www.freefontsdb.com

Self

Domain Information

The domain www.freefontsdb.com registered by Self was initially registered in June of 2008 through DOMAINSITE, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Provo, Utah within the United States which resides on the Unified Layer network.
Registrar:
DOMAINSITE, INC.

Server location:
Utah, United States (US)

Create date:
Sunday, June 15, 2008

Expires date:
Wednesday, June 15, 2016

Updated date:
Monday, June 15, 2015

ASN:
AS46606 UNIFIEDLAYER-AS-1 - Unified Layer,US

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.SomotoIsrael.FF, PUP.SomotoLimited.a, PUP.SomotoLimited.FF, Adware.Somoto.Installer.Meta (M), PUP.Somoto.SomotoIsrael.Bundler (M), PUP.Somoto.SomotoIs.Bundler (M), PUP.Somoto (M)
100.00%

Clam AntiVirus
Trojan.Agent-267630, Win.Adware.Somoto
76.92%

Panda Antivirus
PUP/MultiToolbar.A, Trj/CI.A, Suspicious file, Trj/Chgt.A
76.92%

Malwarebytes
PUP.Optional.Somoto, PUP.Optional.Somoto.A
69.23%

K7 Gateway Antivirus
Unwanted-Program , Trojan
69.23%

Dr.Web
Trojan.MulDrop4.11744, Trojan.Packed.27732
69.23%

VIPRE Antivirus
BetterInstaller, Trojan.Win32.Generic, Threat.4150696
69.23%

K7 AntiVirus
Unwanted-Program , Trojan
61.54%

Sophos
Somoto BetterInstaller, Generic PUA ID
53.85%

Antiy Labs AVL
Riskware[:not-a-virus]/Win32.Mazel.a, Trojan/Win32.Sefnit.gen, Adware[:not-a-virus]/Win32.Agent.allm
53.85%

ESET NOD32
Win32/Somoto
53.85%

NANO AntiVirus
Trojan.Nsis.Mazel.cwhyud, Riskware.Nsis.Adware.dbnhrj, Trojan.Nsis.Agent.cwghbz
46.15%

AhnLab V3 Security
Win-AppCare/Somoto.236920.B, Win-AppCare/Somoto.236944.B, Trojan/Win32.Agent, Win-AppCare/Somoto.236928.B
46.15%

McAfee
Artemis!9B85E710D13E, Artemis!868E5A3B932D, Artemis!0AA9B2F94735, Artemis!302EA12AE191, Artemis!3E7AE33C94CB, Artemis!02E51403DE3E
46.15%

Trend Micro House Call
TROJ_GEN.F47V0413, TROJ_GEN.F47V0205, Suspicious_GEN.F47V0808, TROJ_GEN.F47V1219, TROJ_GEN.F47V0501, Suspicious_GEN.F47V0612
46.15%

The domain www.freefontsdb.com has been seen to resolve to the following 2 IP addresses.

August 15, 2016

nob.nobri.com
May 18, 2014

File downloads found at URLs served by www.freefontsdb.com.

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

15 / 68    (Adware)

1 / 68      (PUP)

19 / 68    (Adware)

20 / 68    (Adware)

23 / 68    (Adware)

22 / 68    (Adware)

27 / 68    (Adware)

16 / 68    (Adware)

13 / 68    (Adware)

24 / 68    (Adware)

The following file have been seen to comunicate with www.freefontsdb.com in live environments.

URL:
http://www.freefontsdb.com/

Google Analytics:
UA-2208244

Title:
“1000's of Free Fonts Downloads at Free Fonts Database | FreeFontsDB.com”

Description:
“Free font downloads. Download all the fonts you want in a single file!”

Web server:
Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 mod_fcgid/2.3.5 (PHP/5.2.16)

Facebook:
Likes:  11
Shares:  57
Comments:  2

Twitter:
Shares:  10

Statistics are for the previous month.