home

dl.baransoft.com

PrivacyProtect.org  (Proxy Registrant)

Domain Information

The domain dl.baransoft.com is registered by proxy through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM and was originally registered in September of 2013. Currently this domain has been known to host various forms of malware. The hosted servers are located in Nuremberg, Bayern within Germany which resides on the RIPE Network Coordination Centre network.
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM

Server location:
Bayern, Germany (DE)

Create date:
Tuesday, September 10, 2013

Expires date:
Wednesday, September 10, 2014

Updated date:
Tuesday, November 12, 2013

Root domain:
baransoft.com

Whois:
1 baransoft.com record

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

McAfee
Artemis!AD626E1AB899
100.00%

Norman
Suspicious_Gen2.HSXKY
100.00%

avast!
Win32:Kolabc-EM [Trj]
100.00%

Avira AntiVirus
DR/Kolabc.hrb
100.00%

IKARUS anti.virus
Downloader.Kolabc
100.00%

Bkav FE
W32.Clod3a5.Trojan
100.00%

VIPRE Antivirus
Trojan.Win32.Generic
100.00%

The domain dl.baransoft.com has been seen to resolve to the following IP address.

144.76.163.246
static.246.163.76.144.clients.your-server.de
January 4, 2014

File downloads found at URLs served by dl.baransoft.com.

7 / 68      (Malware)
http://dl.baransoft.com/gergizkhan.exe  (ad626e1ab89996235c447cfb493781c5)

URL:
http://dl.baransoft.com/

Title:
“Index of /”

Web server:
LiteSpeed (PHP/5.3.28)

Alexa:
Global rank:  851,304
Backlinks:  28

Statistics are for the previous month (Alexa statistics are for entire baransoft.com).

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.