dn.goforfiles.com

Righway Technologies, Inc.

Domain Information

The domain dn.goforfiles.com registered by Righway Technologies, Inc. was initially registered in August of 2012 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Remove Malware from dn.goforfiles.com - Powered by Reason Core Security
Registrar:
INTERNET DOMAIN SERVICE BS CORP

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Thursday, August 16, 2012

Expires date:
Tuesday, August 16, 2016

Updated date:
Friday, December 11, 2015

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.RighwayTechnologies.c, PUP.RighwayTechnologies.k, PUP.RighwayTechnologies.j, PUP.RighwayTechnologies.Q, PUP.RighwayTechnologies.R, PUP.RighwayTechnologies.?, PUP.RighwayTechnologies.S, PUP.RighwayTechnologies.s, PUP.RighwayTechnologies.W, Threat.Win.Reputation.IMP
100.00%

Sophos
Go For Files, PUA 'Go For Files'
92.59%

ESET NOD32
Win32/ExpressDownloader (variant), Win32/YourFileDownloader (variant), Win32/ExpressDownloader.H potentially unwanted (variant)
92.59%

VIPRE Antivirus
ExpressFiles Installer, Yontoo, Threat.4925438
88.89%

Malwarebytes
PUP.Optional.GoForFiles.A
74.07%

Trend Micro House Call
TROJ_GEN.F47V0607, TROJ_GEN.F47V0920, TROJ_GEN.F47V0827, TROJ_GEN.F47V0412, TROJ_GEN.F47V0430, TROJ_GEN.F47V0531, TROJ_GEN.F47V0529
66.67%

McAfee
Artemis!DF3B28428CBF, Artemis!34E7AF27DB6D, Artemis!767228F5C58C, Artemis!FD3BB23E84E6, Artemis!7B998F57FCBC, Artemis!75828DD12967, Artemis!1DD42C91BE13, Artemis!C452BBCA28D5, Artemis!301B31FB93A0, Artemis!3D677BB78DE7
62.96%

McAfee Web Gateway
Artemis!DF3B28428CBF, Artemis!34E7AF27DB6D, Artemis!767228F5C58C, Artemis!FD3BB23E84E6, Artemis!7B998F57FCBC, Artemis!75828DD12967
62.96%

K7 Gateway Antivirus
Unwanted-Program
55.56%

K7 AntiVirus
Unwanted-Program
55.56%

AhnLab V3 Security
PUP/Win32.ExpressFiles
55.56%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
40.74%

AVG
Skodna.Generic_r, Dropper.Generic9, Righway Technologies
40.74%

avast!
Win32:PUP-gen [PUP], Win32:Malware-gen, Win32:Adware-gen [Adw]
40.74%

IKARUS anti.virus
AdWare.Win32.YourFileDownloader, not-a-virus:Downloader.Win32.Agent, PUA.Expressdownloader
40.74%

The domain dn.goforfiles.com has been seen to resolve to the following 3 IP addresses.

unallocated.barefruit.co.uk
May 3, 2015

May 30, 2014

mail.goforfiles.com
May 23, 2014

File downloads found at URLs served by dn.goforfiles.com.

11 / 68    (Adware)

11 / 68    (Adware)
http://dn.goforfiles.com/.../yTFCdMIrCznFILB4yyG0ZTcovw==  (top_chef_le_jeu_torrent_downloader_fr_99018.exe)

9 / 68      (Adware)

11 / 68    (Adware)

11 / 68    (Adware)
http://dn.goforfiles.com/.../zy22Yjcgu2I8  (demonstar_full_version_downloader_hu_99028.exe)

9 / 68      (PUP)

11 / 68    (Adware)
http://dn.goforfiles.com/.../fMkV1wjlKd80=  (hpilokeygenv3.zip_downloader_be_257.exe)

11 / 68    (Adware)
http://dn.goforfiles.com/.../wTpNccI8SXnNJw==  (denis_chang_-_jazz_manouche_-_technique_improvisation_-_vol._1_downloader_us_99262.exe)

14 / 68    (Adware)

10 / 68    (Adware)
http://dn.goforfiles.com/.../  (uninstall9100692.exe)

6 / 68      (Adware)

6 / 68      (Adware)

11 / 68    (Adware)
http://dn.goforfiles.com/.../ePVE2gzRKdcM5T3nOI7B6  (hpilokeygenv3.zip_downloader_be_257.exe)

14 / 68    (Adware)

7 / 68      (Adware)

4 / 68      (Adware)
http://dn.goforfiles.com/.../dZhFuDfbR7m3HldtZgHE rFUxSTjAlBiZQLB9E4QgbU  (windows_xp_home_edition_sp2_-original_cd_downloader_za_415.exe)

6 / 68      (Adware)

7 / 68      (Adware)

 
Latest 30 of 242 download URLs

The following 137 files have been seen to comunicate with dn.goforfiles.com in live environments.

 
Latest 20 of 137 files

Remove Malware from dn.goforfiles.com - Powered by Reason Core Security