» downprov12.downloadfasteasy.com
Overview
Analysis
IPs Addresses (2)
Downloads (27)
Website Detail

downprov12.downloadfasteasy.com

Whois Privacy Corp.

Domain Information

The domain downprov12.downloadfasteasy.com registered by Whois Privacy Corp. was initially registered in November of 2014 through TLD REGISTRAR SOLUTIONS LTD. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Phoenix, Arizona within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).

Registrant:

Whois Privacy Corp.

Registrar:

TLD REGISTRAR SOLUTIONS LTD

Server location:

Arizona, United States (US)

Create date:

Monday, November 10, 2014

Expires date:

Thursday, November 10, 2016

Updated date:

Wednesday, November 4, 2015

ASN:

AS13335 CLOUDFLARENET - CloudFlare, Inc.,US

Root domain:

downloadfasteasy.com

Whois:

2 downloadfasteasy.com records

Scanner detections:

Detections (91% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.Amonetize, PUP.Amonetize.Ukra2006.Bundler (M), Adware.Amonetize.ET (M)

86.36%

VIPRE Antivirus

Trojan.Win32.Generic.pak!cobra, Threat.4657539

68.18%

Clam AntiVirus

Win.Adware.Amonetize-511

68.18%

NANO AntiVirus

Trojan.Win32.Amonetize.dmnxbx, Trojan.Nsis.Amonetize.dmftuw

63.64%

Kaspersky

UDS:DangerousObject.Multi.Generic, not-a-virus:AdWare.Win32.Amonetize, not-a-virus:HEUR:AdWare.Win32.Amonetize

63.64%

Avira AntiVirus

Adware/Amonetize.kpa, Adware/Amonetize.289226, Adware/AgentCV.A.119

59.09%

K7 AntiVirus

Unwanted-Program , Trojan

54.55%

Sophos

Amonetize, Generic PUA OK

54.55%

avast!

Malware-gen, Win32:Malware-gen, Win32:PUP-gen [PUP], Win32:Trojan-gen

50.00%

Dr.Web

Trojan.Amonetize.12, Trojan.Amonetize.353

50.00%

AVG

Ukra, Generic

50.00%

Trend Micro House Call

Suspicious_GEN.F47V0122, TROJ_GEN.R08NH07A315

9.09%

G Data

Win32.Trojan.Agent.S13G7A, NSIS.Application.Crypted

9.09%

Baidu Antivirus

Adware.Win32.Amonetize

9.09%

ESET NOD32

Win32/Amonetize.DG potentially unwanted, Win32/Amonetize.CN

9.09%

The domain downprov12.downloadfasteasy.com has been seen to resolve to the following 2 IP addresses.

104.28.7.125

February 7, 2015

104.28.6.125

February 7, 2015

File downloads found at URLs served by downprov12.downloadfasteasy.com.

5 / 68 (PUP)

http://downprov12.downloadfasteasy.com/p/.../ashcroft mermin solid state physics pdf_10924_i19505146_il345.exe (nonlinear dynamics and chaos strogatz pdf_10924_i19505424_il345.exe)

1 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../pci simple communications controller driver download for toshiba c850_10924_i19806880_il345.exe (7055ed64395d1943497f87b7e44a0712)

21 / 68 (PUP)

http://downprov12.downloadfasteasy.com/.../vampire diaries saison 6_10924_i11581106_il345.exe (2f7b0304a101a3324129645d383ac341)

0 / 68

http://downprov12.downloadfasteasy.com/p/.../the descendants english subtitles_10924_i20032811_il345.exe (b6fd5060b52ad93e09d5a10a978cf130)

2 / 68 (PUP)

http://downprov12.downloadfasteasy.com/p/.../nhac vang quang le_10924_i19459190_il345.exe (fbccb4ddb468cf3d6ad9fb29ebd1bc80)

1 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../developmental biology gilbert ebook_10924_i19876492_il345.exe (41b5d8c592bb7607f98521ee5ae173ff)

11 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../analisis butir soal excel_10924_i19714800_il345.exe (crack srs audio sandbox activation_10924_i19718911_il345.exe)

11 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../spiderman desene animate dublate in romana_10924_i19717800_il345.exe (crack srs audio sandbox activation_10924_i19718911_il345.exe)

2 / 68 (PUP)

http://downprov12.downloadfasteasy.com/p/.../t mills come inside_10924_i19494628_il345.exe (aaadd794a175ae19bfe23a1b3e83f337)

1 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../saravanan meenakshi tone_10924_i20014845_il345.exe (b8e24d81d092fd12c3ea46df91a4eb90)

11 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../pingwiny z madagaskaru chomikuj.pl_10924_i19720413_il345.exe (kindle-20fire-20file-20expert_.exe)

1 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../anima beyond fantasy rpg pdf_10924_i19961719_il345.exe (11b6ea78b2eddeb7acd6c3a8cc1a28d8)

1 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../hits of chitra malayalam_10924_i19953817_il345.exe (2b819c4e734a27c179f629adc2943b1d)

11 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../lego mindstorms nxt software 2.1_10924_i19739770_il345.exe (e90800fe3d43a3e02f9cf1b91dd207f0)

11 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../archos 101 g9 turbo firmware_10924_i19782378_il345.exe (crystal reports redistributable x64_10924_i19781519_il345.exe)

10 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../Dokmee Professional v2.0.0.1 keygen by AGGRESSiON_10924_i20536868_il345.exe (6b7fd986380055781e10dc8e5b96859e)

10 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../Dokmee Professional v2.0.0.1 keygen by AGGRESSiON_10924_i20536841_il345.exe (dokmee professional v2.0.0.1 keygen by aggression_10924_i20536868_il345.exe)

10 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../Dokmee Professional v2.0.0.1 keygen by AGGRESSiON_10924_i20536718_il345.exe (dokmee professional v2.0.0.1 keygen by aggression_10924_i20536868_il345.exe)

10 / 68 (PUP)

http://downprov12.downloadfasteasy.com/p/.../calendrier mensuel biskeo_10924_i19465139_il345.exe (ab05459d78d2379352de05823a4f0e3d)

9 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../wondershare dr fone keygen generator_10924_i19890465_il345.exe (c5dfe83fa9f289f9733567cf86405b4e)

10 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../hotspot shield 64 bit_10924_i19634608_il345.exe (1ba3b538ceff60761246a094aea31a2b)

11 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../ks2 mental maths audio_10924_i19793897_il345.exe (4ebf642e55eabcbc26e753e84c9995df)

11 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../trouver nom avec numero portable_10924_i19612935_il345.exe (5897c650e4195ca754868893649b1a18)

10 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../titanic 2 jack is back_10924_i19848688_il345.exe (3ea52ae12254325098ce098276bb90cc)

11 / 68 (Adware)

http://downprov12.downloadfasteasy.com/p/.../SurveillizCam_10924_i19543633_il345.exe (ed7d02ea372e808d6920dab62e279ad0)

5 / 68 (PUP)

http://downprov12.downloadfasteasy.com/p/.../nonlinear dynamics and chaos strogatz pdf_10924_i19505424_il345.exe (7c28a99d33307027a7b505b818d31b52)

3 / 68 (inconclusive)

http://downprov12.downloadfasteasy.com/p/.../software winhiip 1.7.6_10924_i19424791_il345.exe (c7c08f65825f71a6b71a0ee69587a8bf)

URL:

http://downprov12.downloadfasteasy.com/

SSL certificate subject:

CN=sni21116.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:

CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:

cloudflare-nginx

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.