home

www.scilor.com

WHOISGUARD, INC.  (Proxy Registrant)

Domain Information

The domain www.scilor.com is registered by proxy through ENOM, INC. and was originally registered in January of 2010. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Amsterdam, Noord-Holland within Netherlands which resides on the RIPE Network Coordination Centre network.
Registrar:
ENOM, INC.

Server location:
Noord-Holland, Netherlands (NL)

Create date:
Monday, January 25, 2010

Expires date:
Thursday, January 25, 2018

Updated date:
Wednesday, December 30, 2015

ASN:
AS29073 ECATEL-AS AS29073, Ecatel Network

Root domain:
scilor.com

Whois:
3 scilor.com records

Scanner detections:
Detections  (63% detected)

Scan engine
Details
Detections

ESET NOD32
Win32/OpenCandy, Win32/Somoto, Win32/InstallMonetizer.AF, Win32/InstallCore.FZ, Win32/Amonetize.AA (variant), Win32/Amonetize.AG (variant)
75.00%

Reason Heuristics
PUP.OpenCandy.Installer (L), PUP.InstallMonetizer.Bundle (M), PUP.Installer.Amonetizeltd.?, PUP.Installer.ShetefSolutionsConsulting1998.q, Threat.Win.Reputation.IMP
58.33%

Trend Micro House Call
TROJ_GEN.F47V0911, TROJ_GEN.F47V1113, TROJ_GEN.F47V0106, TROJ_GEN.F47V0303, TROJ_GEN.F47V1216, TROJ_GEN.F47V0408
50.00%

Dr.Web
Trojan.Packed.24524, Adware.Downware.1655, Adware.Downware.1575, Adware.Downware.1833, Adware.Downware.2467, Trojan.DownLoader12.58090
50.00%

Sophos
Install Core Click run software, Amonetize
41.67%

Avira AntiVirus
ADWARE/InstallCore.Gen7, ADWARE/Adware.Gen2, TR/Agent.8928012
41.67%

McAfee
Artemis!054728CEA210, Adware-Amonetize!A217E1B02F92, Artemis!0EAAA6E39EAF, Artemis!CC0223569D77
33.33%

K7 AntiVirus
Unwanted-Program , Trojan
33.33%

Malwarebytes
PUP.Optional.InstallMonetizer, PUP.Optional.Amonetize.A
33.33%

avast!
Win32:InstallCore-HG [PUP], Win32:Adware-BJY [PUP], Win32:Amonetize-AM [PUP]
25.00%

VIPRE Antivirus
InstallCore, Amonetize
25.00%

AhnLab V3 Security
PUP/Win32.Amonetiz
16.67%

IKARUS anti.virus
not-a-virus:AdWare.Win32.Amonetize, Trojan.Agent
16.67%

Bkav FE
W32.Clod5e3.Trojan
8.33%

SUPERAntiSpyware
PUP.InstallCore/Variant
8.33%

The domain www.scilor.com has been seen to resolve to the following IP address.

80.82.79.63
hosted-by.ecatel.net
December 18, 2013

File downloads found at URLs served by www.scilor.com.

0 / 68
http://www.scilor.com/grooveshark/.../serve.php?version=0.4.12  (installscilorsgrooveshark.comdownloaderv0.4.12opca.exe)

1 / 68      (Malware)
http://www.scilor.com/grooveshark/.../serve.php?version=0.4.12  (scilors grooveshark__3502_il14843.exe)

4 / 68      (Malware)
http://www.scilor.com/grooveshark/.../serve.php?version=0.5.0  (installscilorsgrooveshark.comdownloaderv0.5.0.exe)

13 / 68    (PUP)
http://www.scilor.com/grooveshark/.../serve.php?version=0.4.12  (tinyumbrella 7.04.00.exe__3038_i544636956_il3969822.exe)

0 / 68
http://www.scilor.com/grooveshark/.../serve.php?version=0.4.15  (installscilorsgrooveshark.comdownloaderv0.4.15.exe)

14 / 68    (Adware)
http://www.scilor.com/grooveshark/.../serve.php?version=0.4.12  (internet download manager 6.18 build 11 latest version crack is here !__2957_il17.exe)

9 / 68      (Adware)
http://www.scilor.com/grooveshark/.../serve.php?version=0.4.12  (minecraftpremiumaccountgenerator__2681_il6489742.exe)

2 / 68      (PUP)
http://www.scilor.com/grooveshark/.../InstallSciLorsGrooveshark.comDownloaderV0.4.9.8.exe  (a84e91ac031ae06cd94ac678570036f2)

8 / 68      (Adware)
http://www.scilor.com/grooveshark/.../serve.php?version=0.4.12  (scilors grooveshark__3502_il367.exe)

0 / 68
http://www.scilor.com/grooveshark/.../InstallSciLorsGrooveshark.comDownloaderV0.4.10.1SoMo.exe  (c36fc52849cdac9e3d7de0f5e35f75e2)

0 / 68
http://www.scilor.com/grooveshark/.../serve.php?version=0.4.10.1  (installscilorsgrooveshark.comdownloaderv0.4.10.1pica.exe)

0 / 68
http://www.scilor.com/grooveshark/.../serve.php?version=0.4.10.1  (installscilorsgrooveshark.comdownloaderv0.4.10.1somo.exe)

14 / 68    (PUP)
http://www.scilor.com/grooveshark/.../serve.php?version=0.4.12  (scilors_grooveshark(tm)_downloadersetup.exe)

2 / 68      (PUP)
http://www.scilor.com/grooveshark/.../InstallSciLorsGrooveshark.comDownloaderV0.4.12InMo.exe  (098bfd3e7747c66e1de24eab09b70179)

2 / 68      (inconclusive)
http://www.scilor.com/grooveshark/.../InstallSciLorsGrooveshark.comDownloaderV0.4.9.8SoMo.exe  (17bd4a4d11d59dd07280d81e8ee0b84e)

2 / 68      (PUP)
http://www.scilor.com/grooveshark/.../InstallSciLorsGrooveshark.comDownloaderV0.4.10.1OpCa.exe  (353c15d5ec41242820aa789ea8dd77cf)

0 / 68
http://www.scilor.com/grooveshark/.../InstallSciLorsGrooveshark.comDownloaderV0.4.12PICa.exe  (634d720b5f46fe6b35182644745c691b)

URL:
http://www.scilor.com/

Google Analytics:
UA-11327342

Title:
“SciLor's Home”

Description:
“SciLor's Open Source Freeware Website mainly for free Windows Mobile Software”

Web server:
Apache/2 (PHP/5.5.8)

Facebook:
Likes:  8
Shares:  27
Comments:  9

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.