwanted application

16.33%

avast!

Win32:Parite, Win32:Adware-gen [Adw]

10.20%

Microsoft Security Essentials

Threat.Undefined

10.20%

VIPRE Antivirus

Threat.46249, Threat.4786018

8.16%

Emsisoft Anti-Malware

Win32.Parite, Gen:Variant.Strictor.103245

8.16%

AVG

Win32/Parite, Adware Generic6.CNIV

8.16%

Norman

Win32.Parite.B, Gen:Variant.Strictor.103245

8.16%

F-Prot

W32/Parite.B

2.04%

McAfee

Virus.W32/Pate.b

2.04%

Kaspersky

Virus.Win32.Parite

2.04%

Sophos

PUA 'Install Core Click run software'

2.04%

F-Secure

Variant.Strictor.103245

2.04%

The domain download-is.chip.eu has been seen to resolve to the following IP address.

50.112.97.171

ec2-50-112-97-171.us-west-2.compute.amazonaws.com

December 18, 2013

File downloads found at URLs served by download-is.chip.eu.

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=78516 (directx_9.29_redist - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=156797 (camstudio-2.6 - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=84036 (openffc4.0.1 - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=3464218 (sims3_e3.mov - chip downloader.exe)

0 / 68

http://download-is.chip.eu/.../index.php?cid=136974 (utorrent_ro - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=6672516 (dxwebsetup - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=867514 (oovoosetup_3.0.4.37 - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=100716 (ss6.13.0.104 - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=136671 (3dmodels_top10.zip - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=1073105 (new7wonders.zip - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=131211 (stadsman_solar_system_maps__60368_.zip - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=134331 (arat_earth_city_lights__40698_.kmz - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=134171 (stadsman_day_and_night__59607_en.kmz - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=173195 (bluemarble.zip - chip downloader.exe)

6 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=4506903 (ffsetup260.zip - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=93630263 (convert-ost-to-pst-free - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=132175 (super_bros_3_mario_forever_v44 - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=105498 (photofiltre-en_6.5.2.zip - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=41945 (powerdvd13 - chip downloader.exe)

6 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=592781 (teamviewer_download.chip.eu - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=22484427 (minecraft_pcgdemo - chip downloader.exe)

6 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=26903 (tcmd8.01 - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=26906 (tcmd757a_ro - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=5181855 (wordpad_2009_rc1.zip - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=3928129 (freestudio_6.2.10.224 - chip downloader.exe)

6 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=149157 (snakemaster.zip - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=606779 (speed_dial_download.chip.eu.xpi - chip downloader.exe)

6 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=162239 (pdfcompressor - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=7455338 (powerpoint-2010 - chip downloader.exe)

1 / 68 (Adware)

http://download-is.chip.eu/.../index.php?cid=94939 (mx3.0.21.1000_ro - chip downloader.exe)

Latest 30 of 115 download URLs

URL:

http://download-is.chip.eu/

Title:

“Access Denied”

Network:

Amazon Web Services (AWS), running an EC2 instance

Web server:

Microsoft-IIS/8.5 (PHP/5.3.13)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.