www.winload.de

Domain Information

Server location:
Nordrhein-Westfalen, Germany (DE)

ASN:
AS8972 PLUSSERVER-AS intergenia AG

Root domain:

Scanner detections:
Detections  (65% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP, PUP.ECONAInternetAG.Installer (M), PUP.ECONAInt.Installer (M), PUP (M)
75.00%

ESET NOD32
Win32/WinloadSDA.J potentially unwanted application
41.67%

avast!
Win32:Malware-gen
16.67%

Dr.Web
Trojan.DownLoader3.6063, Trojan.DownLoader11.26375
16.67%

Kingsoft AntiVirus
Win32.Malware.Heur_Generic.B.(kcloud)
8.33%

VIPRE Antivirus
Threat.4150696
8.33%

Emsisoft Anti-Malware
Trojan.Generic.11779583
8.33%

Norman
Trojan.Generic.11779583
8.33%

The domain www.winload.de has been seen to resolve to the following 2 IP addresses.

ma22143.plusserver.de
July 19, 2015

static-ip-80-86-80-177.inaddr.ip-pool.com
December 22, 2013

File downloads found at URLs served by www.winload.de.

2 / 68      (PUP)

2 / 68      (PUP)

5 / 68      (Malware)

3 / 68      (Malware)

The following file have been seen to comunicate with www.winload.de in live environments.