» safedownloadsrus129.com
Overview
Analysis
IPs Addresses (4)
Downloads (9)
Website Detail
Related Domains (685)

safedownloadsrus129.com

REACTIVATION PERIOD

Domain Information

The domain safedownloadsrus129.com registered by REACTIVATION PERIOD was initially registered in March of 2015 through ENOM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Phoenix, Arizona within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).

Registrant:

REACTIVATION PERIOD

Registrar:

ENOM, INC.

Server location:

Arizona, United States (US)

Create date:

Thursday, March 5, 2015

Expires date:

Sunday, March 5, 2017

Updated date:

Sunday, March 6, 2016

ASN:

AS13335 CLOUDFLARENET - CloudFlare, Inc.,US

Whois:

2 safedownloadsrus129.com records

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.AdGazelle.VerifiedInstallation.Installer (M), PUP.AdGazelle.Verified.Installer (M)

100.00%

VIPRE Antivirus

Threat.4657539

33.33%

Avira AntiVirus

TR/Starter.Y

33.33%

Vba32 AntiVirus

suspected of Trojan.Downloader.gen.h

33.33%

avast!

Win32:GenMaliciousA-SFL [Adw]

33.33%

ESET NOD32

Win32/AdGazelle.F potentially unwanted application

33.33%

AhnLab V3 Security

PUP/Win32.Generic

33.33%

AVG

AdGazelle

33.33%

IKARUS anti.virus

PUA.AdGazelle

33.33%

K7 AntiVirus

Adware

33.33%

Agnitum Outpost

Riskware.Agent

33.33%

Dr.Web

Adware.Downware.11074

33.33%

NANO AntiVirus

Riskware.Win32.Downware.dqyhzo

33.33%

F-Secure

Gen:Variant.Adware.Strictor

33.33%

Emsisoft Anti-Malware

Gen:Variant.Adware.Strictor.86912

33.33%

The domain safedownloadsrus129.com has been seen to resolve to the following 4 IP addresses.

July 3, 2016

April 14, 2016

February 16, 2016

February 16, 2016

File downloads found at URLs served by safedownloadsrus129.com.

1 / 68 (Adware)

http://safedownloadsrus129.com/.../xl?enc=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 (setup.exe)

1 / 68 (Adware)

http://safedownloadsrus129.com/download/.../5524?lpm_id=99 (setup.exe)

1 / 68 (Adware)

http://safedownloadsrus129.com/download/.../5127?lpm_id=41 (setup.exe)

1 / 68 (Adware)

http://safedownloadsrus129.com/download/.../7778?lpm_id=99 (setup.exe)

1 / 68 (Adware)

http://safedownloadsrus129.com/download/.../6060?lpm_id=126 (setup.exe)

1 / 68 (Adware)

http://safedownloadsrus129.com/download/.../6087?lpm_id=41 (setup.exe)

23 / 68 (Adware)

http://safedownloadsrus129.com/.../xl?enc=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 (setup.exe)

23 / 68 (Adware)

http://safedownloadsrus129.com/.../xl?enc=YTkyZmNmOWEzMTNmNDM1ZmJiMWUwYjU0Yjk1YjBlOTgaG1VEWURfWQEIBFEEAVNeBFAFUlZbVwdTCFNUBwQOW1BcVF4FXhtNEUdURA4RAVIBBFBQVgEEAFMJAVIAXABcB11QUVIHWABQVAUADVEXSkALQUcKQAQMVRcBUx5UCgxPAAtET0RREkcTCURHUlMDBg1GC1wNVFARS0ARAVcAFgJWX1xbVhtNEVRLFhYJA1VXVARRCFIFBVsMDFACUQwJTRtWBAREAw9GXV9KFlhQH0BYEwdRUwVSW1pWVQhTCgxSAFNfUlUIVlVTA1ICBAcDWlUIRxxAWUQBGw9AAVcKGk0bURZBXBtBHGIRShZGRwpAWBMNRBZFDk0WVgZeS1taAl1cV00FVgwcd18HR1tqNg4DSABCPWZRFkxFTEoMSRpNG0EUAEQDQ1FTbAdXERlEBg9fRwpARlUEXFENRwtVVwBdQRQWFQhTCh9QCVkRGUQSC0RHCkAXGEBXWEAKRxsUQ1pfFkFcG0MfE14CWREPRBANX0ccQEFREFQXWBJHFRoAWkZEWUQKVgUIBFMWHxcKAA4TXxJAGRYBURdYEkcVGhFbEFxBVQhVAwEFVgMEBFdWUAhdCFQNBFQbGUBWCxsCQ0pXEhYWFwRLVBFKFlBYAhFAC0cSThdXARsPQHI3GxRDSl1EWQBYDUBUH0RXUEISQFgASRIQRRZYGwIGBgELWVELBlAFVQ1RBFJSBAQFBQUEVVJcAQcNUAcPFx8 (setup.exe)

23 / 68 (Adware)

http://safedownloadsrus129.com/download/.../5989?lpm_id=41 (setup.exe)

URL:

http://safedownloadsrus129.com/

Google Analytics:

UA-2249740

Title:

“Safedownloadsrus129.com”

Description:

“Find Cash Advance, Debt Consolidation and more at Safedownloadsrus129.com. Get the best of Insurance or Free Credit Report, browse our section on Cell Phones or learn about Life Insurance. Safedownloadsrus129.com is the site for Cash Advance.”

Web server:

Microsoft-IIS/8.5 (ASP.NET) (Version: 4.0.30319)

Related Domains

30 of 685 related domains

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.