» dl.fasterdownfiles.com
Overview
Analysis
IPs Addresses (12)
Downloads (38)
Network (205)
Website Detail

dl.fasterdownfiles.com

NameFind LLC

Domain Information

The domain dl.fasterdownfiles.com registered by NameFind LLC was initially registered in September of 2014 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Seattle, Washington within the United States which resides on the Akamai Technologies, Inc. network.

Registrant:

NameFind LLC

Registrar:

GODADDY.COM, LLC

Server location:

Washington, United States (US)

Create date:

Tuesday, September 2, 2014

Expires date:

Friday, September 2, 2016

Updated date:

Friday, March 11, 2016

ASN:

AS20940 AKAMAI-ASN1 Akamai International B.V.,US

Root domain:

fasterdownfiles.com

Whois:

3 fasterdownfiles.com records

Scanner detections:

Detections (97% detected)

Scan engine

Details

Detections

Reason Heuristics

(M), PUP.Installer.EilioDevelopmentssl.T, PUP.Installer.EilioDevelopmentssl.N, PUP.Installer.EilioDevelopmentssl.F, PUP.Installer.EilioDevelopmentssl.V, PUP.Installer.EilioDevelopmentssl.I, PUP.Solimba.EilioDevelopments.Installer (M), PUP.Solimba.EilioDev.Installer (M), PUP.Solimba (M)

97.37%

Avira AntiVirus

W32/Mabezat, APPL/Firseria.Gen8

26.32%

VIPRE Antivirus

Threat.4150696, Trojan.Win32.Generic

26.32%

Clam AntiVirus

Win.Trojan.Morstar-21

26.32%

Agnitum Outpost

PUA.Solimba

26.32%

Zillya! Antivirus

Downloader.Morstar.Win32.84

26.32%

Emsisoft Anti-Malware

Gen:Variant.Application.Bundler.Kazy.132995

23.68%

Dr.Web

Trojan.DownLoader11.24441

23.68%

Kaspersky

not-a-virus:Downloader.Win32.Morstar

23.68%

MicroWorld eScan

Gen:Variant.Application.Bundler.Kazy.132995

23.68%

Malwarebytes

PUP.Optional.Solimba

23.68%

NANO AntiVirus

Trojan.Win32.Morstar.dfgpsr

23.68%

Bitdefender

Gen:Variant.Application.Bundler.Kazy.132995

23.68%

Lavasoft Ad-Aware

Gen:Variant.Application.Bundler.Kazy.132995

23.68%

F-Secure

Gen:Variant.Application.Bundler

23.68%

The domain dl.fasterdownfiles.com has been seen to resolve to the following 12 IP addresses.

208.73.211.70

April 17, 2016

141.8.224.239

February 11, 2016

23.0.160.206

a23-0-160-206.deploy.static.akamaitechnologies.com

March 22, 2015

23.0.160.216

a23-0-160-216.deploy.static.akamaitechnologies.com

March 22, 2015

184.51.126.88

a184-51-126-88.deploy.static.akamaitechnologies.com

February 12, 2015

184.51.126.107

a184-51-126-107.deploy.static.akamaitechnologies.com

February 12, 2015

23.62.7.137

a23-62-7-137.deploy.static.akamaitechnologies.com

September 27, 2014

23.62.7.168

a23-62-7-168.deploy.static.akamaitechnologies.com

September 27, 2014

184.29.106.123

a184-29-106-123.deploy.static.akamaitechnologies.com

September 22, 2014

184.29.106.120

a184-29-106-120.deploy.static.akamaitechnologies.com

September 22, 2014

23.15.8.233

a23-15-8-233.deploy.static.akamaitechnologies.com

September 21, 2014

23.15.8.217

a23-15-8-217.deploy.static.akamaitechnologies.com

September 21, 2014

File downloads found at URLs served by dl.fasterdownfiles.com.

