www.instalki.pl

Domain Information

Remove Malware from www.instalki.pl - Powered by Reason Core Security
Server location:
Lodzkie, Poland (PL)

ASN:
AS48505 KYLOS-AS Kylos s.c.

Root domain:

Scanner detections:
Detections  (82% detected)

Scan engine
Details
Detections

Dr.Web
Trojan.Packed.24524, Adware.InstallCore.133, Adware.InstallCore.122
66.67%

VIPRE Antivirus
InstallCore, InstallCore.b, Trojan.Win32.Generic, Threat.4786018
66.67%

ESET NOD32
Win32/InstallCore.CX (variant), Win32/InstallCore.FU, Win32/InstallCore.BL
66.67%

Reason Heuristics
PUP.IronPremium.S, PUP.NewSoftwareSC.S, PUP.IronPremium.Z, PUP.InstallCore.Bundler (M), PUP.installCore.NewSoftware (M)
66.67%

Avira AntiVirus
APPL/InstallCore.QL.133, Adware/InstCore.6321, PUA/InstallCore.Gen7
44.44%

McAfee
Artemis!B4C081903067, Artemis!F3895B1AF1E7, Artemis!6C37D53B3C8D
33.33%

Norman
InstallCore.RBUR, Gen:Variant.Adware.Strictor.53094
33.33%

Trend Micro House Call
TROJ_GEN.F47V0921, TROJ_GEN.F47V1216, TROJ_GEN.R0CBH01GO13
33.33%

McAfee Web Gateway
Artemis!B4C081903067, Artemis!F3895B1AF1E7, Artemis!6C37D53B3C8D
33.33%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), Win32.Troj.Generic.v.(kcloud)
33.33%

Bkav FE
W32.Clod0fc.Trojan, W32.Clod7c1.Trojan
33.33%

SUPERAntiSpyware
PUP.InstallCore/Variant
33.33%

G Data
Adware.Generic.639134, Gen:Variant.Adware.Strictor.53094
33.33%

Sophos
Install Core Click run software, Generic PUA JM, PUA 'Install Core Click run software'
33.33%

MicroWorld eScan
Adware.Generic.639134, Gen:Variant.Adware.Strictor.53094
22.22%

The domain www.instalki.pl has been seen to resolve to the following IP address.

s1.instalki.kylos.net.pl
December 13, 2013

File downloads found at URLs served by www.instalki.pl.

1 / 68      (Adware)
http://www.instalki.pl/.../get_BitTorrent.php  (bittorrent_downloader.exe)

0 / 68

25 / 68    (PUP)

2 / 68      (PUP)
http://www.instalki.pl/.../get_Icy_Tower.php  (icytower15_downloader.exe)

0 / 68
http://www.instalki.pl/.../get_Hamachi.php  (hamachi_downloader.exe)

11 / 68    (PUP)
http://www.instalki.pl/.../get_NeroLite.php  (nerolite_downloader.exe)

12 / 68    (Adware)
http://www.instalki.pl/.../get_EVEREST_Home.php  (everesthome220_downloader.exe)

8 / 68      (PUP)
http://www.instalki.pl/.../get_QuickTime.php  (quicktime_downloader.exe)

16 / 68    (PUP)
http://www.instalki.pl/.../get_Minecraft.php  (minecraft_downloader.exe)

1 / 68      (Adware)

10 / 68    (Adware)

The following 2 files have been seen to comunicate with www.instalki.pl in live environments.

Remove Malware from www.instalki.pl - Powered by Reason Core Security