downloaderfile.brothersoft.com

Kunlun Wanwei Keji Gufen Youxian Gongsi

Domain Information

The domain downloaderfile.brothersoft.com registered by Kunlun Wanwei Keji Gufen Youxian Gongsi was initially registered in July of 2002 through GODADDY.COM, LLC. The domain hosts various software downloads. The hosted servers are located in Houston, Texas within the United States which resides on the ThePlanet.com Internet Services, Inc. network.
Remove Malware from downloaderfile.brothersoft.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Texas, United States (US)

Create date:
Friday, July 12, 2002

Expires date:
Thursday, July 12, 2018

Updated date:
Friday, April 26, 2013

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.

Root domain:

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.KORAMGAMESLIMITED.?, PUP.Conduit.DD, PUP.Optional.Installer.k, PUP.Installer.ClientConnect.M, PUP.Optional.Installer.o, PUP.Optional.KORAMGAMESLIMITED.FF, PUP.Optional.Installer.l, PUP.Optional.Installer.f, PUP.Optional.KORAMGAMESLIMITED.b, Win32.Generic.KORAMGAMES, Win32.Generic.KORAMGAMES.Meta
97.30%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4786236, Threat.4786140, Conduit, Threat.4150696, Brothersoft Downloader, Threat.4786018
56.76%

K7 AntiVirus
Riskware , Unwanted-Program , Trojan , Adware
54.05%

AVG
Downloader, OpenCandy, Generic, Skodna.Generic, Adware BundleApp.EL
54.05%

K7 Gateway Antivirus
Unwanted-Program , Trojan , Adware
51.35%

Dr.Web
Adware.Conduit.3, Trojan.PWS.Stealer.13174, Adware.Downware.5214, riskware program Program.BrotherSoft.14, Trojan.InstallCore.38
43.24%

Agnitum Outpost
Riskware.BSDownloader, Riskware.Agent, PUA.Toolbar.Conduit, Adware.Askbar.B, PUA.InstallCore
40.54%

Avira AntiVirus
ADWARE/InstallCore.Gen9, Adware/InstallCo.zlf, ADWARE/InstallCore.Gen7, Adware/InstallCore.A.416, PUA/Installco.zlf, PUA/DownBro.Gen7
37.84%

NANO AntiVirus
Riskware.Win32.BrotherSoft.cvlwba, Riskware.Win32.Conduit.dbqqxi, Trojan.Win32.AdInstaller.deiwum, Riskware.Win32.Downware.degkle
35.14%

ESET NOD32
Win32/Toolbar.Conduit.AE potentially unwanted application, Win32/InstallCore.PZ potentially unwanted application, Win32/BSDownloader potentially unwanted application
35.14%

ESET NOD32
Win32/BSDownloader (variant), Win32/Toolbar.Conduit.AB (variant), Win32/AdInstaller (variant), Win32/InstallCore.PZ (variant)
27.03%

herdProtect (fuzzy)
a variant of 0b6fce02d19b201b2b854dc3db2d14c17eae20ae, a variant of ee9fca90894bf944b0f075ecaf71c128bc5b183c, a variant of 48a5fe507f42252b20e88b50fa312f9360c14887
24.32%

Malwarebytes
PUP.Optional.BSDownloader, PUP.Optional.Conduit.A
18.92%

F-Prot
W32/Agent.TR.gen, W32/BrotherSoft.A.gen
18.92%

Antiy Labs AVL
Trojan/Win32.Tgenic, Trojan/Win32.TGeneric, RiskWare[WebToolbar:not-a-virus]/Win32.MyWebSearch, Trojan/Win32.TSGeneric
16.22%

The domain downloaderfile.brothersoft.com has been seen to resolve to the following IP address.

184.172.2.121-static.reverse.softlayer.com
December 8, 2013

File downloads found at URLs served by downloaderfile.brothersoft.com.

1 / 68      (PUP)

 
Latest 30 of 121 download URLs

The following 2 files have been seen to comunicate with downloaderfile.brothersoft.com in live environments.

URL:
http://downloaderfile.brothersoft.com/

Web server:
BSWS/2.3

Compete.com:
US visitors:  772

Statistics are for the previous month.

Remove Malware from downloaderfile.brothersoft.com - Powered by Reason Core Security