The domain clk.adgatemedia.com registered by ADGATE MEDIA LLC was initially registered in January of 2011 through ENOM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrant:
ADGATE MEDIA LLC
Server location:
Virginia, United States (US)
Create date:
Friday, January 21, 2011
Expires date:
Tuesday, January 21, 2020
Updated date:
Wednesday, December 16, 2015
ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.SecureInstall.L, Win32.Generic, PUP.Widdit.OneFloor.Bundler (M), PUP.Widdit.SimplyTe.Bundler (M), PUP.Widdit (M)
100.00%
McAfee
Artemis!25CCAE59E743, Artemis!B1A6979F1F40
33.33%
Malwarebytes
PUP.Optional.SafeInstall.A, MSIL.Solimba
33.33%
Trend Micro House Call
TROJ_GEN.F47V0411, TROJ_GEN.F47V1104
33.33%
NANO AntiVirus
Riskware.Win32.Searcher.csnymk, Trojan.Win32.Conduit.csnxzm
33.33%
Dr.Web
Adware.Searcher.2593, Adware.Downware.1326
33.33%
Sophos
DomainIQ pay-per install, Solimba Installer
33.33%
ESET NOD32
Win32/InstallIQ (variant), Win32/DownWare
33.33%
VIPRE Antivirus
InstallIQ Installer
16.67%
G Data
Win32.Application.InstallIQ
16.67%
Rising Antivirus
PE:PUF.InstallIQ!1.9E4F
16.67%
Panda Antivirus
Adware/Conduit
16.67%
Vba32 AntiVirus
Trojan.StartPage
16.67%
Clam AntiVirus
Win.Trojan.Agent-751031
16.67%
The domain clk.adgatemedia.com has been seen to resolve to the following 5 IP addresses.
ec2-107-21-52-90.compute-1.amazonaws.com
May 30, 2014
ec2-107-23-142-44.compute-1.amazonaws.com
May 30, 2014
ec2-107-23-165-131.compute-1.amazonaws.com
May 30, 2014
File downloads found at URLs served by clk.adgatemedia.com.
The following 3 files have been seen to comunicate with clk.adgatemedia.com in live environments.
URL:
http://clk.adgatemedia.com/
Network:
Amazon Web Services (AWS), running an EC2 instance
SSL certificate subject:
CN=ssl276685.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated
SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
Web server:
cloudflare-nginx (PHP/5.5.9-1ubuntu4.14)