luci.criosweb.ro

Domain Information

Server location:
Arizona, United States (US)

ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.OpenCandy
100.00%

ESET NOD32
Win32/OpenCandy, Win32/OpenCandy.C potentially unsafe (variant)
80.00%

Trend Micro House Call
TROJ_GEN.F47V1008, TROJ_GEN.F47V0826, Suspicious_GEN.F47V0215
60.00%

Rising Antivirus
PE:PUF.OpenCandy!1.9DE5
60.00%

K7 AntiVirus
Trojan , Unwanted-Program
60.00%

K7 Gateway Antivirus
Trojan
60.00%

Baidu Antivirus
Adware.Win32.OpenCandy
40.00%

VIPRE Antivirus
Opencandy
40.00%

Sophos
Generic PUA NN, OpenCandy
40.00%

McAfee
Artemis!5848645EBCAD, Artemis!FC20E46C2D8A
40.00%

McAfee Web Gateway
Heuristic.BehavesLike.Win32.Suspicious-PKR.S, BehavesLike.Win32.BadFile.tc
40.00%

ESET NOD32
Win32/OpenCandy potentially unsafe application
20.00%

Reason Heuristics
PUP.OpenCandy.Installer (L)
20.00%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
20.00%

Bkav FE
W32.Clod581.Trojan
20.00%

The domain luci.criosweb.ro has been seen to resolve to the following 4 IP addresses.

September 5, 2014

September 5, 2014

(CloudFlare)
December 27, 2013

(CloudFlare)
December 27, 2013

File downloads found at URLs served by luci.criosweb.ro.

11 / 68    (PUP)
http://luci.criosweb.ro/.../Riot-setup.exe  (fc20e46c2d8adace21d55590334c4025)

5 / 68      (PUP)
http://luci.criosweb.ro/.../Riot-setup.exe  (8b4aafe984259710f43a488f9a3d24fd)

12 / 68    (PUP)
http://luci.criosweb.ro/.../Riot-plugin.exe  (5848645ebcadcfb5a1cd6f2f178ef594)

6 / 68      (PUP)
http://luci.criosweb.ro/.../Riot-plugin.exe  (87e30be3a115b7480e5250b9525fc4d1)

6 / 68      (PUP)
http://luci.criosweb.ro/.../Riot-setup.exe  (7dab47cc8602365fb71f4b84fc5f3629)