home

startfreedownload.com

Contact Privacy Inc. Customer 0135242542  (Proxy Registrant)

Domain Information

The domain startfreedownload.com is registered by proxy through TUCOWS DOMAINS INC. and was originally registered in July of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrar:
TUCOWS DOMAINS INC.

Server location:
Virginia, United States (US)

Create date:
Wednesday, July 31, 2013

Expires date:
Sunday, July 31, 2016

Updated date:
Friday, August 7, 2015

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US

Whois:
2 startfreedownload.com records

Scanner detections:
Detections  (89% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.FileMonarch.F, PUP.Installer.Fileadventure.F, PUP.Adknowledge.InstallBeta.Installer (M), PUP.Adknowledge.Liquidbuild.Installer (M), PUP.Adknowledge.Fileange.Bundler (M), PUP.Adknowledge.FileMona.Bundler (M), PUP.Adknowledge.TigerDow.Bundler (M), PUP.Adknowledge.Fileadve.Bundler (M)
100.00%

Malwarebytes
PUP.Optional.OptimunInstaller, PUP.Optional.OptimumInstaller.A, PUP.Optional.IBryte, PUP.Optional.Ibryte
50.00%

Norman
IBryte.PDB, IBryte.STR, Gen:Variant.Adware.Strictor.71370, Gen:Variant.Adware.Strictor.67514
50.00%

avast!
Win32:PUP-gen [PUP], Win32:IBryte-HH [PUP], Win32:Adware-gen [Adw]
50.00%

Comodo Security
Application.Win32.AgentCV.HWYE, Application.Win32.iBryte.WRP, Application.Win32.Ibryte.NW
50.00%

VIPRE Antivirus
Optimum Installer, Threat.4778314, Threat.4798837
50.00%

Avira AntiVirus
Adware/iBryte.bxoh, ADWARE/Adware.Gen7, APPL/OpenInst.pepri, TR/Kazy.439479.2
50.00%

ESET NOD32
Win32/AdWare.iBryte.AX application, Win32/AdWare.iBryte.AR application, Win32/Adware.iBryte.BR application, Win32/AdWare.iBryte.BG application
50.00%

AVG
Adware AdPlugin.AAE, Adware AdPlugin.BUN
50.00%

Panda Antivirus
Trj/Genetic.gen
50.00%

Kaspersky
Trojan.Win32.Buzus, Trojan-Downloader.Win32.Genome, not-a-virus:AdWare.Win32.iBryte
50.00%

McAfee
Trojan.Artemis!46F8749DEF37, Trojan.Artemis!2BDA97A3EE62, Program.IBryte-FSO, Program.IBryte-FSW
50.00%

Emsisoft Anti-Malware
Gen:Variant.Adware.Strictor.61512, Gen:Variant.Adware.Graftor.145314, Gen:Variant.Adware.Strictor.71370, Gen:Variant.Adware.Strictor.67514
50.00%

AhnLab V3 Security
PUP/Win32.IBryte
50.00%

MicroWorld eScan
Adware.IBryte.AF, Application.Bundler.Agent.B, Gen:Variant.Strictor.71370, Gen:Variant.Kazy.439479
50.00%

The domain startfreedownload.com has been seen to resolve to the following 6 IP addresses.

54.84.187.203
ec2-54-84-187-203.compute-1.amazonaws.com
May 29, 2016

54.210.180.22
ec2-54-210-180-22.compute-1.amazonaws.com
April 17, 2016

52.22.129.36
ec2-52-22-129-36.compute-1.amazonaws.com
February 7, 2016

52.20.41.248
ec2-52-20-41-248.compute-1.amazonaws.com
January 28, 2016

107.21.120.240
ec2-107-21-120-240.compute-1.amazonaws.com
November 29, 2014

50.16.246.149
ec2-50-16-246-149.compute-1.amazonaws.com
August 28, 2014

File downloads found at URLs served by startfreedownload.com.

1 / 68      (Adware)
http://startfreedownload.com/track/install?creative_id=b&button=green&source=a183&adprovider=jfaquewtyp&subid=&subid2=&et=0&dlink=http://secure.oinstaller7.com/o/.../Setup.exe  (ec4cbb3e0ecff5ddace50e08b1f5fdbe)

1 / 68      (Adware)
http://startfreedownload.com/track/install?creative_id=b&button=green&source=isoftmedia_openoffice_safe&adprovider=isoftmediatyp&subid=&subid2=&et=0&dlink=http://secure.oinstaller7.com/o/.../Setup.exe  (7029228165c71e67f48d8aeb623175a8)

1 / 68      (Adware)
http://startfreedownload.com/track/install?creative_id=b&button=green&source=iris_downlite&adprovider=iristyp&subid=&subid2=&et=0&dlink=http://secure.oinstaller6.com/o/.../Setup.exe  (e6885bfe7cfcce5b770d4afb6936c761)

1 / 68      (Adware)
http://startfreedownload.com/track/install?creative_id=b&button=green&source=ayman_safe_androck&adprovider=aymantyp&subid=&subid2=&et=0&dlink=http://secure.oinstaller7.com/o/.../Setup.exe  (a482e841d6b57b80f2a839120f0e1086)

0 / 68
http://startfreedownload.com/track/install?creative_id=b&button=green&source=iris_downlite&adprovider=iristyp&subid=&subid2=&et=0&dlink=http://secure.oinstaller7.com/o/.../Setup.exe  (54536f03a947a3eacfdea692eb5124c1)

26 / 68    (Adware)
http://startfreedownload.com/track/install?creative_id=review&button=green&source=epicbot_epicbotos&adprovider=epicbottyp&subid=&subid2=&et=0&dlink=http://secure.distapp11.com/o/.../Setup.exe  (cfd4978b2a720e8bbdfad3171b5070dc)

41 / 68    (Adware)
http://startfreedownload.com/track/install?creative_id=b&button=green&source=appcenter_minecraft_safe:end-day|g_adwords&adprovider=appcenter_chtyp&subid=&subid2=&et=0&dlink=http://secure.oinstaller7.com/o/.../Setup.exe  (4fff0e5dd254864f7b11bcb3f2f42df5)

40 / 68    (Adware)
http://startfreedownload.com/track/install?creative_id=b&button=green&source=jenkatgames_alawar_deadlyvoltageriseofinvincible&adprovider=jenkatgamestyp&subid=&subid2=&et=0&dlink=http://secure.oinstaller7.com/o/.../Setup.exe  (5361198304ab24dc2dd1f684ff5ec75d)

29 / 68    (Adware)
http://startfreedownload.com/track/install?creative_id=b&button=green&source=katvuse_new_lightspark&adprovider=marmartyp&subid=&subid2=&et=65&dlink=http://secure.oinstaller6.com/o/.../Setup.exe  (d88d1bcb264852134b3b10b6cf585c58)

URL:
http://startfreedownload.com/

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Microsoft-IIS/8.5 (ASP.NET) (Version: 4.0.30319)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.