www.official-drivers.com

yaqiang chen

Domain Information

The domain www.official-drivers.com registered by yaqiang chen was initially registered in February of 2011 through NAME.COM LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dallas, Texas within the United States which resides on the SoftLayer Technologies Inc. network.
Registrar:
NAME.COM, INC.

Server location:
Texas, United States (US)

Create date:
Wednesday, February 16, 2011

Expires date:
Thursday, February 16, 2017

Updated date:
Thursday, October 08, 2015

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.

Scanner detections:
Detections  (76% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.InstallX.Bundle, PUP.Optional.Installer.R, PUP.Optional.Installer.F, PUP.Optional.Installer.L, PUP.Installer.Rollnon.I, PUP.DeskToolsSoft (L), PUP.Systweak.TUNEUPPR.Installer.Meta (L), PUP.LionSea.Installer, PUP.IMALI.IMALINIMEDIA, PUP.Systweak.ThePhone.Installer.Meta (L), PUP.Air Software.DownloadAssistant.Bundler (M), PUP.Downloadius.Downloadious.Installer (M), PUP.Softpulse.DIGITALPLUGINU.Installer (M), PUP.NewMedia.Installer.Installer (M), PUP.LionSea.Optional.Installer.Meta (M), PUP.installCore (M), PUP.Bundlore.Wishapp.Bundler (M), PUP.Outbrowse.YESAPPs.Bundler (M), PUP.Adknowledge.Fileange.Bundler (M), PUP.Systweak.SUPERTUN.Installer.Meta (L), PUP.Vittalia.InstallA.Installer (M), PUP.Outbrowse.TIKiTAKa.Bundler (M), PUP.Tuguu (M)
90.24%

Trend Micro House Call
TROJ_GEN.F47V0728, Suspicious_GEN.F47V0708, Suspicious_GEN.F47V0413, Suspicious_GEN.F47V1230, Suspicious_GEN.F47V0414
14.63%

IKARUS anti.virus
PUA.Nextup, PUA.FusionCore, PUA.Downloader.Agent, not-a-virus:AdWare.SoftPulse
14.63%

Dr.Web
Program.Unwanted.79, riskware program Program.Unwanted.79, Trojan.Domaiq.275
14.63%

ESET NOD32
Win32/FusionCore.B potentially unwanted application, Detection.Undefined, Win32/SoftPulse.AH potentially unwanted application
14.63%

McAfee
Artemis!C96BD5645D12, Artemis!C53178F58C05, Trojan.Artemis!AD2129474ADD
12.20%

VIPRE Antivirus
Rocketfuel Installer, Trojan.Win32.Generic, Threat.5064683, Threat.4721115
9.76%

G Data
Win32.Application.Nextup, Win32.Application.Dealply
9.76%

ESET NOD32
Win32/Verti (variant), Win32/FusionCore.B potentially unwanted (variant), Win32/Downloader.Agent.AI (variant), Win32/InstallCore.ACZ potentially unwanted (variant)
9.76%

AVG
Generic, Adware InstallCore.AOJ, AdPlugin, Win32/Sality
9.76%

Malwarebytes
PUP.Optional.NextUp, PUP.Optional.InstallCore, PUP.Optional.SoftPulse
7.32%

K7 Gateway Antivirus
Trojan , Trojan-Downloader , Unwanted-Program
7.32%

K7 AntiVirus
Trojan , Unwanted-Program
7.32%

McAfee Web Gateway
Artemis!C96BD5645D12, Artemis!Trojan, BehavesLike.Win32.SoftPulse.jc
7.32%

Sophos
NextUp, Generic PUA LN, PUA 'SoftPulse' (of type Adware)
7.32%

The domain www.official-drivers.com has been seen to resolve to the following IP address.

173.192.57.82-static.server3.softlayer.com
August 5, 2013

File downloads found at URLs served by www.official-drivers.com.

0 / 68
http://www.official-drivers.com/setup.exe  (64066d6102f506b3703bc51d517d40c5)

14 / 68    (Adware)
http://www.official-drivers.com/.../setup.exe  (20f3c5cb19c0f477ec2c088288be51cb)

8 / 68      (PUP)
http://www.official-drivers.com/.../setup.exe  (218416f5d809ff679d68da1b94026f27)

The following 31 files have been seen to comunicate with www.official-drivers.com in live environments.

 
Latest 20 of 33 files

URL:
http://www.official-drivers.com/

Google Analytics:
UA-17222774

Title:
“Automatic Driver Updating Tool - DriverTuner”

Title (8/5/2013):
“Windows Drivers Download - Windows”

Title (1/10/2014):
“Windows Drivers & Downloads - Windows”

Web server:
Apache/2.2.15 (CentOS) (PHP/5.3.3)

Facebook:
Shares:  6

Statistics are for the previous month.