www.retinapost.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain www.retinapost.com is registered by proxy through GODADDY.COM, LLC and was originally registered in July of 2011. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Zurich, Zurich within Switzerland which resides on the RIPE Network Coordination Centre network.
Registrar:
GODADDY.COM, LLC

Server location:
Zurich, Switzerland (CH)

Create date:
Monday, July 11, 2011

Expires date:
Saturday, July 11, 2015

Updated date:
Saturday, July 12, 2014

ASN:
AS51852 PLI-AS Private Layer INC

Root domain:

Scanner detections:
Detections  (89% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.PCCleaner.Installer.Meta (M), PUP.ParetoLogic.Optional.Installer.Meta (L), PUP.Optional.ReimageLimited.N
100.00%

ESET NOD32
Win32/Toolbar.Babylon, Win32/ReImageRepair (variant)
50.00%

McAfee
Artemis!D566201EF927, Artemis!8DDC6C3D11DC
50.00%

Trend Micro House Call
TROJ_GEN.F47V0122, Suspicious_GEN.F47V1116
50.00%

McAfee Web Gateway
Artemis!D566201EF927
50.00%

Dr.Web
Adware.Plugin.171
50.00%

Rising Antivirus
NS:PUF.SilenceInstaller!1.9DDF
37.50%

Bkav FE
W32.Clod547.Trojan
37.50%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
37.50%

NANO AntiVirus
Riskware.Nsis.Babylon.cvvuwk
37.50%

Antiy Labs AVL
GrayWare[AdWare:not-a-virus]/Win32.Inffinity
37.50%

nProtect
Joke/W32.ArchSMS.286720
37.50%

herdProtect (fuzzy)
a variant of 9bfd12ed19eb26ea461f9221316feff8a0a795a8
12.50%

AhnLab V3 Security
Trojan/Win32.FakeAV
12.50%

avast!
Win32:Rootkit-gen [Rtk]
12.50%

The domain www.retinapost.com has been seen to resolve to the following IP address.

January 18, 2014

File downloads found at URLs served by www.retinapost.com.

13 / 68    (PUP)

13 / 68    (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

0 / 68

12 / 68    (PUP)

12 / 68    (PUP)

URL:
http://www.retinapost.com/

Title:
“Retina Post | Windows Updates”

Web server:
Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 (PHP/5.3.21)

Facebook:
Shares:  1

Twitter:
Shares:  2

Quantcast US:
Rank:  953,441

Statistics are for the previous month.