files.redkawa.net

WHOISGUARD

Domain Information

The domain files.redkawa.net registered by WHOISGUARD was initially registered in September of 2006 through ENOM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Houston, Texas within the United States which resides on the ThePlanet.com Internet Services, Inc. network.
Remove Malware from files.redkawa.net - Powered by Reason Core Security
Registrar:
ENOM, INC.

Server location:
Texas, United States (US)

Create date:
Saturday, September 23, 2006

Expires date:
Saturday, September 23, 2017

Updated date:
Friday, January 15, 2016

Root domain:

Scanner detections:
Detections  (86% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.OpenCandy
92.86%

ESET NOD32
Win32/OpenCandy (variant), Win32/OpenCandy.C potentially unsafe (variant)
85.71%

Rising Antivirus
PE:PUF.OpenCandy!1.9DE5, Trojan.Win32.Generic.13167F1E, PE:PUF.OpenCandy!1.9DE5[F1]
78.57%

McAfee
Artemis!8085E77E36C8, Artemis!98F8C4D51CEA, Artemis!6AE08F91ED79, Artemis!373DDA8F64F5, Artemis!D3B82CB43BF9, Artemis!CA8A9D8CF959
57.14%

VIPRE Antivirus
Opencandy, Trojan.Win32.Generic, OpenCandy (PUA) (not malicious)
57.14%

McAfee Web Gateway
Artemis!8085E77E36C8, Artemis!98F8C4D51CEA, Artemis!373DDA8F64F5, BehavesLike.Win32.Suspicious.wc
50.00%

G Data
NSIS.Application.OpenCandy, Win32.Adware.OpenCandy, Win32.Application.OpenCandy
42.86%

AVG
OpenCandy
42.86%

K7 Gateway Antivirus
Dialer , Trojan , Unwanted-Program
35.71%

Dr.Web
Adware.Conduit.57, Adware.OpenCandy.152
28.57%

K7 AntiVirus
Trojan , Unwanted-Program
28.57%

NANO AntiVirus
Riskware.Win32.OpenCandy.dqxwfm
28.57%

F-Prot
W32/OpenCandy.A2.gen, W32/OpenCandy.A.gen
28.57%

Reason Heuristics
PUP.OpenCandy.Installer (L)
21.43%

Baidu Antivirus
Adware.Win32.OpenCandy
14.29%

The domain files.redkawa.net has been seen to resolve to the following IP address.

184.172.114.218-static.reverse.softlayer.com
April 26, 2014

File downloads found at URLs served by files.redkawa.net.

6 / 68      (PUP)

16 / 68    (PUP)

7 / 68      (PUP)

5 / 68      (PUP)

5 / 68      (PUP)

4 / 68      (PUP)

8 / 68      (PUP)

3 / 68      (PUP)

4 / 68      (PUP)

5 / 68      (PUP)

2 / 68      (inconclusive)

URL:
http://files.redkawa.net/

Web server:
Apache

Remove Malware from files.redkawa.net - Powered by Reason Core Security