The domain t.go-for-files.com registered by Whois Privacy Corp. was initially registered in October of 2013 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Amsterdam, Noord-Holland within Netherlands which resides on the RIPE Network Coordination Centre network.
INTERNET DOMAIN SERVICE BS CORP
Noord-Holland, Netherlands (NL)
Tuesday, October 08, 2013
Saturday, October 08, 2016
Sunday, December 13, 2015
AS16265 LEASEWEB LeaseWeb B.V.
Detections (98% detected)
PUP.RighwayTechnologies.k, PUP.RighwayTechnologies.R, PUP.RighwayTechnologies.P, PUP.RighwayTechnologies.Q, PUP.RighwayTechnologies.FF, PUP.RighwayTechnologies.j, PUP.RighwayTechnologies.a, PUP.RighwayTechnologies.d, PUP.RighwayTechnologies.h, PUP.RighwayTechnologies.AA, PUP.RighwayTechnologies.X, PUP.RighwayTechnologies.?, PUP.RighwayTechnologies.EE, PUP.RighwayTechnologies.g, PUP.RighwayTechnologies., PUP.RighwayTechnologies.V, Threat.RighwayTechnologies, Threat.Win.Reputation.IMP, PUP.RighwayTechnologies (M), PUP.Via Advertising.RighwayTechnologies.Bundler (M)
Go For Files, PUA 'Go For Files'
ExpressFiles Installer, Threat.4925438, Threat.4783941, Threat.4791953, Yontoo
K7 Gateway Antivirus
Unwanted-Program , Trojan , Adware
Unwanted-Program , Adware
AhnLab V3 Security
Adware.Downware.4798, Adware.Downware.4798, Adware.Downware.4798, Adware.Downware.3112, Adware.Downware.825, Threat.Undefined
Gen:Variant.Adware.Kazy.426646, Win32.Application.Expressdownloader, Adware.Agent.OCE, Win32.Application.ExpressDownloader
Righway Technologies, MalSign.Righway Technologies, Skodna.Generic_r
Win32:Malware-gen, Win32:Dropper-gen [Drp], Win32:PUP-gen [PUP], Win32:Adware-gen [Adw]
Win32/ExpressDownloader.H potentially unwanted application
McAfee Web Gateway
Artemis!EE3BB8C03DCB, Artemis!75828DD12967, Artemis!8BD8FCBBD91E, Artemis!AC86091B2C94, Artemis!6ED35167E0B0, Artemis!B3C6B875F3EA
Artemis!EE3BB8C03DCB, Artemis!75828DD12967, Artemis!8BD8FCBBD91E, Artemis!AC86091B2C94, Artemis!6ED35167E0B0, Artemis!B3C6B875F3EA, Artemis!B393249E1CBA, Artemis!3D06EBC0F208
Win32/ExpressDownloader (variant), Win32/YourFileDownloader (variant)
The domain t.go-for-files.com has been seen to resolve to the following 4 IP addresses.
October 13, 2015
May 23, 2014
File downloads found at URLs served by t.go-for-files.com.
Latest 30 of 222 download URLs