gmfiles.brothersoft.com

Kunlun Wanwei Keji Gufen Youxian Gongsi

Domain Information

The domain gmfiles.brothersoft.com registered by Kunlun Wanwei Keji Gufen Youxian Gongsi was initially registered in July of 2002 through GODADDY.COM, LLC. The domain hosts various software downloads. The hosted servers are located in Dallas, Texas within the United States which resides on the SoftLayer Technologies Inc. network.
Remove Malware from gmfiles.brothersoft.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Texas, United States (US)

Create date:
Friday, July 12, 2002

Expires date:
Thursday, July 12, 2018

Updated date:
Friday, April 26, 2013

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.

Root domain:

Scanner detections:
Detections  (80% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.KORAMGAMESLIMITED.k, PUP.Optional.Installer.s, PUP.Optional.KORAMGAMESLIMITED.n, Win32.Generic.KORAMGAMES.Meta
80.00%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4786140
60.00%

AVG
Downloader, Generic
60.00%

ESET NOD32
Win32/Toolbar.Conduit (variant), Win32/BSDownloader (variant)
40.00%

ESET NOD32
Win32/InstallCore.PZ potentially unwanted application, Win32/InstallCore.PS potentially unwanted application
40.00%

K7 AntiVirus
Unwanted-Program
40.00%

K7 Gateway Antivirus
Unwanted-Program
40.00%

Avira AntiVirus
ADWARE/InstallCore.Gen9, ADWARE/InstallCore.Gen7
40.00%

Vba32 AntiVirus
Malware-Cryptor.InstallCore.gen
40.00%

Malwarebytes
PUP.Optional.BSDownloader
20.00%

herdProtect (fuzzy)
a variant of 0b6fce02d19b201b2b854dc3db2d14c17eae20ae
20.00%

Agnitum Outpost
Riskware.BSDownloader
20.00%

F-Prot
W32/Agent.TR.gen
20.00%

NANO AntiVirus
Riskware.Win32.BrotherSoft.cvlwba
20.00%

Antiy Labs AVL
Trojan/Win32.Tgenic
20.00%

The domain gmfiles.brothersoft.com has been seen to resolve to the following IP address.

75.126.20.73-static.reverse.softlayer.com
February 7, 2014

File downloads found at URLs served by gmfiles.brothersoft.com.

1 / 68      (PUP)
http://gmfiles.brothersoft.com/games/new/sports/.../ElfBowlingHawaiianVacation_1660.exe  (brothersoft_downloader_for_elf_bowling_hawaiian_vacation.exe)

9 / 68      (PUP)
http://gmfiles.brothersoft.com/games/new/action/.../tzagdemo.exe  (brothersoft_downloader_for_total_annihilation.exe)

8 / 68      (PUP)
http://gmfiles.brothersoft.com/games/new/rpg/.../Arena106.exe  (brothersoft_downloader_for_the_elder_scrolls_arena.exe)

11 / 68    (PUP)
http://gmfiles.brothersoft.com/games/.../BeachHead2000.exe  (brothersoft_downloader_for_beach_head_2000.exe)

1 / 68      (inconclusive)

The following 6 files have been seen to comunicate with gmfiles.brothersoft.com in live environments.

URL:
http://gmfiles.brothersoft.com/

Web server:
BSWS/1.1

Remove Malware from gmfiles.brothersoft.com - Powered by Reason Core Security