files.brothersoft.com

Kunlun Wanwei Keji Gufen Youxian Gongsi

Domain Information

The domain files.brothersoft.com registered by Kunlun Wanwei Keji Gufen Youxian Gongsi was initially registered in July of 2002 through GODADDY.COM, LLC. The domain hosts various software downloads. The hosted servers are located in Dallas, Texas within the United States which resides on the SoftLayer Technologies Inc. network.
Remove Malware from files.brothersoft.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Texas, United States (US)

Create date:
Friday, July 12, 2002

Expires date:
Thursday, July 12, 2018

Updated date:
Friday, April 26, 2013

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.

Root domain:

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (51% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.GRETECH.Q, PUP.Optional.Installer.KORAMGAMESLIMITED.X, PUP.Optional.Installer.GreentreeApplicationsSRL.Q, PUP.Optional.Installer.HH, PUP.Conduit.DD, PUP.Optional.KORAMGAMESLIMITED.d, PUP.Optional.KORAMGAMESLIMITED., Win32.Generic
63.64%

ESET NOD32
Win32/OpenCandy, Win32/Bundled.Toolbar.Ask (variant), Win32/Ivefound, Win32/Toolbar.Conduit, Win32/Toolbar.Conduit (variant)
60.61%

K7 Gateway Antivirus
Unwanted-Program , Trojan , Unwanted-File , Riskware
39.39%

Dr.Web
Adware.OpenCandy.3, Adware.Toolbar.39, Adware.Conduit.30, Trojan.Packed.24524, Adware.OpenCandy.51, Adware.Conduit.6, DDoS.Siggen.539
39.39%

K7 AntiVirus
Unwanted-Program , Riskware
36.36%

VIPRE Antivirus
Trojan.Win32.Generic, Brothersoft Downloader, Conduit, Threat.4786140, Threat.4786236
33.33%

AVG
OpenCandy, Generic
33.33%

Vba32 AntiVirus
AdWare.Gaba, suspected of Trojan.Notifier.gen, AdWare.OpenCandy, suspected of Trojan.Downloader.gen.h, Downloader.Agent
30.30%

Trend Micro House Call
TROJ_GEN.F47V0909, ADW_OPENCANDY, TROJ_GE.C269A907, TROJ_GEN.F47V0331, Suspicious_GEN.F47V0617, TROJ_GEN.F47V0928, TROJ_GEN.R047H07H614
24.24%

Baidu Antivirus
Trojan.Win32.Ivefound, Adware.Win32.OpenCandy, Adware.Win32.InstallCore, Trojan.Win32.DDOS
24.24%

Malwarebytes
PUP.Optional.OpenCandy, PUP.Optional.Conduit.A, PUP.Optional.InstallCore.A
21.21%

McAfee
Artemis!E85F6B223817, Artemis!B7E6D7F20013, Artemis!955036124F22, Artemis!601C231B9179, Artemis!0CDBD45E11B4
18.18%

McAfee Web Gateway
Artemis!E85F6B223817, Artemis!B7E6D7F20013
15.15%

Kaspersky
not-a-virus:NetTool.Win32.GushUnleashed, Trojan-DDoS.Win32.OrboDDoS, HEUR:Trojan-DDoS.Win32.OrboDDoS, not-a-virus:Downloader.NSIS.Agent
15.15%

Agnitum Outpost
Adware.OpenCandy, Trojan.Kryptik, Riskware.Agent, PUA.InstallCore
15.15%

The domain files.brothersoft.com has been seen to resolve to the following IP address.

75.126.20.73-static.reverse.softlayer.com
August 5, 2013

File downloads found at URLs served by files.brothersoft.com.

1 / 68      (PUP)
http://files.brothersoft.com/drivers/Printer/.../epson10703.exe  (brothersoft_downloader_for_epson_lq_2080_impact_printer_driver_3_0e.exe)

1 / 68      (inconclusive)

0 / 68

0 / 68
http://files.brothersoft.com/dvd_video/.../DVDFab6022.exe  (e81f717c5542c7e9a3b89cf57d6e4a90)

0 / 68

1 / 68      (inconclusive)

5 / 68      (PUP)

13 / 68    (PUP)
http://files.brothersoft.com/business/.../WBSProSetup.EXE  (brothersoft_downloader_for_wbs_chart_pro.exe)

7 / 68      (PUP)

1 / 68      (PUP)
http://files.brothersoft.com/utilities/.../Battery_v1.2.1.exe  (brothersoft_downloader_for_battery_doubler.exe)

10 / 68    (PUP)

8 / 68      (PUP)
http://files.brothersoft.com/utilities/.../ms-dos.exe  (brothersoft_downloader_for_ms_dos.exe)

8 / 68      (PUP)

18 / 68    (Malware)

14 / 68    (PUP)

12 / 68    (PUP)
http://files.brothersoft.com/drivers/Printer/.../Pack_Main0En250.exe  (brothersoft_downloader_for_brother_hl_2040_printer_firmware_1_30.exe)

0 / 68
http://files.brothersoft.com/internet/.../3GP-Player.exe  (a8201b5b601eceef0764a542211193fb)

7 / 68      (PUP)
http://files.brothersoft.com/internet/.../Unlocker1.9.2.exe  (brothersoft_downloader_for_unlocker.exe)

15 / 68    (PUP)
http://files.brothersoft.com/internet/.../OrbitDM.exe  (601c231b9179e8a26c32b7ea768ff9fa)

7 / 68      (PUP)

9 / 68      (PUP)
http://files.brothersoft.com/security/.../spybotsd-2.1.21-SR2.exe  (icreinstall_brothersoft_downloader_for_spybot_search_destroy.exe)

2 / 68      (PUP)

 
Latest 30 of 106 download URLs

The following 6 files have been seen to comunicate with files.brothersoft.com in live environments.

URL:
http://files.brothersoft.com/

Web server:
BSWS/1.1

Facebook:
Shares:  4

Compete.com:
US visitors:  1,659

Statistics are for the previous month.

Remove Malware from files.brothersoft.com - Powered by Reason Core Security