» www3.tusfiles.net
Overview
IPs Addresses (1)
Downloads (31)
Website Detail
Related Domains (9)

www3.tusfiles.net

Artur Kozak (via a Proxy Registrant)

Domain Information

TusFiles is a file hosting service that bills itself as a cloud backup platform, however the service is known to distributed various potentially unwanted software packages such as adware bundles through its wrapped download manager (signed by Artur Kozak, etc.). The domain www3.tusfiles.net is registered by proxy through GODADDY.COM, LLC and was originally registered in May of 2010. This domain has been seen distributing various forms of adware (some being very aggressive) directly or via bundled installations. The hosted servers are located in Frankfurt Am Main, Hessen within Germany which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Artur Kozak who is located in Kyiv, Ukraine.

Registrant:

Domains By Proxy, LLC on behalf of Artur Kozak

Registrar:

GODADDY.COM, LLC

Server location:

Hessen, Germany (DE)

Create date:

Monday, May 17, 2010

Expires date:

Wednesday, May 17, 2017

Updated date:

Wednesday, April 6, 2016

ASN:

AS28753 LEASEWEB-DE Leaseweb Deutschland GmbH, DE

Root domain:

tusfiles.net

Whois:

1 tusfiles.net record

Scanner detections:

Adware distribution

Scan engine

Details

Detections

Bkav FE

W32.Clode52.Trojan

100.00%

nProtect

Trojan/W32.Agent.258048.EB

100.00%

McAfee

Generic.dx!CBCFAEB22E48

100.00%

K7 AntiVirus

Trojan

100.00%

Agnitum Outpost

Trojan.CL.Agent

100.00%

F-Prot

W32/Trojan2.MHVI

100.00%

Norman

Suspicious_Gen2.FBJC

100.00%

Total Defense

Win32/Tnega.AGYF

100.00%

Clam AntiVirus

Win.Trojan.8256801

100.00%

NANO AntiVirus

Trojan.Win32.MHVI.ckmfy

100.00%

ViRobot

Trojan.Win32.A.Zbot.258048.AS

100.00%

Comodo Security

TrojWare.Win32.TrojanClicker.Agent.NFX0

100.00%

Dr.Web

Tool.Autoclick

100.00%

VIPRE Antivirus

Trojan.Win32.Generic

100.00%

Baidu Antivirus

Trojan.Win32.Clicker

100.00%

The domain www3.tusfiles.net has been seen to resolve to the following IP address.

178.162.210.86

April 12, 2016

File downloads found at URLs served by www3.tusfiles.net.

0 / 68

https://www3.tusfiles.net/d/.../Pokemon - Shiny Gold beta 5.zip (09da791119218ae97cf3fa2ac7fdb576)

0 / 68

https://www3.tusfiles.net/d/.../Cara Sholat.3gp (40740c25145d7bd9b71481f7cd5c774a)

0 / 68

https://www3.tusfiles.net/d/.../Gangbang Kuda(ladida.s3xtgem.com).3gp (856912a5-2d5d-d782-10b9-eee521e0fd34_1d1e8fe4ab3cccf)

0 / 68

https://www3.tusfiles.net/d/.../update_60522-Bestbalckforum-com-w3bbi3-retail-version.zip (98b758aba53f4b291a78f322831e637e)

0 / 68

https://www3.tusfiles.net/d/.../smu 6(www999.s3xtgem.Com).3gp (7202a092-5be0-41a0-c0fe-bf0d37957a69_1d1e495a3a35abe)

0 / 68

https://www3.tusfiles.net/d/.../Grepe di bus(www999.s3xtgem.com).3gp (2e437a3c-74f6-5db5-a877-8957cb343a7b_1d1e495b72a6b71)

0 / 68

https://www3.tusfiles.net/d/.../Penikmat Konti(www999.s3xtgem.com).3gp (a311aee2-a43d-e73d-5abb-39ae773ffb9e_1d1e49732e55527)

0 / 68

https://www3.tusfiles.net/d/.../Anne Bie Warburg - Nude(www999.s3xtgem.com).3gp (1b78f07c-e9c3-c8f4-280b-6e5f08c0f43e_1d1e49927e6f175)

