home

ufasoft.com

Ufasoft

Domain Information

The domain ufasoft.com registered by Ufasoft was initially registered in February of 2000 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in London, England within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrar:
GODADDY.COM, LLC

Server location:
England, United Kingdom (GB)

Create date:
Saturday, February 5, 2000

Expires date:
Sunday, February 5, 2017

Updated date:
Sunday, August 31, 2014

ASN:
AS202109 DIGITALOCEAN-ASN-2 Digital Ocean, Inc.,GB

Whois:
2 ufasoft.com records

Scanner detections:
Detections  (60% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.BitCoinMiner, PUP.BitcoinMiner
77.78%

Trend Micro House Call
TROJ_GEN.R0CBC0OJT13, TROJ_GEN.R0CBH07KS13, TROJ_GEN.R047H07DG14, TROJ_GEN.R00GH07E614, Suspicious_GEN.F47V0422, TROJ_GEN.R00UC0EB115
77.78%

Sophos
Bitcoin Miner
77.78%

K7 AntiVirus
Trojan , Unwanted-Program
66.67%

ESET NOD32
Win32/BitCoinMiner.AL (variant), Win32/BitCoinMiner.AV, Win32/BitCoinMiner.AV (variant), MSIL/BitCoinMiner (variant), MSIL/BitCoinMiner.E potentially unsafe (variant)
66.67%

McAfee
Artemis!1EA0064C8E9D, Artemis!6E1376502A55, Artemis!2F9EC1EDC31B, Artemis!534DEDCD4BF7, Artemis!A52A01D7FFE0
55.56%

AhnLab V3 Security
Trojan/Win32.BitMiner, PUP/Win32.Miner, HackTool/Win32.BitCoinMiner
55.56%

Dr.Web
Tool.BtcMine.207, Tool.BtcMine.254, hacktool program Tool.BtcMine.538, Tool.BtcMine.259
55.56%

Quick Heal
RiskTool.Win64.g4 (Not a Virus), (Suspicious) - DNAScan
55.56%

Norman
BitCoin.L, Suspicious_Gen4.HPCQI, Suspicious_Gen4.EGRJK
44.44%

Kaspersky
not-a-virus:RiskTool.Win32.BitCoinMiner, not-a-virus:RiskTool.Win64.BitCoinMiner
44.44%

Baidu Antivirus
Trojan.Win32.BitCoinMiner, Hacktool.Win32.BitCoinMiner
44.44%

avast!
Win32:Malware-gen
33.33%

VIPRE Antivirus
Trojan.Win32.Generic, Bitcoin Miner (not malicious)
33.33%

G Data
Win32.Trojan.Agent.PK1WBY, Application.Bitcoinminer.CE, Win32.Application.Agent.3MKTGL
33.33%

The domain ufasoft.com has been seen to resolve to the following 2 IP addresses.

178.62.65.137
ufasoft.com
May 15, 2015

69.73.179.75
ufasoft.com
December 22, 2013

File downloads found at URLs served by ufasoft.com.

6 / 68      (PUP)
http://ufasoft.com/.../coin_setup.exe  (ufasoft_coin_0.64.exe)

5 / 68      (inconclusive)
http://ufasoft.com/.../ufasoft_sockschain_4.219.exe  (ufasoft_sockschain-4.221.exe)

12 / 68    (PUP)
http://ufasoft.com/.../coin_setup.exe  (ufasoft_coin_0.33.exe)

2 / 68
http://ufasoft.com/.../ufasoft_coin_0.113.exe  (ufasoft_sniffer_4.174.exe)

18 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.101.exe  (a52a01d7ffe02498b64015981dd15f2c)

2 / 68
http://ufasoft.com/.../ufasoft_coin_0.113.exe  (ufasoft_sockschain_4.221.exe)

14 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.92.exe  (534dedcd4bf755b3ee6920feb22a44f0)

14 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.33.exe  (ufasoft_coin_0.92.exe)

12 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.33.exe  (2f9ec1edc31bb39a31389bf80dd67db9)

20 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.76.exe  (6e1376502a55e31165c90f435d571953)

20 / 68    (PUP)
http://ufasoft.com/.../coin_setup.exe  (ufasoft_coin_0.76.exe)

20 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.33.exe  (ufasoft_coin_0.76.exe)

18 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.75.exe  (1ea0064c8e9db57972c7f20f534a2f80)

0 / 68
http://ufasoft.com/.../ufasoft_coin_0.33.exe  (ufasoft_coin_0.75.exe)

18 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.33.exe  (ufasoft_coin_0.75.exe)

September 2, 2014
www.ufasoft.com

URL:
http://ufasoft.com/

Google Analytics:
UA-6242596

Title:
“Internet software: Sniffer, SocksChain, Coin, P2P Messenger from Ufasoft company”

Description:
“Internet software: Sniffer, SocksChain, Coin, P2P Messenger from Ufasoft company”

Web server:
nginx/1.6.2 (Ubuntu)

Facebook:
Likes:  2
Shares:  5
Comments:  1

Statistics above are for the previous month of March 2024.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.