Server location:
Berlin, Germany (DE)
ASN:
AS34011 DOMAINFACTORY domainfactory GmbH
Scanner detections:
Detections (68% detected)
Scan engine
Details
Detections
ESET NOD32
Win32/OpenCandy, Win32/OpenCandy (variant), Win32/OpenCandy.C potentially unsafe (variant), Win32/OpenCandy.A potentially unsafe (variant)
93.75%
Dr.Web
Adware.OpenCandy.39, Adware.OpenCandy.115, Threat.Undefined, Adware.OpenCandy.182
62.50%
Reason Heuristics
PUP.OpenCandy.Installer (L)
56.25%
AVG
Generic, AdLoad.OpenCandy
56.25%
Trend Micro House Call
Suspicious_GEN.F47V0723, Suspicious_GEN.F47V0730, Suspicious_GEN.F47V0826, Suspicious_GEN.F47V1115, Suspicious_GEN.F47V0128
37.50%
G Data
Win32.Application.OpenCandy
37.50%
VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696
31.25%
McAfee
Artemis!67567471B8C9, Artemis!F82F230F8BB1, Artemis!BF53303433F0, Artemis!956FCC816641, Trojan.Artemis!6DA9DDBF1AA7
31.25%
Fortinet FortiGate
Riskware/OpenCandy
31.25%
NANO AntiVirus
Riskware.Win32.OpenCandy.dqxwfl, Riskware.Win32.OpenCandy.dyofpx, Riskware.Win32.OpenCandy.dzackp
25.00%
Avira AntiVirus
PUA/OpenCandy.Gen
25.00%
F-Prot
W32/OpenCandy.A2.gen, W32/OpenCandy.A.gen
18.75%
Agnitum Outpost
PUA.OpenCandy
12.50%
AhnLab V3 Security
PUP/Win32.OpenCandy
6.25%
Sophos
OpenCandy (PUA)
6.25%
The domain clipgrab.de has been seen to resolve to the following IP address.
vanbittern.com
February 2, 2014
File downloads found at URLs served by clipgrab.de.
The following file have been seen to comunicate with clipgrab.de in live environments.
Subdomains