The domain download-fast.net registered by Whois Privacy Corp. was initially registered in June of 2013 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dublin, Dublin City within Ireland which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the EU (Ireland) region datacenter.
Registrant:
Whois Privacy Corp.
Registrar:
INTERNET.BS CORP.
Server location:
Dublin City, Ireland (IE)
Create date:
Wednesday, June 19, 2013
Expires date:
Friday, June 19, 2015
Updated date:
Thursday, January 22, 2015
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
ESET NOD32
Win32/Amonetize (variant), Win32/Amonetize.AA (variant), Win32/Amonetize.AE (variant), Win32/Amonetize.AJ (variant)
100.00%
Malwarebytes
PUP.Optional.InstallMonetizer, PUP.Optional.Amonetize.A
100.00%
VIPRE Antivirus
Amonetize, Trojan.Win32.Generic
100.00%
Avira AntiVirus
ADWARE/Adware.Gen2
100.00%
McAfee
Artemis!0FA6618F5009, Adware-Amonetize!A217E1B02F92, Artemis!BB642371CFD8, Artemis!EE825659E674, Artemis!78AA7F4428FB, Adware-Amonetize!89E8D845DD8A, Adware-Amonetize!A522E0EDF274
87.50%
Trend Micro House Call
TROJ_GEN.F47V1205, TROJ_GEN.F47V0106, TROJ_GEN.F47V0206, TROJ_GEN.F47V0409, TROJ_GEN.F47V0102, TROJ_GEN.F47V1230
87.50%
Dr.Web
Adware.Downware.1655, Adware.Downware.1528, Adware.Downware.2467
87.50%
AhnLab V3 Security
PUP/Win32.Amonetiz
87.50%
Reason Heuristics
PUP.Installer.Amonetizeltd.?, PUP.Installer.Amonetizeltd.j, PUP.Installer.Amonetizeltd.F, PUP.Installer.Amonetizeltd., PUP.Installer.Amonetizeltd.FF
75.00%
K7 AntiVirus
Trojan , Unwanted-Program
62.50%
Fortinet FortiGate
Riskware/Amonetize
62.50%
avast!
Win32:Amonetize-E [PUP], Win32:Amonetize-AM [PUP], Win32:Amonetize-AK [PUP], Win32:Amonetize-Q [PUP], Win32:Dropper-gen [Drp]
62.50%
Kaspersky
not-a-virus:HEUR:AdWare.Win32.Amonetize
62.50%
The domain download-fast.net has been seen to resolve to the following 4 IP addresses.
ec2-54-72-9-51.eu-west-1.compute.amazonaws.com
September 3, 2014
(CloudFlare)
February 3, 2014
(CloudFlare)
February 3, 2014
File downloads found at URLs served by download-fast.net.
The following 216 files have been seen to comunicate with download-fast.net in live environments.
Subdomains
URL:
http://download-fast.net/
Network:
Amazon Web Services (AWS), running an EC2 instance
Web server:
Apache-Coyote/1.1