www.dexpot.de

Domain Information

Remove Malware from www.dexpot.de - Powered by Reason Core Security
Server location:
Berlin, Germany (DE)

ASN:
AS25074 INETBONE-AS MESH GmbH

Root domain:

Scanner detections:
Detections  (87% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.OpenCandy, PUP.Optional.OpenCandy.A
92.86%

ESET NOD32
Win32/OpenCandy, Win32/OpenCandy (variant), Win32/OpenCandy.C potentially unsafe (variant), Win32/OpenCandy.A potentially unsafe (variant)
92.86%

Fortinet FortiGate
Adware/OpenCandy, Riskware/OpenCandy
71.43%

Trend Micro House Call
ADW_OPENCANDY, TROJ_GEN.F47V0106, TROJ_GEN.F47V0401, TROJ_GE.34764AD7, TROJ_GEN.F47V0609, Suspicious_GEN.F47V0722, Suspici.1E48FE7A
64.29%

Dr.Web
Adware.OpenCandy.4, Adware.OpenCandy.39, Adware.OpenCandy.55, Adware.OpenCandy.147, Adware.OpenCandy.183
57.14%

Rising Antivirus
PE:PUF.OpenCandy!1.9DE5
50.00%

McAfee
Adware-OpenCandy!8A85F5AD22C6, Adware-OpenCandy!2FF7EB50E7B6, Adware-OpenCandy!7A33F3343630, Artemis!5DA7E98522BC, Artemis!C9709047D4A4
42.86%

McAfee Web Gateway
Adware-OpenCandy!8A85F5AD22C6, Adware-OpenCandy!2FF7EB50E7B6, Adware-OpenCandy!7A33F3343630, Artemis!5DA7E98522BC
42.86%

Agnitum Outpost
Riskware.OpenCandy, Riskware.Agent
28.57%

Bkav FE
W32.Clod3ad.Trojan, W32.Clodef1.Trojan, W32.Clod944.Trojan
21.43%

G Data
Win32.Adware.OpenCandy, Win32.Application.OpenCandy
14.29%

IKARUS anti.virus
PUA.OpenCandy
14.29%

avast!
Win32:Adware-gen [Adw]
14.29%

Baidu Antivirus
Adware.Win32.OpenCandy
14.29%

Reason Heuristics
PUP.OpenCandy.Installer (L), Threat.Win.Reputation.IMP
14.29%

The domain www.dexpot.de has been seen to resolve to the following 2 IP addresses.

54.115.226.46.in-addr.arpa
February 2, 2016

srv17.sysproserver.de
December 28, 2013

File downloads found at URLs served by www.dexpot.de.

14 / 68    (PUP)
http://www.dexpot.de/.../dexpot_1614_r2439.exe  (5c3b730140c558bfe002979833632dca)

1 / 68      (Malware)
http://www.dexpot.de/.../dexpot_1614_r2439.exe  (9db39cc41e112946269a0379fa780035)

0 / 68
http://www.dexpot.de/download/.../VWInterpreter.exe  (cbf28c17ba4b05f0d0da3e509cc88399)

6 / 68      (PUP)
http://www.dexpot.de/.../dexpot_1614_r2439.exe  (b81a9c89ec57e20176ad3d8410fc400e)

8 / 68      (PUP)
http://www.dexpot.de/.../dexpot_1614_r2439.exe  (77d59e8affcdc1355883da895cd32b35)

8 / 68      (PUP)
http://www.dexpot.de/.../dexpot_1614_r2439.exe  (c9709047d4a4428ceee63355f95dd09a)

2 / 68      (inconclusive)
http://www.dexpot.de/.../dexpot_1614_r2439.exe  (5e397fec87ab6404be7a03e6e27891e3)

9 / 68      (PUP)
http://www.dexpot.de/.../dexpot_1610_r2373.exe  (7a33f3343630bdf24e7b1de4c480bf85)

5 / 68      (PUP)
http://www.dexpot.de/.../dexpot_1613_r2429.exe  (5da7e98522bc0672748c9eecd4421428)

7 / 68      (PUP)

6 / 68      (PUP)
http://www.dexpot.de/.../dexpot_1612_r2416.exe  (dexpot 1.6.12 build 2416free-20 различных виртуальных рабочих столов.exe)

7 / 68      (PUP)
http://www.dexpot.de/.../dexpot_1611_r2394.exe  (5d8a21d4a2b379a37a695e8330b71b98)

8 / 68      (PUP)

4 / 68      (PUP)
http://www.dexpot.de/.../dexpot_165_r2207.exe  (f880f07990dd0c74379d0266064af3b9)

9 / 68      (PUP)

8 / 68      (PUP)
http://www.dexpot.de/.../dexpot_169_r2285.exe  (2ff7eb50e7b64da394247a334ff90550)

9 / 68      (PUP)
http://www.dexpot.de/.../dexpot_1610_r2373.exe  (8a85f5ad22c6b4d9246a17ea0ba2b19b)

Remove Malware from www.dexpot.de - Powered by Reason Core Security