The domain dl.bestfastexperience.com is registered by proxy through GODADDY.COM, LLC and was originally registered in September of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrant:
Domains By Proxy, LLC
Registrar:
GODADDY.COM, LLC
Server location:
Arizona, United States (US)
Create date:
Tuesday, September 16, 2014
Expires date:
Friday, September 16, 2016
Updated date:
Monday, September 21, 2015
ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.EilioDevelopmentssl.G, Threat.Win.Reputation.IMP, PUP.Installer.EilioDevelopmentssl.R, PUP.EilioDevelopmentssl.S, PUP.EilioDevelopmentssl.FF, PUP.EilioDevelopmentssl.X, PUP.Solimba.EilioDevelopments (M), PUP.Solimba.EilioDevelopments.Installer (M), PUP.Solimba.EilioDevelopments.Bundler (M), PUP.InstallationSafe.Installer (M), PUP.Solimba.EilioDev.Installer (M), PUP.Solimba.EilioDev (M), PUP.Solimba.EilioDev.Bundler (M), PUP.installCore.Webcelle.Installer (M), PUP.Solimba (M)
94.44%
Vba32 AntiVirus
Downware.Morstar
33.33%
Emsisoft Anti-Malware
Gen:Variant.Application.Bundler.Kazy.132995, Application.Bundler.Firseria.M, Gen:Variant.Strictor.65704, Application.Generic.1034439
33.33%
MicroWorld eScan
Gen:Variant.Application.Bundler.Kazy.132995, Application.Bundler.Firseria.M, Gen:Variant.Strictor.65526
30.56%
Kaspersky
not-a-virus:Downloader.Win32.Morstar
30.56%
Bitdefender
Gen:Variant.Application.Bundler.Kazy.132995, Application.Bundler.Firseria.M, Gen:Variant.Strictor.65526, Gen:Variant.Strictor.65704
30.56%
Comodo Security
Application.Win32.Solimba.LSW, Application.Win32.Firseria.MAP
30.56%
Avira AntiVirus
APPL/Firseria.Gen8
30.56%
G Data
Gen:Variant.Application.Bundler.Kazy.132995, Application.Bundler.Firseria, Gen:Variant.Strictor.65526, Gen:Variant.Strictor.65704
30.56%
ESET NOD32
MSIL/Solimba.AH potentially unwanted application
30.56%
AVG
Adware BundleApp_r, Adware BundleApp_r.AV, Adware BundleApp.HS, Adware BundleApp.IA
30.56%
NANO AntiVirus
Trojan.Win32.Morstar.dfgpqs, Trojan.Win32.DownLoader11.ddphbo, Trojan.Win32.DownLoader11.dehccv, Trojan.Win32.Morstar.delfle
30.56%
F-Secure
Gen:Variant.Application.Bundler, Application.Bundler.Firseria, Gen:Variant.Strictor.65526, Gen:Variant.Strictor.65704
27.78%
Dr.Web
Trojan.DownLoader11.24441, Trojan.DownLoader11.56776
27.78%
Malwarebytes
PUP.Optional.Solimba, PUP.Optional.Firseria
27.78%
The domain dl.bestfastexperience.com has been seen to resolve to the following 4 IP addresses.
ip-50-63-202-45.ip.secureserver.net
October 19, 2015
ec2-54-243-233-95.compute-1.amazonaws.com
November 29, 2014
ec2-50-17-180-253.compute-1.amazonaws.com
September 30, 2014
ec2-23-23-148-223.compute-1.amazonaws.com
September 30, 2014
File downloads found at URLs served by dl.bestfastexperience.com.
Latest 30 of 36 download URLs
The following 179 files have been seen to comunicate with dl.bestfastexperience.com in live environments.
URL:
http://dl.bestfastexperience.com/
Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)