downloader.browsersinfo.com

Quick Downloader  (via a Proxy Registrant)

Domain Information

The domain downloader.browsersinfo.com is registered by proxy through GODADDY.COM, LLC and was originally registered in November of 2012. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Strasbourg, Alsace within France which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Quick Downloader who is located in San Francisco, California in the United States.
Remove Malware from downloader.browsersinfo.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Alsace, France (FR)

Create date:
Thursday, November 01, 2012

Expires date:
Tuesday, November 01, 2016

Updated date:
Sunday, November 01, 2015

ASN:
AS8972 PLUSSERVER-AS PlusServer AG,DE

Root domain:

Scanner detections:
Detections  (90% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.WARPINSTALL.T, PUP.Installer.FastDownloads.M, PUP.Installer.QuickDownloader.M, PUP.Installer.SecureInstaller.K, PUP.Installer.PremiumInstaller.F, PUP.Installer.FastDownloads.N, PUP.Installer.INSTALLTHIS.F, PUP.Installer.QuickDownloader.K, PUP.Bundler.Adknowledge, PUP.Adlogica.FastDownloads.Bundler (M), PUP.Adknowledge.FUSIONINSTALL.Installer (M), PUP.Adknowledge.OptimumInstaller.Installer (M), PUP.Adlogica.QuickDownloader.Bundler (M), PUP.Adknowledge.WARPINSTALL.Installer (M), PUP.Adknowledge.INSTALLDOTEXE.Installer (M), PUP.Adknowledge.TINYINSTALLER.Installer (M), PUP.installCore.SecureInstaller.Installer (M), PUP.InstallCore.Installer (M), PUP.Adknowledge.PremiumInstaller.Installer (M)
75.56%

Dr.Web
Adware.Downware.2319, Trojan.Packed.24524, Adware.InstallCore.86, Adware.InstallCore.122, Adware.Downware.2081, Adware.Downware.1489, Adware.Downware.1479, Adware.InstallCore.133, Trojan.Crossrider1.49350, Threat.Undefined
60.00%

VIPRE Antivirus
Optimum Installer, Threat.4786018, InstallCore, Trojan.Win32.Generic, Threat.4778314, Threat.4150696, OutBrowse, Threat.4784459
57.78%

avast!
Win32:Somoto-N [PUP], Win32:Adware-gen [Adw], Rootkit-gen [Rtk], Win32:Installer-K [PUP], Win32:IBryte-DJ [PUP], Malware-gen, Win32:PUP-gen [PUP]
51.11%

ESET NOD32
Win32/InstallCore.BY potentially unwanted application, Win32/InstallCore.BL potentially unwanted application, Win32/AdWare.iBryte.K.gen application
48.89%

Sophos
iBryte Optimum Installer, Install Core, Install Core Click run software, PUA 'Install Core', PUA 'iBryte Optimum Installer'
44.44%

F-Prot
W32/InstallCore.R.gen, W32/Ibryte.F.gen, W32/InstallCore.R3.gen, W32/A-c255719d, W32/Outbrowse.B.gen, W32/A-dbe1ec51, W32/Ibryte.C.gen
42.22%

Avira AntiVirus
Adware/iBryte.bxjb, ADWARE/InstallCore.Gen7, Adware/InstallCo.HB, ADWARE/Adware.Gen7, APPL/Downloader.Gen, Adware/InstallCore.AU.1
40.00%

Vba32 AntiVirus
Downloader.Agent, Downware.InstallCore, BScope.Malware-Cryptor.iBryte, AdWare.iBryte, Downloader.OutBrowse, SScope.Adware.OptimusInstaller.26607
40.00%

K7 Gateway Antivirus
Unwanted-Program , Riskware , Backdoor , Trojan , Adware
37.78%

K7 AntiVirus
Unwanted-Program , Riskware , Adware , Trojan
37.78%

Comodo Security
Application.Win32.IBryte.S, Application.Win32.Agent.I, Application.Win32.iBryte.M, Application.Win32.InstallCore.KAU, Application.Win32.iBryte.WRP
37.78%

AVG
Skodna.Generic, Adware MultiBundle.M, Trojan horse Generic35, InstallC, Adware AdPlugin, Adware InstallCore.VP, MalSign.OutBrowse
37.78%

NANO AntiVirus
Trojan.Win32.Downware.culecy, Trojan.Win32.Generic.cthmwf, Trojan.Win32.Downware.cqiqwb, Trojan.Win32.Agent.cxjjsz, Riskware.Win32.InstallCore.dfgllt
33.33%

Rising Antivirus
PE:Malware.iBryte!6.14B5, PE:Malware.InstallCore!6.4, PE:AdWare.Win32.Fednu.eg!1075354752, PE:Malware.iBryte!6.192B, PE:Trojan.Win32.Generic.168E759E!378434974
33.33%

The domain downloader.browsersinfo.com has been seen to resolve to the following 6 IP addresses.

static-ip-62-75-207-166.inaddr.ip-pool.com
January 28, 2016

December 23, 2013

December 23, 2013

December 23, 2013

(CloudFlare)
December 23, 2013

December 23, 2013

File downloads found at URLs served by downloader.browsersinfo.com.

 
Latest 30 of 58 download URLs

URL:
http://downloader.browsersinfo.com/

Web server:
nginx/1.0.15 (PHP/5.3.3)

Remove Malware from downloader.browsersinfo.com - Powered by Reason Core Security