The domain down.luckytool.net registered by yssoft was initially registered in August of 2014 through GABIA, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Seoul, Seoul-T'Ukpyolsi within Korea which resides on the Asia Pacific Network Information Centre network.
Server location:
Seoul-T'Ukpyolsi, Korea (KR)
Create date:
Thursday, August 28, 2014
Expires date:
Monday, August 28, 2017
Updated date:
Thursday, December 11, 2014
ASN:
AS9318 HANARO-AS Hanaro Telecom Inc.,KR
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.jncmarketinginc, PUP.jncmarketinginc (M), PUP.Wetelecommunication (M), PUP.yssoft (M), PUP.yssoft.Installer (M)
98.00%
ESET NOD32
Win32/Adware.Kraddare.GC (variant), Win32/Adware.SafeTerra (variant), Win32/Adware.PopAd.AH (variant)
12.00%
Trend Micro House Call
Suspicious_GEN.F47V0407, Suspicious_GEN.F47V0521, TROJ_GEN.R0E9H09CV15, ADW_KRADDARE, Suspicious_GEN.F47V1108
10.00%
AhnLab V3 Security
PUP/Win32.SubShop
10.00%
McAfee
Artemis!2647BEBC9252, Artemis!39D788CE0E9F, Artemis!B66B571708DE, Artemis!F8B47D180C6B
10.00%
Emsisoft Anti-Malware
Adware.Win32.Kraddare, Adware.Kraddare.FO
10.00%
VIPRE Antivirus
Trojan.Win32.Generic, Adware.Agent
8.00%
ViRobot
Adware.DreamPrime.898096, Adware.DreamPrime.2206704, Adware.DreamPrime.2228208
8.00%
Malwarebytes
Adware.Korad
8.00%
Baidu Antivirus
Adware.Win32.Kraddare, Adware.Win32.SafeTerra, Adware.Win32.PopAd
8.00%
Bkav FE
W32.HfsAdware
8.00%
Dr.Web
Trojan.Adkor.91, Trojan.Click3.9707
8.00%
Qihoo 360 Security
Win32/Trojan.Adware.7a7, HEUR/QVM10.1.Malware.Gen
6.00%
MicroWorld eScan
Adware.Kraddare.FO
6.00%
The domain down.luckytool.net has been seen to resolve to the following IP address.
File downloads found at URLs served by down.luckytool.net.
Latest 30 of 87 download URLs
URL:
http://down.luckytool.net/
Related Domains