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Autodesk 123D.exe (fee5ca1d2f45690bf81e06ce6585619d)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.5/.../Ares Galaxy.exe (f04f6072f64de8955b4aa7a81de4b562)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.5/.../iTunes.exe (66807e713d052c2ab8a3dc2ee4e010d7)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.5/.../WinSCP.exe (ff21339ff1296c019b88cb90fc3ba1de)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../John Deere Drive Green.exe (2a8a26140cec663a1db50eba41a788a7)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../eMule.exe (da09a8899b15f15cdd9f6051e4f99a73)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.5/.../ZD Soft Screen Recorder.exe (9d5f48e66e6a992f1124f5fbc1403227)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Avast! Free Antivirus.exe (20a6f12ea8d6caf7a3c967c616833e98)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Windows 8 Transformation Pack.exe (af5e13fc2619f2e9483bec317c3ac6c3)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../DVD Shrink.exe (9bb69db56c47cee9966dade365bef9a2)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../AVG Anti-Virus Free.exe (1a24409045c8ef4349a9ea5da88f4802)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../PhotoScape.exe (3c93b8a497a5543365120c951ecb79c0)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Spybot - Search .exe (spybot - search.exe)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../DriverMax.exe (977a9ab469f30a75a94999e6999c7531)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Hay Day.exe (bcc5545748f1c1ef4536366cead50050)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/12344817/.../Francs.exe (convertisseur euros-francs.exe)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Ares Galaxy.exe (0e2bdf34d37c605b6ebbab245b844ff1)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Sphax PureBDCraft Texture Pack.exe (3e5a21d566cc5b1e4824978dc71316f3)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Music Download Center.exe (9df936539abbc43e1b575c4865ea7812)

2 / 68 (Malware)

http://dl.fasterdownfiles.com/n/3.1.22.18.5/.../Minecraft.exe (3c166bae84553d4cb27af8abdc61712d)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.5/.../PrtScr.exe (131758c0834e98090388b51fbbfedbd0)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Minecraft.exe (c62afcc9ef7bdfa595f76579efd4db4f)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.5/.../Subliminal Blaster.exe (c23b31ba9b81717ab239d2dad9b138ab)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Cymera.exe (c5fededa431e88a0fa7302a4b39eb77b)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Photo Grid.exe (b6123707f312c86e5423cfb5701afd32)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.5/.../DownVerter.exe (9cebcc45191a86e9c8c63be905222e4b)

1 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.5/.../VideoSpin.exe (50fe44cb5e137afd2f837e710843fe31)

39 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Mozilla.exe (ac7dee4646fbf23ab2da1340ebd5a9a6)

37 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.5/.../WhatsApp.exe (99d42ed40c90b33fb11e1f8f68b6da07)

36 / 68 (Adware)

http://dl.fasterdownfiles.com/n/3.1.22.18.4/.../Avast! Free Antivirus.exe (093e2b5f16e61e1b597671f1c4401422)

Latest 30 of 38 download URLs

The following 205 files have been seen to comunicate with dl.fasterdownfiles.com in live environments.

TCP » 184.51.126.88:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.107:443

kometa.exe (Kometa by Kometa Authors)

TCP » 184.51.126.88:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.107:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.107:443

beaglebrowser.exe (BeagleBrowser by The BeagleBrowser Authors)

TCP » 184.51.126.88:80

UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.29.106.123:443

new_chrome.exe (1stBrowser by The 1stBrowser Authors)

TCP » 184.29.106.123:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.29.106.123:80

browser.exe (Browser)

TCP » 184.51.126.88:443

messengertime.exe

TCP » 184.29.106.120:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.88:443

lavasofttcpservice.exe (LavasoftTcpService.exe by Lavasoft Limited)

TCP » 23.15.8.233:80

plugincontainer.exe

TCP » 184.51.126.107:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.107:80

geniecleaner.exe (Genie Cleaner by Oppoos.com)

TCP » 184.51.126.88:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 23.15.8.233:80

apptrailers.exe

TCP » 184.51.126.107:443

UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.107:443

dailybee.exe

TCP » 23.15.8.233:80

updateframeddisplay.exe

Latest 20 of 221 files

URL:

http://dl.fasterdownfiles.com/

Title:

“fasterdownfiles.com”

Web server:

Apache

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.