home

free-safe.com

WHOISGUARD, INC.  (Proxy Registrant)

Domain Information

The domain free-safe.com is registered by proxy through ENOM, INC. and was originally registered in April of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Provo, Utah within the United States which resides on the Unified Layer network.
Registrar:
ENOM, INC.

Server location:
Utah, United States (US)

Create date:
Wednesday, April 30, 2014

Expires date:
Saturday, April 30, 2016

Updated date:
Tuesday, March 31, 2015

ASN:
AS46606 UNIFIEDLAYER-AS-1 - Unified Layer,US

Whois:
2 free-safe.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.QualityScore
100.00%

Reason Heuristics
PUP.Installer.QUALITYSCORESL.O, PUP.Installer.QUALITYSCORESL.L
100.00%

Comodo Security
ApplicUnwnt
50.00%

ESET NOD32
MSIL/Adware.Colooader
50.00%

Qihoo 360 Security
Win32/Trojan.Adware.2bf
50.00%

The domain free-safe.com has been seen to resolve to the following 3 IP addresses.

8.5.1.36
May 16, 2016

192.163.196.247
get.get-instant.com
March 15, 2015

162.144.91.108
162-144-91-108.unifiedlayer.com
June 22, 2014

File downloads found at URLs served by free-safe.com.

5 / 68      (Adware)
http://free-safe.com/bin/.../windows-8-1-system.exe  (adw-cleaner.exe)

5 / 68      (Adware)
http://free-safe.com/bin/.../adw-cleaner.exe  (44c251bf32b35b796cb3fac3076582ab)

5 / 68      (Adware)
http://free-safe.com/bin/.../adblock-plus-protector.exe  (adw-cleaner.exe)

5 / 68      (Adware)
http://free-safe.com/bin/.../adobe-acrobat-reader-2014.exe  (adw-cleaner.exe)

2 / 68      (Adware)
http://free-safe.com/bin/.../windows-8-1-system.exe  (ms-office-2013.exe)

2 / 68      (Adware)
http://free-safe.com/bin/.../open-office-app.exe  (ms-office-2013.exe)

2 / 68      (Adware)
http://free-safe.com/bin/.../ms-office-2013.exe  (b9f4f4798dcced58ea956fa1b2c852b1)

The following 2 files have been seen to comunicate with free-safe.com in live environments.

TCP » 162.144.91.108:80
Client.exe

TCP » 162.144.91.108:80
adwcleaner.exe (Setup Manager)

November 10, 2014
ad-aware-11-free.free-safe.com

September 30, 2014
adobe-shockwave-2014.free-safe.com

August 16, 2014
adw-cleaner.free-safe.com

April 17, 2015
amnesia-download.free-safe.com

January 15, 2015
angry-birds-2014.free-safe.com

September 30, 2014
avg-2014.free-safe.com

February 9, 2016
avira-free-2014.free-safe.com

January 1, 2015
baidu-pc-faster-2014.free-safe.com

August 23, 2016
combo-fix.free-safe.com

August 19, 2014
hitman-pro-antivirus.free-safe.com

May 16, 2016
mcafee-plus-security.free-safe.com

November 13, 2015
ms-access-2014.free-safe.com

August 17, 2014
ms-office-2013.free-safe.com

August 24, 2014
ms-outlook-2010.free-safe.com

July 1, 2016
nero-burn-2014.free-safe.com

November 17, 2014
rhapsody-2014.free-safe.com

November 2, 2014
songbird-download.free-safe.com

September 10, 2015
terraria-2d-game.free-safe.com

February 9, 2016
timez-attack-math.free-safe.com

June 30, 2016
windows-8-1-system.free-safe.com

February 28, 2016
zune-player-2014.free-safe.com

URL:
http://free-safe.com/

Title:
“Free Safe”

Web server:
Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.1e-fips DAV/2 mod_bwlimited/1.4 (PHP/5.4.26)

base205.com

205descargas.com

apitoolboox.com

down-fast-soft.com

download-405.com

downloads365.net

files-up.com

getproograms.com

justdownloads.net

logicielbureau.net

softwaresfreee.com

vostelechargements.com

wdescarga.com

123-telecharger.com

averagedownload.com

bb-streaming.com

browserunblocker.com

clk-rdr.com

cmllk1.info

doubleoptmedia.com

downloadsi.com

epicpb.com

fuggdownloads104.com

greenwaydrivers.com

iq2download.com

kolibka.org

moozymp3.com

officialsoftware.net

recordstreamingaudio.org

simplecellphonespy.com

30 of 36 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.