www.heijnen1.demon.nl

Domain Information

Server location:
Noord-Holland, Netherlands (NL)

ASN:
AS3265 XS4ALL-NL XS4ALL Internet BV

Root domain:

Scanner detections:
Detections  (60% detected)

Scan engine
Details
Detections

CMC Antivirus
AdWare.Win32.Agent!O
75.00%

Vba32 AntiVirus
Backdoor.Agent
75.00%

ESET NOD32
Win32/OpenCandy
75.00%

Bkav FE
W32.Clodf7a.Trojan, W32.Clod4f5.Trojan
50.00%

NANO AntiVirus
Trojan.Win32.Somoto.bdrgmf, Trojan.Win32.CheatEngine.xmvtu
50.00%

Dr.Web
Adware.Somoto.1, Trojan.MulDrop3.49526
50.00%

K7 AntiVirus
Trojan , Riskware
50.00%

Baidu Antivirus
HackTool.Win32.CheatEngine, Hacktool.Win32.CheatEngine
50.00%

Avira AntiVirus
APPL/Somoto.Gen2
25.00%

K7 Gateway Antivirus
Trojan
25.00%

ViRobot
JS.A.Iframe.6473436
25.00%

Agnitum Outpost
HackTool.CheatEngine
25.00%

F-Prot
W32/Malware!582e
25.00%

Trend Micro House Call
TROJ_SPNR.0CKG11
25.00%

VIPRE Antivirus
Trojan.Win32.Malware
25.00%

The domain www.heijnen1.demon.nl has been seen to resolve to the following IP address.

www.xs4all.nl
February 7, 2014

File downloads found at URLs served by www.heijnen1.demon.nl.

0 / 68
http://www.heijnen1.demon.nl/CheatEngine61.exe  (beeef71dff8d3ba3baf1c6c2d8ab3168)

12 / 68    (PUP)
http://www.heijnen1.demon.nl/CheatEngine561.exe  (225331-652587-cheat-engine.exe)

7 / 68      (PUP)
http://www.heijnen1.demon.nl/.../CheatEngine61.exe  (e1611b421306f324411134992b9c1beb)

5 / 68      (inconclusive)
http://www.heijnen1.demon.nl/CheatEngine60.exe  (580b759b30c53f4b0d378eaadeca40d9)

7 / 68      (PUP)

The following file have been seen to comunicate with www.heijnen1.demon.nl in live environments.