www.freedriverbackup.com

HANG XUESONG

Domain Information

The domain www.freedriverbackup.com registered by HANG XUESONG was initially registered in September of 2013 through ENOM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dallas, Texas within the United States which resides on the Linode network.
Remove Malware from www.freedriverbackup.com - Powered by Reason Core Security
Registrar:
ENOM, INC.

Server location:
Texas, United States (US)

Create date:
Tuesday, September 03, 2013

Expires date:
Thursday, September 03, 2015

Updated date:
Monday, August 11, 2014

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc.,US

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

ESET NOD32
Win32/Adware.RK.AO.Gen, Win32/InstallMonetizer.AF, Win32/OpenCandy (variant), Win32/InstallCore.QL (variant), Win32/InstallCore.TB (variant)
100.00%

Reason Heuristics
PUP.Optional.Installer.TechEvolveGMBH.Q, PUP.Optional.Installer.Q, PUP.Optional.TechEvolveGMBH.Q
100.00%

NANO AntiVirus
Trojan.Win32..chcmud, Riskware.Win32.InstallCore.djedzw
60.00%

Trend Micro House Call
TROJ_GEN.F47V0118, Suspicious_GEN.F47V0822
40.00%

Malwarebytes
PUP.Optional.Amonetize
40.00%

Avira AntiVirus
ADWARE/InstallCore.Gen9
40.00%

Baidu Antivirus
Adware.Win32.InstallCore
40.00%

Comodo Security
ApplicUnwnt
20.00%

XVirus List
Win.Detected
20.00%

SUPERAntiSpyware
PUP.InstallCore/Variant
20.00%

F-Prot
W32/InstallCore.AC.gen
20.00%

Sophos
Generic PUA AI
20.00%

Fortinet FortiGate
Riskware/InstallCore
20.00%

K7 AntiVirus
Unwanted-Program
20.00%

K7 Gateway Antivirus
Unwanted-Program
20.00%

The domain www.freedriverbackup.com has been seen to resolve to the following 2 IP addresses.

li918-213.members.linode.com
May 3, 2015

li166-221.members.linode.com
December 18, 2013

File downloads found at URLs served by www.freedriverbackup.com.

11 / 68    (PUP)

11 / 68    (PUP)
http://www.freedriverbackup.com/FreeDriverBackup.exe  (07236859835e4e5d3d25640109b56fec)

10 / 68    (PUP)
http://www.freedriverbackup.com/FreeDriverBackup.exe  (9b4e00eec97624852178f1417dbd6474)

2 / 68      (PUP)
http://www.freedriverbackup.com/FreeDriverBackup.exe  (b8f2aca5fe79949b3f9076bb368f09de)

5 / 68      (PUP)
http://www.freedriverbackup.com/FreeDriverBackup.exe  (b726b8b5b98c2528b665f7f5833b68d7)

4 / 68      (PUP)
http://www.freedriverbackup.com//FreeDriverBackup.exe  (ebc99ff11debfc367cc2fa713a4a9f67)

4 / 68      (PUP)
http://www.freedriverbackup.com/FreeDriverBackup.exe  (ebc99ff11debfc367cc2fa713a4a9f67)

The following file have been seen to comunicate with www.freedriverbackup.com in live environments.

URL:
http://www.freedriverbackup.com/

Google Analytics:
UA-43764422

Title:
“Free Driver Backup - Free Device Driver Backup - Free System Driver Backup - Backup and Restore Windows Device Drivers”

Description:
“Free Driver Backup helps backup and restore Windows device drivers.”

Web server:
Apache/2.4.7 (PHP/5.5.9-1ubuntu4.9)

Facebook:
Likes:  5
Shares:  19

Twitter:
Shares:  4

Statistics are for the previous month.

Remove Malware from www.freedriverbackup.com - Powered by Reason Core Security