ufasoft.com

Ufasoft

Domain Information

The domain ufasoft.com registered by Ufasoft was initially registered in February of 2000 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in London, England within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrar:
GODADDY.COM, LLC

Server location:
England, United Kingdom (GB)

Create date:
Saturday, February 05, 2000

Expires date:
Sunday, February 05, 2017

Updated date:
Sunday, August 31, 2014

ASN:
AS202109 DIGITALOCEAN-ASN-2 Digital Ocean, Inc.,GB

Scanner detections:
Detections  (70% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.BitCoinMiner, PUP.BitcoinMiner
77.78%

Trend Micro House Call
TROJ_GEN.R0CBC0OJT13, TROJ_GEN.R0CBH07KS13, TROJ_GEN.R047H07DG14, TROJ_GEN.R00GH07E614, Suspicious_GEN.F47V0422, TROJ_GEN.R00UC0EB115
77.78%

Sophos
Bitcoin Miner
77.78%

K7 AntiVirus
Trojan , Unwanted-Program
66.67%

K7 Gateway Antivirus
Trojan , Unwanted-Program
66.67%

ESET NOD32
Win32/BitCoinMiner.AL (variant), Win32/BitCoinMiner.AV, Win32/BitCoinMiner.AV (variant), MSIL/BitCoinMiner (variant), MSIL/BitCoinMiner.E potentially unsafe (variant)
66.67%

McAfee
Artemis!1EA0064C8E9D, Artemis!6E1376502A55, Artemis!2F9EC1EDC31B, Artemis!534DEDCD4BF7, Artemis!A52A01D7FFE0
55.56%

McAfee Web Gateway
Artemis!1EA0064C8E9D, Artemis!6E1376502A55, Artemis!2F9EC1EDC31B, Artemis!534DEDCD4BF7
55.56%

AhnLab V3 Security
Trojan/Win32.BitMiner, PUP/Win32.Miner, HackTool/Win32.BitCoinMiner
55.56%

Dr.Web
Tool.BtcMine.207, Tool.BtcMine.254, hacktool program Tool.BtcMine.538, Tool.BtcMine.259
55.56%

Quick Heal
RiskTool.Win64.g4 (Not a Virus), (Suspicious) - DNAScan
55.56%

Norman
BitCoin.L, Suspicious_Gen4.HPCQI, Suspicious_Gen4.EGRJK
44.44%

Kaspersky
not-a-virus:RiskTool.Win32.BitCoinMiner, not-a-virus:RiskTool.Win64.BitCoinMiner
44.44%

Antiy Labs AVL
RiskTool/Win32.BitCoinMiner, RiskWare[RiskTool:not-a-virus]/Win64.BitCoinMiner
44.44%

Baidu Antivirus
Trojan.Win32.BitCoinMiner, Hacktool.Win32.BitCoinMiner
44.44%

The domain ufasoft.com has been seen to resolve to the following 2 IP addresses.

ufasoft.com
May 15, 2015

ufasoft.com
December 22, 2013

File downloads found at URLs served by ufasoft.com.

8 / 68      (PUP)
http://ufasoft.com/.../coin_setup.exe  (ufasoft_coin_0.64.exe)

6 / 68      (PUP)
http://ufasoft.com/.../ufasoft_sockschain_4.219.exe  (ufasoft_sockschain-4.221.exe)

14 / 68    (PUP)
http://ufasoft.com/.../coin_setup.exe  (ufasoft_coin_0.33.exe)

2 / 68
http://ufasoft.com/.../ufasoft_coin_0.113.exe  (ufasoft_sniffer_4.174.exe)

20 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.101.exe  (a52a01d7ffe02498b64015981dd15f2c)

2 / 68
http://ufasoft.com/.../ufasoft_coin_0.113.exe  (ufasoft_sockschain_4.221.exe)

17 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.92.exe  (534dedcd4bf755b3ee6920feb22a44f0)

17 / 68    (PUP)

14 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.33.exe  (2f9ec1edc31bb39a31389bf80dd67db9)

24 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.76.exe  (6e1376502a55e31165c90f435d571953)

24 / 68    (PUP)
http://ufasoft.com/.../coin_setup.exe  (ufasoft_coin_0.76.exe)

24 / 68    (PUP)

21 / 68    (PUP)
http://ufasoft.com/.../ufasoft_coin_0.75.exe  (1ea0064c8e9db57972c7f20f534a2f80)

0 / 68

21 / 68    (PUP)

September 2, 2014

URL:
http://ufasoft.com/

Google Analytics:
UA-6242596

Title:
“Internet software: Sniffer, SocksChain, Coin, P2P Messenger from Ufasoft company”

Description:
“Internet software: Sniffer, SocksChain, Coin, P2P Messenger from Ufasoft company”

Web server:
nginx/1.6.2 (Ubuntu)

Facebook:
Likes:  2
Shares:  5
Comments:  1

Statistics above are for the previous month of September 2017.