www.ifreedownloadss.com

Roberto G

Domain Information

The domain www.ifreedownloadss.com registered by Roberto G was initially registered in June of 2013 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Monday, June 03, 2013

Expires date:
Friday, June 03, 2016

Updated date:
Thursday, June 04, 2015

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC

Scanner detections:
Detections  (95% detected)

Scan engine
Details
Detections

Reason Heuristics
(M), PUP.OUTBROWSE.F, PUP.OUTBROWSE.E, Threat.Win.Reputation.IMP, PUP.Air Software.AirSoftware.Bundler (M), PUP.OutBrowse (M), PUP.Outbrowse.Bundler (M), PUP.Air Software.AirSoftw.Bundler (M)
65.00%

VIPRE Antivirus
Trojan.Win32.Generic, OutBrowse, Threat.4784459, Iminent
65.00%

Dr.Web
Adware.Conduit.13, Threat.Undefined, Adware.Downware.2081, Adware.Downware.1676, Adware.Conduit.14, Trojan.SMSSend.4860, Detection.Undefined
65.00%

Antiy Labs AVL
Virus/Win32.Slugin, Downloader/NSIS.OutBrowse, RiskWare[Downloader:not-a-virus]/NSIS.OutBrowse, Riskware[:not-a-virus]/Win32.OutBrowse.g
55.00%

K7 AntiVirus
Riskware , Trojan , Unwanted-Program
55.00%

Malwarebytes
PUP.Optional.Smart, PUP.Optional.OutBrowse, PUP.Optional.AirAdInstaller
55.00%

Kaspersky
not-a-virus:Downloader.NSIS.OutBrowse, not-a-virus:AdWare.Win32.OutBrowse
55.00%

Sophos
Generic PUA NO, OutBrowse, OutBrowse Revenyou, AirInstaller, OutBrowse (PUA)
55.00%

K7 Gateway Antivirus
Trojan , Unwanted-Program
50.00%

NANO AntiVirus
Trojan.Win32.OutBrowse.crkqqe, Trojan.Win32.OutBrowse.csrlza, Trojan.Win32.OutBrowse.deioif, Trojan.Win32.OutBrowse.cxaakt
50.00%

AVG
MalSign.OutBrowse, Generic, Downloader
50.00%

Fortinet FortiGate
W32/AdkDLLWrapper.A, Riskware/NSIS_OutBrowse
45.00%

McAfee
RDN/Generic PUP.x!bpz, Artemis!48EF1F0D650E, Artemis!1620BF10C00C, Adware-OutBrowse.a, RDN/Generic PUP.x!bp3, Program.Adware-OutBrowse, RDN/Generic PUP.x!br3, Artemis!A988B56FEAD1
45.00%

Comodo Security
Application.Win32.OutBrowse.~B, Application.Win32.OutBrowse.~A, Application.Win32.AirAdInstaller.B
45.00%

Vba32 AntiVirus
Downloader.OutBrowse, AdWare.AirAdInstaller
45.00%

The domain www.ifreedownloadss.com has been seen to resolve to the following 2 IP addresses.

ip-50-63-202-61.ip.secureserver.net
June 21, 2016

charlie208.startdedicated.com
March 20, 2014

File downloads found at URLs served by www.ifreedownloadss.com.

1 / 68      (Adware)

2 / 68      (Malware)

1 / 68      (Adware)

34 / 68    (PUP)

14 / 68    (PUP)
http://www.ifreedownloadss.com/.../avg.exe  (8a0e0fa416bd500522d0a6e40355b4e7)

32 / 68    (PUP)
http://www.ifreedownloadss.com/download/.../hitmanpro.exe  (72cafd475c826bc349db920b3422142a)

6 / 68      (false positives)
http://www.ifreedownloadss.com/.../utorrent.exe  (3f3d0c24710b7731c9ed258048cbf5de)

6 / 68      (false positives)

The following 64 files have been seen to comunicate with www.ifreedownloadss.com in live environments.

 
Latest 20 of 64 files

URL:
http://www.ifreedownloadss.com/

Web server:
Apache (PleskLin)

30 of 31 related domains