www.philipp-winterberg.com

Philipp Winterberg

Domain Information

The domain www.philipp-winterberg.com registered by Philipp Winterberg was initially registered in July of 2007 through 1 & 1 INTERNET AG. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Karlsruhe, Baden-Wurttemberg within Germany which resides on the RIPE Network Coordination Centre network.
Remove Malware from www.philipp-winterberg.com - Powered by Reason Core Security
Registrar:
1 & 1 INTERNET AG

Server location:
Baden-Wurttemberg, Germany (DE)

Create date:
Tuesday, July 31, 2007

Expires date:
Friday, July 31, 2015

Updated date:
Friday, August 01, 2014

ASN:
AS8560 ONEANDONE-AS 1&1 Internet AG

Scanner detections:
Detections  (79% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.PhilippBWinterberg.P, PUP.Installer.PhilippBWinterberg.Z, PUP.Installer.PhilippBWinterberg.X, PUP.Installer.PhilippBWinterberg.S
78.57%

Malwarebytes
PUP.Optional.OpenCandy
71.43%

ESET NOD32
Win32/OpenCandy, Win32/Bundled.Toolbar.Ask (variant), Win32/OpenCandy (variant)
64.29%

Rising Antivirus
PE:PUF.OpenCandy!1.9DE5
64.29%

Trend Micro House Call
TROJ_GEN.F47V1210, Suspicious_GEN.F47V1201
64.29%

G Data
NSIS.Application.OpenCandy, NSIS.Adware.SoftBundled
42.86%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
28.57%

ESET NOD32
Win32/OpenCandy potentially unsafe application
28.57%

Dr.Web
Threat.Undefined, Adware.OpenCandy.7
28.57%

Agnitum Outpost
Riskware.OpenCandy
28.57%

Fortinet FortiGate
Riskware/OpenCandy
28.57%

Sophos
PUA.OpenCandy
28.57%

McAfee
Artemis!38D9742B7663
7.14%

McAfee Web Gateway
BehavesLike.Win32.Dropper.tc
7.14%

The domain www.philipp-winterberg.com has been seen to resolve to the following 2 IP addresses.

kundenserver.de
May 5, 2015

kundenserver.de
January 10, 2014

File downloads found at URLs served by www.philipp-winterberg.com.

1 / 68      (inconclusive)

1 / 68      (inconclusive)
http://www.philipp-winterberg.com/.../InstallRarZilla.exe  (0a9bfd2f463af0b169254c70bec0a5ce)

1 / 68      (Adware)
http://www.philipp-winterberg.com/.../InstallRarZilla.exe  (edfa6bd93c4c5587e5c6fea500cbe323)

10 / 68    (Adware)

7 / 68      (Adware)

10 / 68    (Adware)

7 / 68      (Adware)

1 / 68      (inconclusive)

6 / 68      (Adware)

10 / 68    (Adware)

10 / 68    (Adware)
http://www.philipp-winterberg.com/.../InstallRarZilla.exe  (85bd7967412201ed0c7816b825e5d2f9)

6 / 68      (Adware)

6 / 68      (Adware)

4 / 68      (Adware)
http://www.philipp-winterberg.com/.../InstallRarZilla.exe  (699e503af0cec2eb21c7591f85a1c7c2)

URL:
http://www.philipp-winterberg.com/

Title:
“Philipp Winterberg: Books, eBooks, Biography”

Description:
“Philipp Winterberg, author of 'Am I small?' etc.”

Web server:
Apache (PHP/5.5.26)

Facebook:
Shares:  5

Twitter:
Shares:  8

Quantcast US:
Rank:  14,532

Statistics are for the previous month.

Remove Malware from www.philipp-winterberg.com - Powered by Reason Core Security