The domain download-fast.net registered by Whois Privacy Corp. was initially registered in June of 2013 through INTERNET.BS CORP.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dublin, Dublin City within Ireland which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the EU (Ireland) region datacenter.
Dublin City, Ireland (IE)
Wednesday, June 19, 2013
Friday, June 19, 2015
Thursday, January 22, 2015
AS16509 AMAZON-02 - Amazon.com, Inc.
Detections (100% detected)
Win32/Amonetize (variant), Win32/Amonetize.AA (variant), Win32/Amonetize.AE (variant), Win32/Amonetize.AJ (variant)
McAfee Web Gateway
Artemis!0FA6618F5009, Adware-Amonetize!A217E1B02F92, Artemis!BB642371CFD8, Artemis!EE825659E674, Artemis!78AA7F4428FB, Adware-Amonetize!89E8D845DD8A
Artemis!0FA6618F5009, Adware-Amonetize!A217E1B02F92, Artemis!BB642371CFD8, Artemis!EE825659E674, Artemis!78AA7F4428FB, Adware-Amonetize!89E8D845DD8A, Adware-Amonetize!A522E0EDF274
Trend Micro House Call
TROJ_GEN.F47V1205, TROJ_GEN.F47V0106, TROJ_GEN.F47V0206, TROJ_GEN.F47V0409, TROJ_GEN.F47V0102, TROJ_GEN.F47V1230
Adware.Downware.1655, Adware.Downware.1528, Adware.Downware.2467
AhnLab V3 Security
PUP.Installer.Amonetizeltd.?, PUP.Installer.Amonetizeltd.j, PUP.Installer.Amonetizeltd.F, PUP.Installer.Amonetizeltd., PUP.Installer.Amonetizeltd.FF
Trojan , Unwanted-Program
Win32:Amonetize-E [PUP], Win32:Amonetize-AM [PUP], Win32:Amonetize-AK [PUP], Win32:Amonetize-Q [PUP], Win32:Dropper-gen [Drp]
The domain download-fast.net has been seen to resolve to the following 4 IP addresses.
September 3, 2014
February 3, 2014
February 3, 2014
File downloads found at URLs served by download-fast.net.
The following 7 files have been seen to comunicate with download-fast.net in live environments.
Amazon Web Services (AWS), running an EC2 instance