home

files.brothersoft.com

Kunlun Wanwei Keji Gufen Youxian Gongsi

Domain Information

The domain files.brothersoft.com registered by Kunlun Wanwei Keji Gufen Youxian Gongsi was initially registered in July of 2002 through GODADDY.COM, LLC. The domain hosts various software downloads. The hosted servers are located in Dallas, Texas within the United States which resides on the SoftLayer Technologies Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Texas, United States (US)

Create date:
Friday, July 12, 2002

Expires date:
Thursday, July 12, 2018

Updated date:
Friday, April 26, 2013

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.

Root domain:
brothersoft.com

Whois:
1 brothersoft.com record

Google Safe Browsing:
unwanted

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.U, Win32.Generic.Installer.Meta, PUP.AnchorFree.Bundler.Meta (L), PUP.InstallCore.RE.Installer (M), PUP.InstallCore.RE11 (M), PUP.InstallCore.AC.Installer (M), PUP.Conduit.Bundler (M), PUP.Conduit (M), PUP.InstallCore.AC (M)
78.57%

ESET NOD32
Win32/Bundled.Toolbar.Google, Win32/OpenCandy, Win32/InstallMonetizer.AQ, Win32/InstallCore.PZ (variant), Win32/InstallCore.PS (variant)
25.00%

Fortinet FortiGate
Riskware/GushUnleashed, Riskware/InstallCore
14.29%

Kaspersky
not-a-virus:NetTool.Win32.GushUnleashed
10.71%

K7 AntiVirus
Unwanted-Program
10.71%

Trend Micro House Call
ADW_OPENCANDY, Suspicious_GEN.F47V0816
10.71%

Dr.Web
Adware.Downware.2013, Trojan.MulDrop5.38502, Detection.Undefined
10.71%

Baidu Antivirus
Adware.Win32.InstallMonetizer, Adware.Win32.InstallCore
10.71%

ESET NOD32
Win32/OpenCandy potentially unsafe application, Win32/FusionCore.A potentially unwanted application
10.71%

Bkav FE
W32.Cloddb2.Trojan, W32.Clod794.Trojan
7.14%

Trend Micro
ADW_OPENCANDY
7.14%

VIPRE Antivirus
Brothersoft Downloader
7.14%

SUPERAntiSpyware
PUP.InstallCore/Variant, Trojan.Agent/Gen-MultDrop
7.14%

Avira AntiVirus
ADWARE/InstallCore.Gen9, ADWARE/InstallCore.Gen7
7.14%

AVG
Generic
7.14%

The domain files.brothersoft.com has been seen to resolve to the following IP address.

75.126.20.73
75.126.20.73-static.reverse.softlayer.com
August 5, 2013

File downloads found at URLs served by files.brothersoft.com.

1 / 68
http://files.brothersoft.com/software_developer/.../DC_Num2Text_35535.exe  (79a239a4298823ea0868c42711d9e261)

0 / 68
http://files.brothersoft.com/photograph_graphics/.../PhotoScape_V3.6.3.exe  (c68d9a2190d44c5ca294806859faefe6)

0 / 68
http://files.brothersoft.com/photograph_graphics/.../PhotoScape_V3.6.5.exe  (5e6596b0ad11bfc4278620e2fd0538ec)

0 / 68
http://files.brothersoft.com/utilities/.../AutoClick.exe  (brothersoft_downloader_for_.exe)

0 / 68
http://files.brothersoft.com/drivers/Printer/.../BrMain_411.exe  (brothersoft_downloader_for_brother_hl_2140_printer_firmware_1_15.exe)

0 / 68
http://files.brothersoft.com/drivers/Printer/.../Y07C_C1-inst-F1-enus.EXE  (brothersoft_downloader_for_brother_hl_2140_printer_driver_f1_for_xp_vista.exe)

6 / 68      (PUP)
http://files.brothersoft.com/internet/.../OrbitSetup4.0.4.exe  (orbitdownloadersetup.exe)

2 / 68
http://files.brothersoft.com/photograph_graphics/.../bdcamsetup.exe  (460aaad596becf52f4a0999045ce3c2a)

1 / 68      (Adware)
http://files.brothersoft.com/internet/.../OrbitSetup4.1.18_20130502_1.exe  (installer_orbit_downloader.exe)

1 / 68      (PUP)
http://files.brothersoft.com/graphics_design/.../AutoCAD2007Trial.exe  (bs_AutoCAD.exe)

0 / 68
http://files.brothersoft.com/internet/.../intellitamper_v2.07.exe  (brothersoft_downloader_for_.exe)

1 / 68      (PUP)
http://files.brothersoft.com/pdf_files/.../pdfcompdemo211.exe  (bs_magic_pdf_compressor.exe)