0 / 68

https://www3.tusfiles.net/d/.../Latina Pornstar Duvy AKA Sabella Monize(www999.s3xtgem.com).3gp (061a2603-bbe9-dfb8-c009-bac3c16e9ad1_1d1e499b2592fbb)

0 / 68

https://www3.tusfiles.net/d/.../NingaliNET-RAT 1.0.2.1.rar ({266e0df1-8f5f-44ba-ac77-b87c8dd31311}-ningalinet-rat 1.0.2.1.rar)

0 / 68

https://www3.tusfiles.net/d/.../TMACv6.0.3 - [duniainternet.net].rar ({388a138c-b981-4630-ad24-ae6cdecb8209}-8aac8fac-f77c-0019-1f7b-29b767affb3a_1d1dd4246a97d83)

17 / 68 (Malware)

https://www3.tusfiles.net/d/.../AutoClick.exe (82199-autoclick.exe)

0 / 68

https://www3.tusfiles.net/d/.../The Corrs - Dreams.mp3 (0fde4dde-379d-e5e8-e4fb-27d413c82562_1d1cd28c89b29ec)

0 / 68

https://www3.tusfiles.net/d/.../camfrog dikamar kost.3gp (e53212bd44d87825290459fecdcc3ef5)

0 / 68

https://www3.tusfiles.net/d/.../Memek Muda(jembutmu.s3xtgem.com).3gp (e8c214a9-9743-4645-1d41-e1c78f4bd9ef_1d1c3f11557d6fd)

0 / 68

https://www3.tusfiles.net/d/.../Pokemon - Liquid Crystal.zip (26083e01eff918e0c1bd189eb2bdb6fd)

0 / 68

https://www3.tusfiles.net/d/.../John Hagee - Ataque a los Estados Unidos de America.epub (f4a0812b4fbb4b772950fa84679dbcca)

0 / 68

https://www3.tusfiles.net/d/.../Password Cheat PBID update 12 Jan 2016.rar (2841684aae6e94236f275f42eabdcb7a)

0 / 68

https://www3.tusfiles.net/d/.../1R Death no chat 4.rar (479a7626c4e46d237cb3ce916e992f95)

0 / 68

https://www3.tusfiles.net/d/.../Emut(ladida.s3xtgem.com).3gp (5035b4b60ecfb7437610502cab038bc4)

0 / 68

https://www3.tusfiles.net/d/.../Baru di Coba(jembutmu.s3xtgem.com).3gp (b818620e99c8e57054dd5404db207fed)

0 / 68

https://www3.tusfiles.net/d/.../Nges3x dgn adik ipar(jembutmu.s3xtgem.com).3gp (b50995e527beccde4b2351e8487dce40)

0 / 68

https://www3.tusfiles.net/d/.../Resident Evil Revelations Download Links.rtf (9243bd3758a0640777baa1f2902ca985)

0 / 68

https://www3.tusfiles.net/d/.../Divi_v2.7.1.zip (9f1b2a71b9b979f2518f444625f60591)

0 / 68

https://www3.tusfiles.net/d/.../pokemon uranium beta 3.zip (3e6bf903ec95e82651a6a49ed05b7d76)

0 / 68

https://www3.tusfiles.net/d/.../wallpaper.rar (f856d25768c29bf76b708719b7e71208)

0 / 68

https://www3.tusfiles.net/d/.../Registryfinder Portable.rar (7c807d9cdfe33c3fbf4c32eb8f4d0f37)

0 / 68

https://www3.tusfiles.net/d/.../idmmzcc.rar (67adcff48fec6ef8676a7864b5668f31)

0 / 68

https://www3.tusfiles.net/d/.../winrar5.31b1 64bit.exe (winrar-x64-531b1.exe)

0 / 68

https://www3.tusfiles.net/d/.../Mulus Jembut Menggoda(www999.s3xtgem.com).3gp (3f422e6cdba613a5dde233186462957f)

Latest 30 of 31 download URLs

URL:

http://www3.tusfiles.net/

Title:

“File Server”

SSL certificate subject:

CN=*.tusfiles.net, OU=EssentialSSL Wildcard, OU=Domain Control Validated

SSL certificate issuer:

CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:

nginx

Related Domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.