downloader.browsersinfo.com

Quick Downloader  (via a Proxy Registrant)

Domain Information

The domain downloader.browsersinfo.com is registered by proxy through GODADDY.COM, LLC and was originally registered in November of 2012. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Strasbourg, Alsace within France which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Quick Downloader who is located in San Francisco, California in the United States.
Registrar:
GODADDY.COM, LLC

Server location:
Alsace, France (FR)

Create date:
Thursday, November 1, 2012

Expires date:
Tuesday, November 1, 2016

Updated date:
Sunday, November 1, 2015

ASN:
AS8972 PLUSSERVER-AS PlusServer AG,DE

Root domain:

Scanner detections:
Detections  (90% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP, PUP.installCore.SecureIn.Installer (M), PUP.Adlogica.FastDown.Bundler (M), PUP.Adknowledge.INSTALLD.Installer (M), PUP.Adlogica.QuickDow.Bundler (M), PUP.Adknowledge.PremiumI.Bundler (M), PUP.Adknowledge.PremiumI.Installer (M), PUP.Adknowledge.OptimumI.Bundler (M), PUP.Adknowledge.TINYINST.Bundler (M), PUP.Adknowledge.FUSIONIN.Bundler (M), PUP.InstallCore.RE (M), PUP.installCore.SecureIn (M), PUP.installCore (M), PUP.Adknowledge (M), PUP.Adlogica (M)
97.78%

Dr.Web
Trojan.Crossrider1.49350, Adware.InstallCore.133
33.33%

ESET NOD32
Win32/InstallCore.BL potentially unwanted application, Win32/InstallCore.EL potentially unwanted application, Win32/InstallCore.BY potentially unwanted application, Win32/OutBrowse.M potentially unwanted application
31.11%

avast!
Win32:PUP-gen [PUP], Win32:OutBrowse-CH [PUP], Win32:Evo-gen [Susp]
31.11%

F-Prot
W32/InstallCore.R.gen, W32/InstallCore.R3.gen, W32/InstallCore.S.gen
20.00%

Emsisoft Anti-Malware
Adware.DealPly, Gen:Variant.Strictor.97895
13.33%

Norman
Adware.DealPly.J, Gen:Variant.Strictor.97895
13.33%

Microsoft Security Essentials
Threat.Undefined
13.33%

AVG
Adware Generic5.BDFT, Adware InstallCore.VP
8.89%

Sophos
PUA 'Install Core', Install Core (PUA)
4.44%

VIPRE Antivirus
InstallCore, Threat.4150696
4.44%

SUPERAntiSpyware
PUP.InstallCore/Variant
2.22%

K7 AntiVirus
Adware
2.22%

NANO AntiVirus
Riskware.Win32.InstallCore.dfglnt
2.22%

ESET NOD32
Win32/InstallCore.BL potentially unwanted
2.22%

The domain downloader.browsersinfo.com has been seen to resolve to the following 6 IP addresses.

static-ip-62-75-207-166.inaddr.ip-pool.com
January 28, 2016

December 23, 2013

December 23, 2013

December 23, 2013

(CloudFlare)
December 23, 2013

December 23, 2013

File downloads found at URLs served by downloader.browsersinfo.com.

 
Latest 30 of 159 download URLs

URL:
http://downloader.browsersinfo.com/

Web server:
nginx/1.0.15 (PHP/5.3.3)