profast.in

sundar raman karunakaran

Domain Information

The domain profast.in registered by sundar raman karunakaran was initially registered in November of 2015 through Name.com LLC (R65-AFIN). This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
GoDaddy.com, LLC (R101-AFIN)

Server location:
Arizona, United States (US)

Create date:
Tuesday, November 17, 2015

Expires date:
Thursday, November 17, 2016

Updated date:
Saturday, January 16, 2016

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC,US

Scanner detections:
Detections  (88% detected)

Scan engine
Details
Detections

ESET NOD32
Win32/AdWare.MultiPlug.CT application
100.00%

avast!
Win32:MultiPlug-KJ [PUP], Win32:Agent-AYLT [PUP]
100.00%

AVG
Adware Generic_r.VD
92.86%

McAfee
Program.MultiPlug-FRO
85.71%

Emsisoft Anti-Malware
Gen:Variant.Adware.Kazy.477538, Gen:Variant.Adware.MPlug.16, Adware.Agent.OZA
85.71%

Kaspersky
not-a-virus:AdWare.Win32.MultiPlug, HEUR:Trojan.Win32.Generic, not-a-virus:HEUR:AdWare.Win32.MultiPlug
78.57%

Dr.Web
Trojan.Packed.24060, Trojan.Crossrider.37254, Trojan.DownLoader11.38801, Trojan.Crossrider.37088, Trojan.Crossrider.37236, Trojan.DownLoader11.38405, Trojan.Crossrider.37060
71.43%

Norman
Gen:Variant.Adware.Kazy.477538, Gen:Variant.Adware.MPlug.16, Adware.Agent.OZA
64.29%

F-Secure
Gen:Variant.Adware.Kazy.477538, Gen:Variant.Adware.MPlug
28.57%

Microsoft Security Essentials
Threat.Undefined
28.57%

Lavasoft Ad-Aware
Gen:Variant.Adware.Kazy.477538, Gen:Variant.Adware.MPlug.16
14.29%

Sophos
PUA 'MultiPlug' (of type Adware)
14.29%

MicroWorld eScan
Gen:Variant.Adware.Kazy.477538, Gen:Variant.Adware.MPlug.16
14.29%

K7 AntiVirus
Unwanted-Program
14.29%

NANO AntiVirus
Riskware.Win32.MultiPlug.dhebty, Riskware.Win32.MultiPlug.dhdjfd
14.29%

The domain profast.in has been seen to resolve to the following 3 IP addresses.

ip-50-63-202-51.ip.secureserver.net
April 9, 2016

ec2-54-69-104-255.us-west-2.compute.amazonaws.com
May 7, 2015

ec2-54-68-145-207.us-west-2.compute.amazonaws.com
November 1, 2014

File downloads found at URLs served by profast.in.

0 / 68
http://profast.in/.../kof 10 IN 1 para ps2.exe  (0fa25a2361ccd04073cde42615b89309)

6 / 68      (PUP)
http://profast.in/.../Download.exe  (529975c541fe038454e24feb00173ee9)

8 / 68      (PUP)

8 / 68      (PUP)
http://profast.in/.../Download.exe  (2f0764c635bbff6c0130352101e4ea23)

9 / 68      (PUP)
http://profast.in/.../Download.exe  (039c8fb58c468a479be3c79e8ca08a41)

8 / 68      (PUP)
http://profast.in/.../God of War 1.exe  (bf4f8b9480b9636f7cc7b21f64bd66e8)

7 / 68      (PUP)
http://profast.in/.../Download.exe  (018e2fc9a44e605796db4084b5f358ed)

6 / 68      (PUP)
http://profast.in/.../Download.exe  (49bcf1887a7683395184d1219ef284a8)

7 / 68      (PUP)
http://profast.in/.../The Cab-Angel With A Shotgun .mp3.exe  (the cab-angel with a shotgun.mp3.exe)

7 / 68      (PUP)
http://profast.in/.../la-route-dvdrip.avi.exe  (581edb1f0fc81a299d487bf20f569495)

6 / 68      (PUP)
http://profast.in/.../f.exe  (202f7c8f2707edb6ad43dedef53d88c1)

8 / 68      (PUP)

24 / 68    (PUP)

24 / 68    (PUP)
http://profast.in/.../Download.exe  (c92f0ff42c6ed9e74dd7730bb6f6da7d)

0 / 68
http://profast.in/null  (de_behandeling_2014_dvd9rip_dutch_english_klam.exe)

The following 76 files have been seen to comunicate with profast.in in live environments.

 
Latest 20 of 78 files

URL:
http://profast.in/

Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)