» www.gamestar.pl
Overview
Analysis
IPs Addresses (1)
Downloads (2)
Network (1)
Related Domains (1)

www.gamestar.pl

Domain Information

Server location:

Mazowieckie, Poland (PL)

ASN:

AS25443 IDGPL-AS International Data Group Poland S.A.,PL

Root domain:

gamestar.pl

Scanner detections:

Malware distribution (100% detected)

Scan engine

Details

Detections

Bkav FE

W32.Clod682.Trojan, W32.Clod628.Trojan

100.00%

K7 AntiVirus

Trojan , Virus

100.00%

Trend Micro House Call

TROJ_GEN.R0CBOH0A614, PE_SALITY.RL

100.00%

VIPRE Antivirus

Trojan.Win32.Generic, Threat.4721115

100.00%

IKARUS anti.virus

Trojan.SuspectCRC, AdWare.Gen2

100.00%

McAfee

Artemis!40F2D6191BEA

50.00%

Dr.Web

DLOADER.Trojan

50.00%

Baidu Antivirus

Trojan.Win32.PCWorldPLoader

50.00%

ESET NOD32

Win32/PCWorldPLoader (variant)

50.00%

Sophos

Generic PUA PF

50.00%

Reason Heuristics

PUP.InternationalDataGroupPolandSA

50.00%

Microsoft Security Essentials

Threat.Undefined

50.00%

Norman

Sality.ZHB

50.00%

avast!

Win32:SaliCode

50.00%

Trend Micro

PE_SALITY.RL

50.00%

The domain www.gamestar.pl has been seen to resolve to the following IP address.

194.69.207.226

www.androidlife.pl

March 3, 2016

File downloads found at URLs served by www.gamestar.pl.

12 / 68 (Adware)

http://www.gamestar.pl/ftp/downloader/.../12942.html (universal.simlock.remover_idg_downloader_7264_pc.exe)

10 / 68 (Malware)

http://www.gamestar.pl/ftp/downloader/.../914.html (kaspersky.rectordecryptor_idg_downloader_109537_pc.exe)

The following file have been seen to comunicate with www.gamestar.pl in live environments.

TCP » 194.69.207.226:80

browser.exe (Browser)

Related Domains

pcworld.pl

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.