download-file.browsersinfo.com

Quick Downloader  (via a Proxy Registrant)

Domain Information

The domain download-file.browsersinfo.com is registered by proxy through GODADDY.COM, LLC and was originally registered in November of 2012. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Strasbourg, Alsace within France which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Quick Downloader who is located in San Francisco, California in the United States.
Remove Malware from download-file.browsersinfo.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Alsace, France (FR)

Create date:
Thursday, November 01, 2012

Expires date:
Tuesday, November 01, 2016

Updated date:
Sunday, November 01, 2015

ASN:
AS8972 PLUSSERVER-AS PlusServer AG,DE

Root domain:

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.QuickDownloader.K, PUP.Installer.FastDownloads.N, PUP.Installer.DownloadSafely.N, PUP.QuickDownloader.U, PUP.Installer.DownloadSafely.K, PUP.Installer.QuickDownloader.J, Threat.Installer.SpeedyDownloads, PUP.Installer.installCore, PUP.Installer.Adlogica, PUP.Adlogica, PUP.Bundler.Adlogica, Threat.Adlogica.Bundler, PUP.Adlogica.Bundler, PUP.Adlogica.QuickDownloader.Bundler (M), PUP.SpeedyDownloads.Installer (M), PUP.installCore.DownloadSafely.Installer (M), PUP.Outbrowse.Bundler (M), PUP.installCore.SpeedyDownloads.Installer (M), PUP.Adlogica.SoftDownloads.Bundler (M)
96.00%

VIPRE Antivirus
InstallCore, Threat.4786018, Threat.4150696, Trojan.Win32.Generic, Threat.4784459
60.00%

Avira AntiVirus
ADWARE/InstallCore.Gen7, APPL/Downloader.Gen, Adware/InstallCo.zkq, ADWARE/InstallCore.Gen9, PUA/InstallCo.zkq, TR/Dropper.Gen
54.00%

K7 Gateway Antivirus
Trojan , Unwanted-Program , Adware
52.00%

K7 AntiVirus
Trojan , Unwanted-Program , Adware
52.00%

ESET NOD32
Win32/Toolbar.MyWebSearch.S potentially unwanted application, Win32/InstallCore.QH potentially unwanted application, Win32/InstallCore.RA potentially unwanted application
50.00%

Dr.Web
Trojan.InstallCore.10, Trojan.Packed.28678, Trojan.Packed.24524, Trojan.InstallCore.57, Trojan.Packed.28458, Trojan.InstallCore.61
50.00%

NANO AntiVirus
Riskware.Win32.InstallCore.dhpyfv, Trojan.Win32.OutBrowse.didlil, Riskware.Win32.InstallCore.dfgmgi, Riskware.Win32.InstallCore.dotkgh
46.00%

Sophos
Ez Toolbar Downloader, Generic PUA CH, Install Core Click run software, PUA 'Install Core', PUA 'Install Core Click run software'
40.00%

AVG
Adware AdPlugin.TU.dropper, Generic, Adware InstallCore.VZ, Potentially harmful program Downloader.CHY
40.00%

McAfee Web Gateway
BehavesLike.Win32.CryptInno.bc, Adware-OutBrowse.b, BehavesLike.Win32.CryptInno.cc, BehavesLike.Win32.CryptDoma.hc, Artemis!AC35C1D2B008
36.00%

avast!
PUP-gen [PUP], Malware-gen, Win32:PUP-gen [PUP], Adware-gen [Adw], OutBrowse-CH [PUP], OutBrowse-G [PUP]
28.00%

F-Prot
W32/InstallCore.AC.gen, W32/InstallCore.AD.gen, W32/InstallCore.AG.gen, W32/OutBrowse.B (exact, not disinfectable)
26.00%

Agnitum Outpost
PUA.Toolbar.MyWebSearch, Trojan.Packed, PUA.InstallCore, PUA.OutBrowse
24.00%

Malwarebytes
PUP.Optional.Downloadster, Trojan.Agent, PUP.Optional.QuickDownloader, PUP.Optional.OutBrowse, PUP.Optional.InstallCore.A
20.00%

The domain download-file.browsersinfo.com has been seen to resolve to the following 6 IP addresses.

static-ip-62-75-207-166.inaddr.ip-pool.com
January 27, 2016

May 1, 2014

May 1, 2014

May 1, 2014

(CloudFlare)
May 1, 2014

May 1, 2014

File downloads found at URLs served by download-file.browsersinfo.com.

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

9 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

13 / 68    (Adware)

1 / 68      (Adware)

9 / 68      (Adware)

19 / 68    (Adware)

15 / 68    (Adware)

URL:
http://download-file.browsersinfo.com/

Web server:
nginx/1.0.15 (PHP/5.3.3)

Remove Malware from download-file.browsersinfo.com - Powered by Reason Core Security