files.brothersoft.com

Kunlun Wanwei Keji Gufen Youxian Gongsi

Domain Information

The domain files.brothersoft.com registered by Kunlun Wanwei Keji Gufen Youxian Gongsi was initially registered in July of 2002 through GODADDY.COM, LLC. The domain hosts various software downloads. The hosted servers are located in Dallas, Texas within the United States which resides on the SoftLayer Technologies Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Texas, United States (US)

Create date:
Friday, July 12, 2002

Expires date:
Thursday, July 12, 2018

Updated date:
Friday, April 26, 2013

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.

Root domain:

Google Safe Browsing:
unwanted

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.U, Win32.Generic.Installer.Meta, PUP.AnchorFree.Bundler.Meta (L), PUP.InstallCore.RE.Installer (M), PUP.InstallCore.RE11 (M), PUP.InstallCore.AC.Installer (M), PUP.Conduit.Bundler (M), PUP.Conduit (M), PUP.InstallCore.AC (M)
75.86%

ESET NOD32
Win32/Bundled.Toolbar.Google, Win32/OpenCandy, Win32/InstallMonetizer.AQ, Win32/InstallCore.PZ (variant), Win32/InstallCore.PS (variant)
24.14%

Fortinet FortiGate
Riskware/GushUnleashed, Riskware/InstallCore
13.79%

Kaspersky
not-a-virus:NetTool.Win32.GushUnleashed
10.34%

K7 Gateway Antivirus
Unwanted-Program
10.34%

K7 AntiVirus
Unwanted-Program
10.34%

Trend Micro House Call
ADW_OPENCANDY, Suspicious_GEN.F47V0816
10.34%

Dr.Web
Adware.Downware.2013, Trojan.MulDrop5.38502, Detection.Undefined
10.34%

Baidu Antivirus
Adware.Win32.InstallMonetizer, Adware.Win32.InstallCore
10.34%

ESET NOD32
Win32/OpenCandy potentially unsafe application, Win32/FusionCore.A potentially unwanted application
10.34%

Bkav FE
W32.Cloddb2.Trojan, W32.Clod794.Trojan
6.90%

Trend Micro
ADW_OPENCANDY
6.90%

VIPRE Antivirus
Brothersoft Downloader
6.90%

SUPERAntiSpyware
PUP.InstallCore/Variant, Trojan.Agent/Gen-MultDrop
6.90%

Avira AntiVirus
ADWARE/InstallCore.Gen9, ADWARE/InstallCore.Gen7
6.90%

The domain files.brothersoft.com has been seen to resolve to the following IP address.

75.126.20.73-static.reverse.softlayer.com
August 5, 2013

File downloads found at URLs served by files.brothersoft.com.

0 / 68

0 / 68
http://files.brothersoft.com/drivers/Printer/.../BrMain_411.exe  (brothersoft_downloader_for_brother_hl_2140_printer_firmware_1_15.exe)

0 / 68
http://files.brothersoft.com/drivers/Printer/.../Y07C_C1-inst-F1-enus.EXE  (brothersoft_downloader_for_brother_hl_2140_printer_driver_f1_for_xp_vista.exe)

6 / 68      (PUP)

1 / 68      (Adware)

1 / 68      (PUP)

2 / 68      (PUP)
http://files.brothersoft.com/internet/.../OrbitDM.exe  (c10b8e7a7bc39355b83aead3f0ab781a)

0 / 68

0 / 68

0 / 68
http://files.brothersoft.com/dvd_video/.../tvc371.exe  (31fdff0b9721bf11c567ea490cd0aae6)

14 / 68    (PUP)
http://files.brothersoft.com/internet/.../VDownloaderInstaller.exe  (cdcec59944a8a24cf56eded072cb6425844f45b7d799e0d95db23f960a0174aa)

13 / 68    (PUP)
http://files.brothersoft.com/photograph_graphics/.../XnView-win-small.exe  (0b769db8f5a68116bd7a180f9c0bffd1aaace61014e9fda16ecdf03934b926da)

10 / 68    (PUP)

5 / 68      (PUP)

0 / 68

0 / 68
http://files.brothersoft.com/internet/.../avant.oem.exe  (1f809dbcf365c52204662bfa80b534db)

1 / 68      (Malware)
http://files.brothersoft.com/mp3_audio/.../JAD8017_BASIC.exe  (softpile_downloader_for_jetaudio.exe)

1 / 68      (Adware)

3 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)
http://files.brothersoft.com/drivers/Printer/.../epson11968.exe  (installer_for_epson_lx_300_plus_ii_impact_printer_driver_1_1aa.exe)

1 / 68      (Malware)
http://files.brothersoft.com/drivers/BIOS/.../mb_bios_ga-880ga-ud3h_v.3.x_ff.exe  (installer_for_gigabyte_ga_880ga_ud3h_rev_3_1_bios_ff.exe)

1 / 68      (PUP)
http://files.brothersoft.com/drivers/Sound/.../Vista_Win7_R260_x86.exe  (installer_for_realtek_hd_audio_driver_r2_60_for_vista_win7.exe)

 
Latest 30 of 192 download URLs

The following 10 files have been seen to comunicate with files.brothersoft.com in live environments.

URL:
http://files.brothersoft.com/

Web server:
BSWS/1.1

Facebook:
Shares:  4

Compete.com:
US visitors:  1,659

Statistics are for the previous month.