home

www.brothersoft.es

Domain Information

Server location:
Texas, United States (US)

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.

Root domain:
brothersoft.es

Scanner detections:
Malware distribution  (91% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.KORAMGAMESLIMITED.e, PUP.Optional.Installer.e, Win32.Generic.KORAMGAMES.Installer.Meta, PUP.KORAM (M)
100.00%

K7 AntiVirus
Riskware, Unwanted-Program , Trojan
10.00%

ESET NOD32
Win32/BSDownloader (variant), Win32/InstallCore.PZ (variant), Win32/InstallCore.VM potentially unwanted (variant)
10.00%

McAfee
Artemis!A19035BE4EF2, Artemis!10448661EA29, Artemis!D51A5DDFD80B
10.00%

Baidu Antivirus
Trojan.Win32.BSDownloader, Adware.Win32.InstallCore
10.00%

VIPRE Antivirus
Trojan.Win32.Generic, Brothersoft Downloader
6.67%

Comodo Security
ApplicUnwnt, Application.Win32.InstallCore.DFA
6.67%

Avira AntiVirus
ADWARE/InstallCore.Gen9, Adware/InstallCo.zlf
6.67%

Fortinet FortiGate
Riskware/InstallCore
6.67%

AVG
Generic
6.67%

Qihoo 360 Security
Win32/Virus.Adware.f22, Win32/Virus.Adware.dbe
6.67%

Malwarebytes
PUP.Optional.BSDownloader
3.33%

F-Prot
W32/Agent.TR.gen
3.33%

herdProtect (fuzzy)
a variant of 7da811a51d83622bd4cddae81347b86328567e0c
3.33%

SUPERAntiSpyware
PUP.InstallCore/Variant
3.33%

The domain www.brothersoft.es has been seen to resolve to the following IP address.

108.168.197.129
108.168.197.129-static.reverse.softlayer.com
December 28, 2013

File downloads found at URLs served by www.brothersoft.es.

1 / 68      (PUP)
http://www.brothersoft.es/soft-128939.download  (brothersoft_downloader_for_windows_movie_maker.exe)

1 / 68      (PUP)
http://www.brothersoft.es/downloader/bdm.php?url=http://files.brothersoft.com/mobile_software/.../com.outfit7.talkingtom_15.apk&name=Talking Tom Cat  (brothersoftdownloader_for_talking_tom_cat.exe)

0 / 68
http://www.brothersoft.es/soft-133063.download  (brothersoft_downloader_for_winzip.exe)

1 / 68      (PUP)
http://www.brothersoft.es/soft-132884.download  (brothersoft_downloader_for_nero_express.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-168004.download  (brothersoft_downloader_for_emicsoft_video_converter.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-130827.download  (installer_for_copytrans_manager.exe)

1 / 68      (PUP)
http://www.brothersoft.es/downloader/bdm.php?url=http://esfiles.brothersoft.com/business_management/.../jazzit_excel.exe&name=JazzIT Excel  (brothersoftdownloader_for_jazzit_excel.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-167560.download  (brothersoft_downloader_for_free_mp4_to_dvd.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-132883.download  (brothersoft_downloader_for_nero_7_premium.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-136166.download  (brothersoft_downloader_for_free_pdf_unlocker.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-138194.download  (brothersoft_downloader_for_nero_7.exe)

1 / 68      (PUP)
http://www.brothersoft.es/downloader/bdm.php?url=http://esfiles.brothersoft.com/security/.../keylogger_king_pro_3_3.exe&name=Keylogger King Pro  (brothersoftdownloader_for_keylogger_king_pro.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-132857.download  (installer_for_autoclick.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-132068.download  (installer_for_movie_dvd_maker.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-138281.download  (installer_for_acoustica_mixcraft.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-133617.download  (installer_for_tasaplus.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-128709.download  (brothersoft_downloader_for_los_sims_2.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-162438.download  (installer_for_super_mario_land.exe)

0 / 68
http://www.brothersoft.es/soft-126624.download  (36218-671348-cool-edit-pro.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-129112.download  (brothersoft_downloader_for_avs_audio_editor.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-102975.download  (brothersoft_downloader_for_gom_player.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-138039.download  (brothersoft_downloader_for_sony_vegas_pro.exe)

1 / 68      (Malware)
http://www.brothersoft.es/soft-138226.download  (brothersoft_downloader_for_daemon_tools.exe)

1 / 68      (PUP)
http://www.brothersoft.es/downloader/bdm.php?url=http://esfiles.brothersoft.com/internet/.../ares_galaxy_2_0_9.exe&name=Ares Galaxy  (brothersoftdownloader_for_ares_galaxy.exe)

The following 17 files have been seen to comunicate with www.brothersoft.es in live environments.

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

TCP » 108.168.197.129:80
Orbitnet.exe (P2P service of Orbit Downloader by Orbitdownloader.com)

brothersoft.com

brothersoft.de

brothersoft.fr

brothersoft.jp

ie7pro.com

orbitdownloader.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.