2 / 68      (PUP)
http://files.brothersoft.com/internet/.../OrbitDM.exe  (c10b8e7a7bc39355b83aead3f0ab781a)

0 / 68
http://files.brothersoft.com/internet/.../StreamDownloader.exe  (e1e335d04e822136bac84668ce332221)

0 / 68
http://files.brothersoft.com/Brothersoft-Updater-1.0.0.2.exe  (944f000e874655d1371ac2da64ae02ca)

0 / 68
http://files.brothersoft.com/dvd_video/.../tvc371.exe  (31fdff0b9721bf11c567ea490cd0aae6)

12 / 68    (PUP)
http://files.brothersoft.com/internet/.../VDownloaderInstaller.exe  (cdcec59944a8a24cf56eded072cb6425844f45b7d799e0d95db23f960a0174aa)

0 / 68
http://files.brothersoft.com/home_education/.../AutoClicksetup.exe  (AutoClick.exe)

12 / 68    (PUP)
http://files.brothersoft.com/photograph_graphics/.../XnView-win-small.exe  (0b769db8f5a68116bd7a180f9c0bffd1aaace61014e9fda16ecdf03934b926da)

8 / 68      (PUP)
http://files.brothersoft.com/internet/.../OrbitSetup4.0.11.exe  (orbitdownloadersetup.exe)

5 / 68      (PUP)
http://files.brothersoft.com/internet/.../OrbitSetup4.0.10.exe  (orbitdownloadersetup.exe)

0 / 68
http://files.brothersoft.com/internet/.../OrbitDownloaderSetup.exe  (83a51c8cd01d6152e0a2c7163dd82672)

0 / 68
http://files.brothersoft.com/internet/.../avant.oem.exe  (1f809dbcf365c52204662bfa80b534db)

1 / 68      (Malware)
http://files.brothersoft.com/mp3_audio/.../JAD8017_BASIC.exe  (softpile_downloader_for_jetaudio.exe)

1 / 68      (Adware)
http://files.brothersoft.com/games/new/game_archives/.../CheatEngine63.exe  (icreinstall_installer_for_cheat_engine.exe)

3 / 68      (PUP)
http://files.brothersoft.com/development/.../pspad456inst_en.exe  (e96a1756fb3e3e9f0394e90a5714d317)

1 / 68      (PUP)
http://files.brothersoft.com/security/.../HSS-3.09-install-brothersoft-388-conduit.exe  (2d097cc52d7100d807a6bc7e6533cae8)

1 / 68      (PUP)
http://files.brothersoft.com/drivers/Printer/.../epson11968.exe  (installer_for_epson_lx_300_plus_ii_impact_printer_driver_1_1aa.exe)

1 / 68      (Malware)
http://files.brothersoft.com/drivers/BIOS/.../mb_bios_ga-880ga-ud3h_v.3.x_ff.exe  (installer_for_gigabyte_ga_880ga_ud3h_rev_3_1_bios_ff.exe)

1 / 68      (PUP)
http://files.brothersoft.com/drivers/Sound/.../Vista_Win7_R260_x86.exe  (installer_for_realtek_hd_audio_driver_r2_60_for_vista_win7.exe)

 
Latest 30 of 192 download URLs

The following 10 files have been seen to comunicate with files.brothersoft.com in live environments.

TCP » 75.126.20.73:80
brothersoft_downloader_for_project_blackout.exe (BSdownloader Module)

TCP » 75.126.20.73:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 75.126.20.73:80
045059e46759b97180072a2a837e8d7f7f7264146080097915feb3eaefd4ef9a (Program Web Internet by Software)

TCP » 75.126.20.73:80
72ccb1f90677c5a3bcf26053ee87ffdc8406101c2de0ec56b18fa3855148554e

TCP » 75.126.20.73:80
7f27851fa98b4dc3314ab97587c2bf558fd45438647bd68b8be46158e7a3940a (My Program)

TCP » 75.126.20.73:80
951119d1880a9ce2717d24f90cd1c7de796aca6d4b935b024d301edab10b7196 (Program Web Internet by Software)

TCP » 75.126.20.73:80
c1e431478c87b381e19e5a9bfb32047f54220c874b95a8ba00295be144151c93 (Program Web Internet by Software)

TCP » 75.126.20.73:80
f26159764ec4f5f73e1007a720555769ba4c480cebb8393d81719045fdddabbd

TCP » 75.126.20.73:80
brothersoftdownloader_for_adobe_photoshop.exe (Brothersoft Download Manager by Conduit)

TCP » 75.126.20.73:80
installer_for_pes_2011.exe (Daba)

URL:
http://files.brothersoft.com/

Web server:
BSWS/1.1

Facebook:
Shares:  4

Compete.com:
US visitors:  1,659

Statistics are for the previous month.

afreecodec.com

brothergames.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.