home

downprov11.downloadfasteasy.com

Whois Privacy Corp.

Domain Information

The domain downprov11.downloadfasteasy.com registered by Whois Privacy Corp. was initially registered in November of 2014 through TLD REGISTRAR SOLUTIONS LTD. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrar:
TLD REGISTRAR SOLUTIONS LTD

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Monday, November 10, 2014

Expires date:
Thursday, November 10, 2016

Updated date:
Wednesday, November 4, 2015

Root domain:
downloadfasteasy.com

Whois:
2 downloadfasteasy.com records

Scanner detections:
Detections  (89% detected)

Scan engine
Details
Detections

Dr.Web
Trojan.Amonetize.353, Trojan.Amonetize.329, infected with Trojan.Amonetize.2503, Detection.Undefined
87.50%

Clam AntiVirus
Win.Adware.Amonetize-511, Win.Adware.Amonetize-703
75.00%

Trend Micro House Call
TROJ_GEN.R047H07LM14, Suspici.1CC0D1BF, TROJ_GEN.R047H07LS14, TROJ_GEN.R047H07LN14, TROJ_GEN.R08NH07LQ14, TROJ_GEN.R08NH05LP14
68.75%

avast!
Win32:PUP-gen [PUP], Amonetize-KK [PUP]
68.75%

Kaspersky
not-a-virus:HEUR:AdWare.Win32.Amonetize
68.75%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696
68.75%

G Data
NSIS.Application.Crypted
68.75%

McAfee
Artemis!8F00B3F9F161, Artemis!9FB1E3A38D19, RDN/Generic PUP.x!crf, RDN/Generic PUP.x!csj, Artemis!2F7F548058B1
68.75%

AVG
Generic
68.75%

Panda Antivirus
Generic Suspicious
68.75%

Reason Heuristics
PUP.TECHNOINOX, PUP.Amonetize (M), Adware.Amonetize.ET (M), Adware.Amonetize.DB (M)
56.25%

Baidu Antivirus
Adware.Win32.Amonetize
50.00%

Rising Antivirus
PE:AdWare.Win32.Adpeak.c!1075356117
50.00%

ESET NOD32
Win32/Amonetize.CN potentially unwanted application
31.25%

Malwarebytes
PUP.Optional.Amonetize
25.00%

The domain downprov11.downloadfasteasy.com has been seen to resolve to the following IP address.

92.242.140.21
unallocated.barefruit.co.uk
May 28, 2015

File downloads found at URLs served by downprov11.downloadfasteasy.com.

11 / 68    (PUP)
http://downprov11.downloadfasteasy.com/.../alat za duborez_10924_i11442321_il345.exe  (793356b678c1be3d67418278ba1f3641)

3 / 68      (PUP)
http://downprov11.downloadfasteasy.com/.../Downloader_10924_i11490232_il345.exe  (8644a72ad5f3d3a72ece2f79f5d6e837)

2 / 68      (PUP)
http://downprov11.downloadfasteasy.com/.../Nelson Essentials Of Pediatrics 6th Edition Pdf Free Download_10924_i11428017_il345.exe  (de4d37083cf4bf57659c4989dcf8796c)

2 / 68      (PUP)
http://downprov11.downloadfasteasy.com/.../exploration geophysics book_10924_i11292282_il345.exe  (eb8e12c702bf79b46d601c4270ba53a5)

0 / 68
http://downprov11.downloadfasteasy.com/.../pempro crack_10924_i11546418_il345.exe  (ecouter lani rabah gratuit_10924_i11545389_il345.exe)

0 / 68
http://downprov11.downloadfasteasy.com/.../access data ftk imager forensics toolkit_10924_i11406218_il345.exe  (74c48a826d934c94a93d0f4d2d32670d)

23 / 68    (PUP)
http://downprov11.downloadfasteasy.com/.../iec 61131 2 pdf_10924_i11371738_il345.exe  (2f7f548058b18d619c8e8dd0f6da3715)

20 / 68    (PUP)
http://downprov11.downloadfasteasy.com/.../crack for colin mcrae rally 2_10924_i11357290_il345.exe  (f9f8747191fd3278b05589f156e055dd)

12 / 68    (PUP)
http://downprov11.downloadfasteasy.com/.../Vagabond v20 34 Anicole.rar_10924_i11438716_il345.exe  (d8e7bdccbdb9af132f274819659bbd24)

3 / 68      (PUP)
http://downprov11.downloadfasteasy.com/.../Dlink firmware download dir 655_10924_i11419862_il345.exe  (f9938946e858528330117d44128c0e0a)

20 / 68    (PUP)
http://downprov11.downloadfasteasy.com/.../Die Siedler 6 Aufstieg eines Koenigreichs GERMAN 0x0007_10924_i11574733_il345.exe  (b1a185be0d0c4a7a3940fd18b3001d9a)

5 / 68      (PUP)
http://downprov11.downloadfasteasy.com/.../{CCCAm 2014.txt}_10924_i11378248_il345.exe  (553fdde9d175bf07013dd9a2d1b94367)

12 / 68    (PUP)
http://downprov11.downloadfasteasy.com/.../abgx360 v1.0.6 setup.exe_10924_i11321102_il345.exe  (b9d0e71c20fe8a90034d903b15865b80)

16 / 68    (PUP)
http://downprov11.downloadfasteasy.com/.../manual sony kvfx68_10924_i11462330_il345.exe  (9fb1e3a38d199c6f8a3fe4f874bd3845)

11 / 68    (PUP)
http://downprov11.downloadfasteasy.com/.../KMSpico 4.1 Final Activator for_10924_i11566753_il345.exe  (adcaa10e64f83e3fa9c3b40e4c3478eb)

11 / 68    (PUP)
http://downprov11.downloadfasteasy.com/.../deadman wonderland english dub_10924_i11574959_il345.exe  (4f14ed6820dca642835b1fb3617aca5b)

12 / 68    (Adware)
http://downprov11.downloadfasteasy.com/.../qq international english version_10924_i11486019_il345.exe  (3ce11b5652625a49aca6439f66787f19)

12 / 68    (PUP)
http://downprov11.downloadfasteasy.com/.../directx 11 game engine_10924_i11443151_il345.exe  (ceeb488e422fa175ded6bca2f6df5f72)

The following 230 files have been seen to comunicate with downprov11.downloadfasteasy.com in live environments.

TCP » 92.242.140.21:80
smelled.exe (Smelled)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
marini.exe (Marini)

TCP » 92.242.140.21:443
client.exe (ClientWrapper)

TCP » 92.242.140.21:80
thebrowser.exe (TheBrowser by Goobzo)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:443
WindowService.exe (WindowService)

TCP » 92.242.140.21:443
ciuninstall.exe

TCP » 92.242.140.21:1866
jutched.exe

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
masterupdater.exe

TCP » 92.242.140.21:80
pricemeterexpress.crx

TCP » 92.242.140.21:80
chrome.crx

TCP » 92.242.140.21:80
app-center.crx

TCP » 92.242.140.21:80
ntp.crx

TCP » 92.242.140.21:80
3dayinvite.crx

TCP » 92.242.140.21:80
twitter.crx

TCP » 92.242.140.21:80
viewlater.crx

TCP » 92.242.140.21:80
rss.crx

TCP » 92.242.140.21:80
datapump.crx

 
Latest 20 of 230 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.