» d.tusfiles.net
Overview
Analysis
IPs Addresses (1)
Downloads (1)
Website Detail
Statistics
Related Domains (11)

d.tusfiles.net

Artur Kozak (via a Proxy Registrant)

Domain Information

TusFiles is a file hosting service that bills itself as a cloud backup platform, however the service is known to distributed various potentially unwanted software packages such as adware bundles through its wrapped download manager (signed by Artur Kozak, etc.). The domain d.tusfiles.net is registered by proxy through GODADDY.COM, LLC and was originally registered in May of 2010. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Vaslui, Vaslui within Romania which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Artur Kozak who is located in Kyiv, Ukraine.

Registrant:

Domains By Proxy, LLC on behalf of Artur Kozak

Registrar:

GODADDY.COM, LLC

Server location:

Vaslui, Romania (RO)

Create date:

Monday, May 17, 2010

Expires date:

Thursday, May 17, 2018

Updated date:

Wednesday, May 18, 2016

ASN:

AS9009 M247 M247 Ltd,GB

Root domain:

tusfiles.net

Whois:

1 tusfiles.net record

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

MicroWorld eScan

Trojan.Generic.8858829

100.00%

nProtect

Trojan.Generic.8858829

100.00%

Malwarebytes

HackTool.Kgen

100.00%

VIPRE Antivirus

HackTool.Win32.Keygen

100.00%

K7 AntiVirus

Unwanted-Program

100.00%

Bitdefender

Trojan.Generic.8858829

100.00%

Agnitum Outpost

Riskware.Keygen

100.00%

avast!

Win32:Malware-gen

100.00%

ViRobot

Adware.Keygen.74240[h]

100.00%

Lavasoft Ad-Aware

Trojan.Generic.8858829

100.00%

Sophos

Generic PUA CK (PUA)

100.00%

Comodo Security

ApplicUnwnt.Win32.HackTool.Keygen.~SAW

100.00%

F-Secure

Trojan.Generic.8858829

100.00%

Trend Micro

TROJ_GEN.R047C0EJF15

100.00%

Emsisoft Anti-Malware

Trojan.Generic.8858829

100.00%

The domain d.tusfiles.net has been seen to resolve to the following IP address.

93.115.7.109

tusfiles.net

June 6, 2016

File downloads found at URLs served by d.tusfiles.net.

23 / 68 (PUP)

http://d.tusfiles.net:182/d/.../Keygen Office 2013 Professional[www.fullversionaladin.com].exe (40d5fa32cf9b3d60a44219e96dab53e6)

URL:

http://d.tusfiles.net/

Google Analytics:

UA-3400026

Title:

“TusFiles | Free Cloud Storage”

Description:

“Share unlimited files using our free cloud service”

SSL certificate subject:

CN=*.tusfiles.net, OU=EssentialSSL Wildcard, OU=Domain Control Validated

SSL certificate issuer:

CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:

nginx/1.9.11

Facebook:

Shares: 3

Statistics are for the previous month.

Related Domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.