www.clipskeeper.com

WHOISGUARD, INC.  (Proxy Registrant)

Domain Information

The domain www.clipskeeper.com is registered by proxy through ENOM, INC. and was originally registered in November of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Amsterdam, Noord-Holland within Netherlands which resides on the RIPE Network Coordination Centre network.
Remove Malware from www.clipskeeper.com - Powered by Reason Core Security
Registrar:
ENOM, INC.

Server location:
Noord-Holland, Netherlands (NL)

Create date:
Friday, November 23, 2012

Expires date:
Sunday, November 23, 2014

Updated date:
Friday, November 22, 2013

ASN:
AS39572 ADVANCEDHOSTERS-AS ADVANCEDHOSTERS LIMITED

Root domain:

Scanner detections:
Detections  (67% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.Amonetize.A
66.67%

avast!
Win32:Amonetize-N [PUP], Win32:Amonetize-AF [PUP]
66.67%

Avira AntiVirus
ADWARE/Adware.Gen2
66.67%

ESET NOD32
Win32/Amonetize.AI (variant), Win32/Amonetize.AJ (variant)
66.67%

Dr.Web
Adware.Downware.2250
33.33%

AhnLab V3 Security
PUP/Win32.Amonetiz
33.33%

Trend Micro House Call
TROJ_GEN.F47V0330
33.33%

Kaspersky
not-a-virus:HEUR:AdWare.Win32.Amonetize
33.33%

Agnitum Outpost
PUA.Amonetize
33.33%

Sophos
Amonetize
33.33%

Fortinet FortiGate
Riskware/Amonetize
33.33%

Qihoo 360 Security
Win32/Virus.Adware.932
33.33%

Reason Heuristics
Threat.Win.Reputation.IMP
33.33%

Microsoft Security Essentials
SoftwareBundler:Win32/Cakeport
33.33%

Panda Antivirus
Suspicious file
33.33%

The domain www.clipskeeper.com has been seen to resolve to the following IP address.

March 27, 2014

File downloads found at URLs served by www.clipskeeper.com.

2 / 68      (inconclusive)

11 / 68    (PUP)
http://www.clipskeeper.com/.../36990  (setup__6789_il632.exe)

6 / 68      (PUP)
http://www.clipskeeper.com/.../36990  (gotclipdownloader__6629_i460594267_il133.exe)

URL:
http://www.clipskeeper.com/

Google Analytics:
UA-23390261

Title:
“GotCLIP Downloader -”

Web server:
Apache/2.2.23 (Unix) PHP/5.2.17 (PHP/5.2.17)

Remove Malware from www.clipskeeper.com - Powered by Reason Core Security